ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam
Go to Exam

Exam CAS-004 topic 1 question 527 discussion

Actual exam question from CompTIA's CAS-004
Question #: 527
Topic #: 1
[All CAS-004 Questions]

While performing mandatory monthly patch updates on a production application server, the security analyst reports an instance of buffer overflow for a new application that was migrated to the cloud and is also publicly exposed. Security policy requires that only internal users have access to the application. Which of the following should the analyst implement to mitigate the issues reported? (Choose two.)

  • A. Configure firewall rules to block all external traffic.
  • B. Enable input validation for all fields.
  • C. Enable automatic updates to be installed on all servers.
  • D. Configure the security group to enable external traffic.
  • E. Set up a DLP policy to alert for exfiltration on all application servers.
  • F. Enable nightly vulnerability scans.
Show Suggested Answer Hide Answer
Suggested Answer: AB 🗳️
by SangSang at Aug. 22, 2024, 11:25 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
c4521e0
6 months, 3 weeks ago
Selected Answer: AB
This is the way
upvoted 2 times
...
grelaman
7 months ago
Selected Answer: AB
A. Configure firewall rules to block all external traffic. Since the security policy mandates that only internal users should have access to the application, configuring firewall rules to block all external (public) traffic ensures that unauthorized external entities cannot access the application. This is a direct and immediate way to enforce the access policy, reducing the attack surface by limiting exposure to only trusted internal networks. B. Enable input validation for all fields. Buffer overflows often exploit insufficient input validation, allowing attackers to send malicious input that can overwrite memory. By enforcing strict input validation, the application can ensure that only properly formatted and expected data is processed, thereby preventing buffer overflow attacks.
upvoted 2 times
...
Bright07
7 months, 1 week ago
Ans AB. A. Configure firewall rules to block all external traffic. B. Enable input validation for all fields. Configuring firewall rules will prevent external access to the application and enabling input validation helps protect against buffer overflow vulnerabilities by ensuring that only properly formatted data is accepted.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago