A web server is under a denial of service (DoS) attack. The administrator reviews logs and creates an access control list (ACL) to stop the attack. Which of the following technologies could perform these steps automatically in the future?
A. Intrusion Prevention System (IPS)
Explanation:
An Intrusion Prevention System (IPS) can automatically detect and prevent attacks like a denial of service (DoS). It actively monitors traffic, identifies malicious activity, and can block the attack by creating rules (such as access control lists) to prevent future attacks.
Why the other answers are incorrect:
B. Intrusion Detection System (IDS): An IDS only detects attacks but does not take action to stop or prevent them automatically.
C. Blacklisting: Blacklisting is a method of denying access to specific entities, but it doesn't automatically detect or stop DoS attacks on its own.
D. Whitelisting: Whitelisting allows only approved entities, but it does not prevent or respond to attacks like DoS unless already configured with pre-approved sources.
The answer is A, Intrusion prevention system (IPS).
In this case, the IPS could automatically detect the DoS attack, block the traffic from the source, and create an ACL to prevent future attacks.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
044f354
3 months agoWutan
1 year, 3 months agoHeyacedoGomez
1 year, 5 months agor04dB10ck
1 year, 9 months ago