Exam SY0-701 topic 1 question 422 discussion

The question says nothing about a a virtual host. After setting a new web server you'll want to make sure its patched.

The correct answer is: A. Harden the virtual host. Explanation: Hardening the virtual host is the first step a security team should take before a new web server goes live. This involves securing the server by removing unnecessary services, applying secure configurations, and minimizing potential attack surfaces. Hardening ensures the server is in a secure state before it is exposed to potential threats. Create WAF rules (B) is important but should be done after the server is hardened, as the Web Application Firewall (WAF) rules depend on the server's configuration and applications. Enable network intrusion detection (C) is a broader network security measure and should be implemented after the server itself is secured. Apply patch management (D) is critical but is part of the ongoing maintenance process and should follow initial hardening. Thus, hardening the virtual host is the first and most critical step to ensure the web server is secure before it goes live.

The correct answer is: D. Apply patch management. Explanation: Before a new web server goes live, the first thing the security team should do is ensure that the server is patched. Patch management ensures that all known vulnerabilities in the operating system, software, and web server components are addressed. This is crucial to minimize the attack surface and prevent exploitation of known vulnerabilities. Applying the latest patches is a foundational step in securing any system before it is exposed to the internet.

Why not b Create WAF rules.?

A. Harden the virtual host This is the correct answer according to chat GPT

Before a new web server goes live, the first step should be to harden the virtual host, which involves securing the server by: Disabling unnecessary services and ports. Configuring secure protocols. Setting strong authentication and authorization policies. Ensuring file permissions and directory structures are appropriately configured. Hardening ensures that the server's baseline security posture is strong and minimizes vulnerabilities that attackers could exploit

A. Harden the virtual host. Explanation: Before a new web server goes live, hardening the virtual host should be the first step. Hardening involves configuring the server to reduce vulnerabilities and enhance security.

D. Apply patch management. Patching the server first ensures it's up-to-date and less vulnerable to attacks.