SK0-005 Question #371: Real Exam Question with Answer & Explanation

The correct answer is A: Lockout. Password complexity is irrelevant if the attacker has infinite attempts to guess the password A lockout policy will allow only a specified number of attempts before the account is disabled, which stops the attack.

Security and disaster recovery

Question

A server administrator has been asked to implement a password policy that will help mitigate the chance of a successful brute-force attack. Which of the following password policies should the administrator implement first?

Options

ALockout
BLength
CComplexity
DMinimum age

Explanation

Password complexity is irrelevant if the attacker has infinite attempts to guess the password A lockout policy will allow only a specified number of attempts before the account is disabled, which stops the attack.

Topics

#Password Policy#Brute-force Attack#Account Lockout#Server Security

Community Discussion

No community discussion yet for this question.

Full SK0-005 Practice Browse All SK0-005 Questions