FC0-U61 · Question #665
Which of the following is BEST to do immediately after installing an OS on a new machine in order to mitigate OS vulnerabilities?
The correct answer is D. Install patches.. Immediately after an OS installation, installing patches is the most critical step to mitigate vulnerabilities by applying necessary security updates and bug fixes.
Question
Which of the following is BEST to do immediately after installing an OS on a new machine in order to mitigate OS vulnerabilities?
Options
- ADisable system users.
- BInstall antivirus software.
- CEnable the firewall.
- DInstall patches.
How the community answered
(19 responses)- A5% (1)
- D95% (18)
Why each option
Immediately after an OS installation, installing patches is the most critical step to mitigate vulnerabilities by applying necessary security updates and bug fixes.
Disabling system users might cause system instability or prevent essential services from running, as many system users are crucial for OS functionality.
While important, antivirus software primarily protects against malware and known threats, whereas patching addresses the underlying OS vulnerabilities themselves.
Enabling the firewall is a good security practice but does not mitigate existing OS vulnerabilities; it controls network traffic and inbound/outbound connections.
Installing patches (updates) immediately after OS installation addresses known security vulnerabilities and bugs that existed at the time of the OS release, significantly reducing the attack surface. This process ensures the system is brought up to the latest secure state as defined by the OS vendor.
Concept tested: OS post-installation security patching
Source: https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-security-updates
Topics
Community Discussion
No community discussion yet for this question.