CS0-003 · Question #173
CS0-003 Question #173: Real Exam Question with Answer & Explanation
Sign in or unlock CS0-003 to reveal the answer and full explanation for question #173. The question stem and answer options stay visible for context.
Question
An incident response team is working with law enforcement to investigate an active web server compromise. The decision has been made to keep the server running and to implement compensating controls for a period of time. The web service must be accessible from the internet via the reverse proxy and must connect to a database server. Which of the following compensating controls will help contain the adversary while meeting the other requirements? (Choose two).
Options
- ADrop the tables on the database server to prevent data exfiltration.
- BDeploy EDR on the web server and the database server to reduce the adversary's capabilities.
- CStop the httpd service on the web server so that the adversary can not use web exploits.
- DUse microsegmentation to restrict connectivity to/from the web and database servers.
- EComment out the HTTP account in the /etc/passwd file of the web server.
- FMove the database from the database server to the web server.
Unlock CS0-003 to see the answer
You've previewed enough free CS0-003 questions. Unlock CS0-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.