CS0-003 · Question #241
CS0-003 Question #241: Real Exam Question with Answer & Explanation
Sign in or unlock CS0-003 to reveal the answer and full explanation for question #241. The question stem and answer options stay visible for context.
Question
SIMULATION You are a cybersecurity analyst tasked with interpreting scan data from Company A's servers. You must verify the requirements are being met for all of the servers and recommend changes if you find they are not. The company's hardening guidelines indicate the following: - TLS 1.2 is the only version of TLS running. - Apache 2.4.18 or greater should be used. - Only default ports should be used. INSTRUCTIONS Using the supplied data, record the status of compliance with the company's guidelines for each server. The question contains two parts: make sure you complete Part 1 and Part 2. Make recommendations for issues based ONLY on the hardening guidelines provided. Answer: Part 1 Answer: Check on the following: AppServ1 is only using TLS.1.2 AppServ4 is only using TLS.1.2 AppServ1 is using Apache 2.4.18 or greater AppServ3 is using Apache 2.4.18 or greater AppServ4 is using Apache 2.4.18 or greater Part 2 answer: Recommendations - disable TLS v1.1 on AppServ2 and AppServ3 OR configure HTTPD Security service on both AppServ2 & AppServ3 to strictly use TLS 1.2 - upgrade AppServ2 Apache to version 2.4.48 from its current version of 2.3.48 - Move ssh service port to port 22 on AppServ4
Options
- taskAs a cybersecurity analyst, interpret scan data from Company A's servers to verify compliance with company hardening guidelines for TLS version, Apache version, and port usage. Record the compliance status for each server and recommend changes for any non-compliant servers.
- prerequisites
Unlock CS0-003 to see the answer
You've previewed enough free CS0-003 questions. Unlock CS0-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.