ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-003 All Questions

View all questions & answers for the CS0-003 exam
Go to Exam

Exam CS0-003 topic 1 question 158 discussion

Actual exam question from CompTIA's CS0-003
Question #: 158
Topic #: 1
[All CS0-003 Questions]

A company has the following security requirements:

• No public IPs
• All data secured at rest
• No insecure ports/protocols

After a cloud scan is completed a security analyst receives reports that several misconfigurations are putting the company at risk. Given the following cloud scanner output:



Which of the following should the analyst recommend be updated first to meet the security requirements and reduce risks?

  • A. VM_PRD_DB
  • B. VM_DEV_DB
  • C. VM_DEV_Web02
  • D. VM_PRD_Web01
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by mightybluepen at Jan. 12, 2024, 4:41 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
mightybluepen
Highly Voted 1 year, 6 months ago
Selected Answer: A
Picking A. Basically has everything opposite to the question outlined: • No public IPs • All data secured at rest • No insecure ports/protocols But VM_PRD_DB has: • public • no encryption • port 80 (http), which is non-secure version
upvoted 12 times
...
Lilik
Most Recent 11 months, 1 week ago
A is correct due to the fact that the IP is public , there is no encryption and it uses an insecure port 80. The rules that should be followed are all data secured at rest (encryption), no public Ips and no insecure ports (80)
upvoted 1 times
...
Kmelaun
1 year, 3 months ago
Selected Answer: C
The answer is C. The IP is public, the data is not encrypted which means it's not secured at rest, and it has the insecure port 80 instead of port 443. This causes it to need remediation first.
upvoted 1 times
Kmelaun
1 year, 2 months ago
right explanation, wrong answer choice this should be answer choice A. VM_PRD_DB !
upvoted 2 times
...
glenndexter
1 year, 2 months ago
No.. it says from the table, VM_DEV_Web02 Encrypt is YES
upvoted 2 times
...
...
StillFiguringItOut
1 year, 4 months ago
Selected Answer: A
Public, non encrypted, port 80.. It's A
upvoted 3 times
...
jspecht
1 year, 4 months ago
Selected Answer: A
The production database server should not have port 80 open to begin with. There's no need for that.
upvoted 1 times
...
Adaptable7
1 year, 4 months ago
Selected Answer: A
Port 80 is unsecured, public and open
upvoted 2 times
...
Remmmie
1 year, 6 months ago
Selected Answer: A
In Option A the Encryption says NO, and Port 80 is HTTP which by itself is not the problem but when the web server is serving requests over and unencrypted network, or when the data is unencrypted then... there's a problem. Also the IP is public. this violates all the rules stated above . Option A is my answer.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel