ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 226 discussion

Actual exam question from CompTIA's CS0-002
Question #: 226
Topic #: 1
[All CS0-002 Questions]

A security analyst is probing a company’s public-facing servers for vulnerabilities and obtains the following output:



Which of the following changes should the analyst recommend FIRST?

  • A. Implement File Transfer Protocol Secure on the upload server.
  • B. Disable anonymous login on the web server.
  • C. Configure firewall changes to close port 445 on 124.45.23.112.
  • D. Apply a firewall rule to filter the number of requests per second on port 80 on 124.45.23.108.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Comptia_Secret_Service at Dec. 8, 2022, 11:23 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
novolyus
1 year, 4 months ago
Selected Answer: C
FW rules are not valid to decrease the number of requests in a specific range of time.
upvoted 1 times
...
NerdAlert
2 years ago
Selected Answer: C
SMB exploitation and remote code execution can do a lot more damage to files/network compared to a DoS causing a site to be down
upvoted 1 times
...
PhillyCheese
2 years, 2 months ago
Selected Answer: C
A DoS attack is used to tie up a website’s resources so that users who need to access the site cannot do so, affecting availability. The SMB vulnerability is tied to a known CVE and Microsoft Advisory, citing, "Vulnerabilities in SMB Could Allow Remote Code Execution." In May 2017, the WannaCry ransomware attack targeted Windows systems by encrypting data and demanding ransom payments in the Bitcoin cryptocurrency. This was made possible by an SMB vulnerability. This could highly affect the C.I.A. of the information system or data vs. the DOS attack that could affect availability. I also took the CVE for SMB into account. My thought process is since it is a known vulnerabilty, I should make that a priority. https://learn.microsoft.com/en-us/security-updates/SecurityAdvisories/2009/975497
upvoted 3 times
2Fish
2 years, 1 month ago
C. Agree, The SMB vulnerability is top priority here. Sort that out and on to the rest.
upvoted 2 times
...
PhillyCheese
2 years, 2 months ago
I removed "website" and replaced "site" with "server". Apologies for the oversight. *A DoS attack is used to tie up resources so that users who need to access the SERVER cannot do so, affecting availability.
upvoted 1 times
...
...
Eric1234
2 years, 2 months ago
Selected Answer: D
Deal with the active DDOS
upvoted 1 times
...
marc4354345
2 years, 4 months ago
Selected Answer: C
Port 445 is the obvious problem here.
upvoted 1 times
...
forest111
2 years, 4 months ago
Selected Answer: D
I would vote on D as DoS is the easiest way to perform and affects availability of this site
upvoted 1 times
...
Comptia_Secret_Service
2 years, 4 months ago
Selected Answer: C
Remediate C first.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago