CompTIA
CV0-003 · Question #16
CV0-003 Question #16: Real Exam Question with Answer & Explanation
The correct answer is A: Disable automatic updates.. Hardening virtual server images involves disabling automatic updates and unneeded ports or services to minimize the attack surface and maintain a controlled, provider-approved baseline.
Security
Question
A cloud service provider wants to offer hardened virtual server images for provisioning purposes. This will enable users to use only the operating system services that are allowed by the provider. Which of the following tasks are MOST appropriate for the hardening process? (Select TWO).
Options
- ADisable automatic updates.
- BDisable the command prompt.
- CDisable unneeded ports and services.
- DDisable the local administrator account.
- EDisable the remote desktop connection.
- FDisable complex passwords.
Explanation
Hardening virtual server images involves disabling automatic updates and unneeded ports or services to minimize the attack surface and maintain a controlled, provider-approved baseline.
Common mistakes.
- B. Disabling the command prompt would prevent legitimate administrative access and is not a recognized server hardening practice.
- D. Disabling the local administrator account removes a necessary management capability and is not a standard hardening step for provider-managed images.
- E. Disabling remote desktop connection eliminates a common remote management channel without a proportional security benefit in a controlled provider environment.
- F. Disabling complex passwords weakens authentication security, which is the opposite of hardening and directly introduces credential risk.
Concept tested. Virtual server image hardening practices
Topics
#server hardening#security baseline#ports and services#VM image hardening
Community Discussion
No community discussion yet for this question.