XK0-005 Question #1323: Real Exam Question with Answer & Explanation

Question

A security team informs the Linux administrator that a specific server is acting as an open relay. To which of the following is the security team referring?

Options

• AThe server is running the SSH service and is open to the Internet, allowing outside sources to log
• BThe server is acting as an unmanaged router, open to the Internet, and is allowing outside
• CThe server is acting as a web proxy and allowing outside unauthenticated sources to connect to
• DThe server has an email service configured to allow outside sources to send email to other

Explanation

A server acting as an open relay refers to an email service configured to allow unauthenticated outside sources to send email to any destination, including those outside its local domain.

Common mistakes.

• A. A server running the SSH service open to the Internet is a potential security risk but is not referred to as an 'open relay'; it's an open SSH port.
• B. A server acting as an unmanaged router open to the Internet means it's forwarding network traffic without proper control but is not specifically what an 'open relay' means.
• C. A server acting as a web proxy allowing unauthenticated outside sources to connect is an 'open proxy,' not an 'open relay,' which specifically applies to email services.

Concept tested. Email security concepts (open relay)

Reference. https://docs.microsoft.com/en-us/exchange/antispam-and-antimalware/antispam-protection/smtp-open-relay-protection

No community discussion yet for this question.