ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 138 discussion

Actual exam question from CompTIA's CS0-002
Question #: 138
Topic #: 1
[All CS0-002 Questions]

After detecting possible malicious external scanning, an internal vulnerability scan was performed, and a critical server was found with an outdated version of
JBoss. A legacy application that is running depends on that version of JBoss. Which of the following actions should be taken FIRST to prevent server compromise and business disruption at the same time?

  • A. Make a backup of the server and update the JBoss server that is running on it.
  • B. Contact the vendor for the legacy application and request an updated version.
  • C. Create a proper DMZ for outdated components and segregate the JBoss server.
  • D. Apply virtualization over the server, using the new platform to provide the JBoss service for the legacy application as an external service.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Adrian831 at Sept. 29, 2022, 12:34 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
R00ted
Highly Voted 2 years, 6 months ago
Selected Answer: C
C is the best answer. I still don't like it. What is that application for? "The DMZ is a special network zone designed to house systems that receive connections from the outside world, such as web and email servers. Sound firewall designs place these systems on an isolated network where, if they become compromised, they pose little threat to the internal network because connections between the DMZ and the internal network must still pass through the firewall and are subject to its security policy"
upvoted 6 times
2Fish
2 years, 1 month ago
Agree. Typically in these situations, you would have to have a compensatory control. In this case, segmenting it away may be the best solution and not be less disruptive to business.
upvoted 2 times
...
...
skibby16
Most Recent 1 year, 4 months ago
Selected Answer: C
Creating a proper DMZ for outdated components and segregating the JBoss server is the best action to take first to prevent server compromise and business disruption at the same time. A DMZ (demilitarized zone) is a network segment that separates internal networks from external networks, such as the internet, and provides an additional layer of security3. Creating a proper DMZ for outdated components and segregating the JBoss server can isolate and protect the critical server from external attacks that may exploit its vulnerability.
upvoted 1 times
...
grelaman
1 year, 7 months ago
Selected Answer: A
This is because updating the JBoss server is the most direct way to address the security vulnerability. Making a backup of the server first will help to protect the data in case something goes wrong during the update process
upvoted 1 times
grelaman
1 year, 7 months ago
creating a DMZ for outdated components, would help to protect the server from external attacks, but it would not address the underlying security vulnerability.
upvoted 1 times
...
...
mraval
2 years, 1 month ago
Selected Answer: A
I think If any application is outdated it is more Vulnerable, it doesn't matter u put behind firewall of in DMZ by usend that vulnerability attacker can exploit system. So the first step is to update JBoss.
upvoted 3 times
Henry88
2 years, 1 month ago
Updating JBoss in this scenario would make the legacy application unusable which is what you are trying to avoid because it would disrupt business operations.
upvoted 2 times
...
whoami_808
2 years, 1 month ago
I agree, the FIRST action to take to prevent server compromise and business disruption would be to make a backup of the server and update the JBoss server that is running on it. This action will ensure that the server is running the latest version of JBoss, which will reduce the risk of exploitation from external attackers. It will also ensure that the legacy application running on the server can continue to function without any disruptions.
upvoted 2 times
...
heinzelrumpel
1 year, 9 months ago
No way. Update ist definetly not possible in this scenario. THe legacy app is not getting updates, because it's legacy and JBOss need to stay in the specific version because the app needs it that way.
upvoted 3 times
...
...
Adrian831
2 years, 7 months ago
Selected Answer: C
C seems correct.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago