CompTIA
CAS-003 · Question #646
CAS-003 Question #646: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #646. The question stem and answer options stay visible for context.
Question
An attacker exploited an unpatched vulnerability in a web framework, and then used an application service account that had an insecure configuration to download a rootkit. The attacker was unable to obtain root privileges Instead the attacker then downloaded a crypto- currency mining program and subsequently was discovered. The server was taken offline, rebuilt, and patched. Which of the following should the security engineer suggest to help prevent a similar scenario in the future?
Options
- ARemove root privileges from the application service account
- BImplement separation of duties.
- CProperly configure SELinux and set it to enforce.
- DUse cron to schedule regular restarts of the service to terminate sessions.
- EPerform regular uncredentialed vulnerability scans
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.