A security analyst scans a company's public network and discovers a host is running a remote desktop that can be used to access the production network. Which of the following changes should the security analyst recommend?
A.
Changing the remote desktop port to a non-standard number
B.
Setting up a VPN and placing the jump server inside the firewall
C.
Using a proxy for web connections from the remote desktop server
D.
Connecting the remote server to the domain and increasing the password length
Setting up a VPN and placing the jump server inside the firewall is the most secure approach because it reduces the attack surface and ensures that only authorized users can access the remote desktop service. This solution addresses the primary security concern of protecting sensitive production systems by ensuring that only verified users can gain access, thus minimizing the attack surface and potential vulnerabilities.
Why C is correct:
The issue is relevant with a remote server, not a web application. A proxy for web connections would only secure web traffic, not the remote desktop protocol (RDP) traffic.
RD, as well as any server or computer connection, are designed as a VPN, not a proxy.
B. Setting up a VPN and placing the jump server inside the firewall
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.SY0-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
dbrowndiver
Highly Voted 8 months, 3 weeks ago9149f41
Most Recent 2 months, 3 weeks ago9149f41
2 months, 3 weeks agoMaxiPrince
4 months, 2 weeks agoShaman73
10 months, 3 weeks agoMahiMahiMahi
10 months, 3 weeks ago