CAS-005 · Question #21
CAS-005 Question #21: Real Exam Question with Answer & Explanation
The correct answer is A: Implementing the following commands in the Dockerfile:. Implementing the given commands in the Dockerfile ensures that the container runs with non-root user privileges. Running applications as a non-root user reduces the risk of privilege escalation attacks because even if an attacker compromises the application, they would have limit
Question
A security engineer wants to reduce the attack surface of a public-facing containerized application. Which of the following will best reduce the application's privilege escalation attack surface?
Options
- AImplementing the following commands in the Dockerfile:
- BInstalling an EDR on the container's host, with reporting configured to log to a centralized SIEM,
- CDesigning a muiticontainer solution, with one set of containers that runs the mam application, and
- DRunning the container in an isolated network and placing a load balancer in a public-facing
Explanation
Implementing the given commands in the Dockerfile ensures that the container runs with non-root user privileges. Running applications as a non-root user reduces the risk of privilege escalation attacks because even if an attacker compromises the application, they would have limited privileges and would not be able to perform actions that require root access. Implementing the following commands in the Dockerfile: This directly addresses the privilege escalation attack surface by ensuring the application does not run with elevated privileges.
Community Discussion
No community discussion yet for this question.