nerdexam
EC-Council

312-50V11 · Question #894

After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port 369. Which service

The correct answer is A. The service is LDAP. and you must change it to 636. which is LDPAPS.. Port 389 (likely a typo as 369 in the question) is used by unencrypted LDAP; the fix is to migrate to LDAPS on port 636, which wraps LDAP traffic in SSL/TLS.

Enumeration

Question

After an audit, the auditors Inform you that there is a critical finding that you must tackle Immediately. You read the audit report, and the problem is the service running on port 369. Which service Is this and how can you tackle the problem?

Options

  • AThe service is LDAP. and you must change it to 636. which is LDPAPS.
  • BThe service is NTP. and you have to change It from UDP to TCP in order to encrypt it
  • CThe findings do not require immediate actions and are only suggestions.
  • DThe service is SMTP, and you must change it to SMIME. which is an encrypted way to send

How the community answered

(60 responses)
  • A
    77% (46)
  • B
    13% (8)
  • C
    3% (2)
  • D
    7% (4)

Why each option

Port 389 (likely a typo as 369 in the question) is used by unencrypted LDAP; the fix is to migrate to LDAPS on port 636, which wraps LDAP traffic in SSL/TLS.

AThe service is LDAP. and you must change it to 636. which is LDPAPS.Correct

LDAP operates on port 389 (the question contains a likely typographical error of 369) and transmits directory service queries in cleartext, posing a serious interception risk. The remediation is to migrate to LDAPS (LDAP over SSL/TLS), which listens on port 636 and encrypts all directory traffic, directly addressing the critical audit finding.

BThe service is NTP. and you have to change It from UDP to TCP in order to encrypt it

NTP (Network Time Protocol) runs on port 123 using UDP, not port 369 or 389, so this service identification is incorrect.

CThe findings do not require immediate actions and are only suggestions.

A critical audit finding requires immediate mandatory remediation; describing it as optional or a suggestion contradicts the defined severity level.

DThe service is SMTP, and you must change it to SMIME. which is an encrypted way to send

SMTP runs on port 25, not port 369, and S/MIME is an email message encryption standard - not a replacement service or port migration for LDAP.

Concept tested: LDAP to LDAPS migration for encrypted directory traffic

Source: https://learn.microsoft.com/en-us/troubleshoot/windows-server/active-directory/ldap-over-ssl

Topics

#LDAP#port 389#LDAPS port 636#unencrypted protocols

Community Discussion

No community discussion yet for this question.

Full 312-50V11 Practice