SSCP Question #1059: Real Exam Question with Answer & Explanation

The correct answer is B: Installing the Remote Access Server outside the firewall and forcing legitimate. Containing the dial-up problem is conceptually easy: by installing the Remote Access Server outside the firewall and forcing legitimate users to authenticate to the firewall, any access to internal resources through the RAS can be filtered as would any other connection coming fro

Submitted by joshua94· Apr 18, 2026Network and Communications Security

Question

Which of the following can best eliminate dial-up access through a Remote Access Server as a hacking vector?

Options

AUsing a TACACS+ server.
BInstalling the Remote Access Server outside the firewall and forcing legitimate
CSetting modem ring count to at least 5.
DOnly attaching modems to non-networked hosts.

Explanation

Containing the dial-up problem is conceptually easy: by installing the Remote Access Server outside the firewall and forcing legitimate users to authenticate to the firewall, any access to internal resources through the RAS can be filtered as would any other connection coming from The use of a TACACS+ Server by itself cannot eliminate hacking. Setting a modem ring count to 5 may help in defeating war-dialing hackers who look for modem by dialing long series of numbers. Attaching modems only to non-networked hosts is not practical and would not prevent these hosts from being hacked.

Topics

#Remote Access Security#Network Architecture#Firewall Configuration#Threat Mitigation

Community Discussion

No community discussion yet for this question.

Full SSCP Practice Browse All SSCP Questions