nerdexam
Exams350-201Questions#33
Cisco

350-201 · Question #33

350-201 Question #33: Real Exam Question with Answer & Explanation

The correct answer is A: to securely configure machines to limit the attack surface. System hardening is the practice of securely configuring systems to minimize the number of potential entry points available to attackers.

Question

What is the purpose of hardening systems?

Options

  • Ato securely configure machines to limit the attack surface
  • Bto create the logic that triggers alerts when anomalies occur
  • Cto identify vulnerabilities within an operating system
  • Dto analyze attacks to identify threat actors and points of entry

Explanation

System hardening is the practice of securely configuring systems to minimize the number of potential entry points available to attackers.

Common mistakes.

  • B. Creating logic that triggers alerts on anomalies describes the function of a SIEM or intrusion detection system, not system hardening.
  • C. Identifying vulnerabilities within an operating system is the purpose of vulnerability scanning or assessment tools, which is a separate process from hardening.
  • D. Analyzing attacks to identify threat actors and points of entry describes digital forensics and threat intelligence activities, not system hardening.

Concept tested. System hardening and attack surface reduction

Reference. https://csrc.nist.gov/publications/detail/sp/800-123/final

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 350-201 Practice