CompTIA
SY0-301 · Question #711
SY0-301 Question #711: Real Exam Question with Answer & Explanation
The correct answer is B: Disable unnecessary services. Server hardening reduces the attack surface by eliminating unused or unnecessary services that could be exploited by attackers.
Question
Jane, a security administrator, wants to harden the web server. Which of the following could she perform to accomplish this task?
Options
- AImplement remote sanitization
- BDisable unnecessary services
- CInstall mantraps in the datacenter
- DCompare baseline configurations
Explanation
Server hardening reduces the attack surface by eliminating unused or unnecessary services that could be exploited by attackers.
Common mistakes.
- A. Remote sanitization is a mobile device management concept for wiping data, not a web server hardening technique.
- C. Mantraps are physical access control mechanisms for datacenters, not a method for hardening a web server's software configuration.
- D. Comparing baseline configurations is an auditing and monitoring activity used to detect drift, not an active hardening measure.
Concept tested. Web server hardening by disabling services
Reference. https://csrc.nist.gov/publications/detail/sp/800-123/final
Community Discussion
No community discussion yet for this question.