nerdexam
ExamsCV0-004Questions#208
CompTIACompTIA

CV0-004 · Question #208

CV0-004 Question #208: Real Exam Question with Answer & Explanation

The correct answer is A: Install TLS certificates on the server.. These three measures help to secure the web server by implementing encryption and securing the authentication process. By disabling password authentication and enabling SSH key access only, the server is less vulnerable to brute-force attacks. Installing TLS certificates on the s

Security

Question

A system administrator has provisioned a new web server. Which of the following, in combination, form the best practice to secure the server's OS? (Choose three.)

Options

  • AInstall TLS certificates on the server.
  • BForward port 80 traffic to port 443.
  • CDisable TLS 1.0/1.1 and SSL.
  • DDisable password authentication.
  • EEnable SSH key access only.
  • FProvision the server in a separate VPC.
  • GDisable the superuser/administrator account.
  • HRestrict access on port 22 to the IP address of the administrator's workstation.

Explanation

These three measures help to secure the web server by implementing encryption and securing the authentication process. By disabling password authentication and enabling SSH key access only, the server is less vulnerable to brute-force attacks. Installing TLS certificates on the server helps to encrypt communications, preventing data interception and tampering.

Topics

#OS hardening#Remote access security#TLS/SSL#Web server security

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-004 PracticeBrowse All CV0-004 Questions