ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-001 All Questions

View all questions & answers for the CS0-001 exam
Go to Exam

Exam CS0-001 topic 1 question 157 discussion

Actual exam question from CompTIA's CS0-001
Question #: 157
Topic #: 1
[All CS0-001 Questions]

During a routine network scan, a security administrator discovered an unidentified service running on a new embedded and unmanaged HVAC controller, which is used to monitor the company's datacenter:

The enterprise monitoring service requires SNMP and SNMPTRAP connectivity to operate. Which of the following should the security administrator implement to harden the system?

  • A. Patch and restart the unknown service.
  • B. Segment and firewall the controller's network.
  • C. Disable the unidentified service on the controller.
  • D. Implement SNMPv3 to secure communication.
  • E. Disable TCP/UDP ports 161 through 163.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by lupinart at May 17, 2020, 6:03 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
s3curity1
Highly Voted 5 years ago
Re-reading the question multiple times, i think the unidentified service points to udp/163 ,since the question mentions the use of snmp and snmptrap which uses udp/161-162. I still think its letter C.
upvoted 8 times
Blind_Hatred
4 years, 12 months ago
I agree with this.
upvoted 3 times
...
...
lionleo
Most Recent 3 years, 2 months ago
The Answer is D. Implement SNMPv3 to secure communication. the question asking " to harden the system?" Disable unidentified services could affect the monitoring system.
upvoted 1 times
...
KaiKai
4 years, 7 months ago
The operative word here is unmanaged, this making the answer A
upvoted 1 times
...
FCD
4 years, 8 months ago
What the hell is the answer???
upvoted 1 times
Ashfaq2
4 years, 8 months ago
C is the answer
upvoted 1 times
...
...
rapmoc
4 years, 11 months ago
Option B: hardening the device by implementing a compensating control (segmentation and firewalling)
upvoted 3 times
...
Electricalcookie
4 years, 11 months ago
Horrible choices of answers. The best answer would be C 'disable unidentified service' but it doesn't specify which port is the unidentified service which should be port 163 UDP.
upvoted 3 times
...
shoop
5 years ago
Unless this means SNMP is the unknown service (which is would be given the ports) in which case, yes, patch and restart. Needs to be reworded
upvoted 1 times
...
shoop
5 years ago
There's no way this is A. How can you patch and restart an unknown service? If it's unknown you need to find out what it is and if it turns out to be malware you should remove it. Confusing question.
upvoted 3 times
...
s3curity1
5 years ago
Is this really A? I'm thinking disabling the unidentified service running on port 163 would be better to implement hardening
upvoted 1 times
...
lupinart
5 years, 1 month ago
Im leaning towards SNMPv3
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel