Exam 220-1002 topic 1 question 34 discussion

This one's also on Dion's Udemy exams, he agrees the answer is C. Ensure the server is patched with the latest security updates. OBJ-2.7: To prevent infection, it is important that all servers and workstations remain patched and up to date on their security updates. After that, the next best thing would be to set up the anti-virus to automatically update itself daily and run a full scan nightly. Beyond that, educating your supervisor would be a good idea, as well.

They are wrong elsewhere, the antivirus updates can be included in the security patches, as well as any other features you might wanna add; be it blocking of some or all sites, restricting certain actions, whatever the case. Hopefully that makes sense ass to why the one on here is correct.

Make Note that the Anti-virus answer choice says to do virus scans DAILY. - which is not as effective as realtime/on access scanning. Remember to select the answer that CompTIA wants, not what you think. According to the official CompTIA Prayer guide and songbook, on page 370, under the section for reducing the risk of malware, the steps are listed with apply OS patches first, and then install antivirus updates and configure ON ACCESS(Realtime) scans. and THEN educate your users. in other words, OS updates are number 1.

A - The internet is the primary source of “possible infection.” The question says that the manager wants “to check data.” If the data was on the internet, it could be checked from home - no need to check it from the server. So disable internet access on the server during off hours. B, C, and D are also steps that should be taken, but most important is remove access to the internet during off hours.

Definitely all reasonable suggestions, but as Dane_d said, the security patches are the best all-encompassing solution to the described after-hours scenario.

Any idea why the answer might be B elsewhere?