350-201(NEW-127Q) · Question #70
350-201(NEW-127Q) Question #70: Real Exam Question with Answer & Explanation
The correct answer is B. Update to SMB v3. Updating to SMB v3 (B) is correct because SMB v3 introduced end-to-end encryption, making it the most secure SMB version available - it directly replaces SMB v1 without leaving the attack surface open. Note that since this is a "choose two" question, C (Disable SMB v1) is almost
Question
Options
- AUpdate to SMB v2
- BUpdate to SMB v3
- CDisable SMB v1.
- DImplement a VPN between legacy devices.
Explanation
Updating to SMB v3 (B) is correct because SMB v3 introduced end-to-end encryption, making it the most secure SMB version available - it directly replaces SMB v1 without leaving the attack surface open. Note that since this is a "choose two" question, C (Disable SMB v1) is almost certainly the second correct answer: the task explicitly requires disabling obsolete/insecure protocols, and SMB v1 is the infamous vector for WannaCry/EternalBlue attacks.
Why the distractors fail:
- A (SMB v2): SMB v2 is better than v1 but lacks SMB v3's built-in encryption - on a security-focused exam, always prefer the most secure option when the question doesn't limit scope.
- D (VPN between devices): A VPN adds a transport-layer tunnel but doesn't disable the insecure protocol itself; SMB v1 would still be running and vulnerable within the tunnel.
Memory tip: Think "Disable the bad, enable the best" - C kills SMB v1, B replaces it with the encrypted SMB v3. The exam loves pairing a "disable old" with an "enable new (best version)" answer when two choices are required.
Topics
Community Discussion
No community discussion yet for this question.