Exam SY0-701 topic 1 question 125 discussion

I've not heard of patching legacy devices... Professor Messer would be disappointed.

Patching is a common method for addressing vulnerabilities. However, in the case of legacy devices, patches may no longer be provided, or applying new patches may be difficult. Therefore, it is not suitable as a quick mitigation method, making C. Segmentation the correct answer.

Replacement IoT devices are fine when segmented in the work environment. What happens when you get home and they are exposed outside the segmented network?

When I see the word 'legacy', I know patching has nothing to do with it like a father that went out to get milk.

He's telling mitigate, replace will soulve the problem

D. Replacement Since the vulnerability is in the OS of legacy IoT devices, patching might not be feasible due to the age of the devices and the lack of vendor support for updates. In such cases, the most effective mitigation strategy is to replace the vulnerable devices with newer models that have security updates and support. While segmentation and insurance can be helpful, they are not the primary solution to address the vulnerability itself.

Legacy IoT Devices: These devices often lack the ability to be quickly patched or replaced due to hardware limitations or operational constraints. Segmentation offers a rapid response by limiting access and isolating these devices from critical network resources. Access Control: By segmenting the network, you can apply stricter access controls and monitoring, ensuring that any potential compromise of the IoT devices does not affect the broader network.

Segmentation would best mitigate the network access vulnerability in the OS of legacy IoT devices quickly. By segmenting the network, you can isolate the vulnerable devices from the rest of the network, thereby limiting potential access and reducing the risk of exploitation. This is often faster than patching or replacing the devices, especially if patches are not immediately available or replacement is not feasible in the short term.

I retract my previous answer. You can't do patching on legacy stuff...MY BAD!

Key word is legacy device. Patches may not be available. Segmentation will also be a valid solution for legacy IoT devices. Answer is C.

theres always trolls/mislead people. legacy devices arent supported anymore. segmentation is the way to go. theres always vulnerabilities in IOT devices. what do you do if you need to use them? SEGMENTATION.

Question #: 729 Topic #: 1 [All SY0-601 Questions] A newly identified network access vulnerability has been found in the OS of legacy IoT devices. Which of the following would best mitigate this vulnerability quickly? A. Insurance B. Patching C. Segmentation D. Replacement Patching doesn't work as it's legacy, Segregation is the quickest option of the remaining three.

Network segmentation could limit the potential impact of the vulnerability but does not address the vulnerability in the devices.

The option that would best mitigate the vulnerability quickly is patching (option B). Patching involves applying updates or fixes provided by the software vendor to address known vulnerabilities or weaknesses in the system. By promptly patching the OS of the legacy IoT devices, the vulnerability can be mitigated, reducing the risk of exploitation by malicious actors. This is typically the quickest and most direct way to address known vulnerabilities and enhance the security posture of the devices.