ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-001 All Questions

View all questions & answers for the PT0-001 exam
Go to Exam

Exam PT0-001 topic 1 question 142 discussion

Actual exam question from CompTIA's PT0-001
Question #: 142
Topic #: 1
[All PT0-001 Questions]

SIMULATION -
You are a penetration tester reviewing a client's website through a web browser.

INSTRUCTIONS -
Review all components of the website through the browser to determine if vulnerabilities are present.
Remediate ONLY the highest vulnerability from either the certificate, source, or cookies.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.









Show Suggested Answer Hide Answer
Suggested Answer: See explanation below.
Step 1 - Generate a Certificate Signing Request

Step 2 - Submit CSR to the CA -
Step 3 - Install re-issued certificate on the server
Step 4 - Remove Certificate from Server
by Mr_KiWi at May 27, 2021, 6:33 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
CybeSecN
Highly Voted 3 years, 11 months ago
The correct answer is, Step 1 - Generate a Certificate Signing Request Step 2 - Submit CSR to the CA Step 3 - Install re-issued certificate on the server Step 4 - Remove Certificate from Server
upvoted 15 times
MrRiver
3 years, 9 months ago
Consider the Real World, yess you would remove the old certificate as last step. Even an expired certificate is better than no certificate.
upvoted 5 times
...
...
Bluedegard
Most Recent 1 year, 4 months ago
The HTML section line 11 vulnerable to XSS. You can change your GET parameter into something malicious like <script> rather than a string or numbrer. In cookies section __utmv you may change account_type to something that bypass access control
upvoted 1 times
...
Cock
3 years, 4 months ago
It was on the exam
upvoted 3 times
...
fr54fr
3 years, 10 months ago
so none considers as a 'highest' vulnerability this part of Source < id = "password" value = "password"> ?
upvoted 1 times
MrRiver
3 years, 9 months ago
not an expert in html but i guess thats just the preset Value of thix input box ...
upvoted 2 times
...
...
versun
3 years, 12 months ago
1.Generate 2.Submit. 3.Remove 4. Install
upvoted 1 times
...
DrChats
3 years, 12 months ago
IS this the order 1.Generate 2.Remove. 3.Submit 4. Install
upvoted 1 times
...
nonyabiz
4 years ago
In this rare instance the provided answer is correct. Also note the following in the parent question: "Remediate ONLY the highest vulnerability from either the certificate, source, or cookies." It doesn't mean remediate all 3.
upvoted 1 times
...
x0hmei
4 years ago
anyone have the rest of the answer for this question appears to be 3 parter I see only 1 part answered
upvoted 1 times
...
joaks
4 years ago
You cannot generate a CSR if you remove the expired cert as the first step. Once you get the re-issued cert or the completion of the CSR the old expired renews itself with the new info from the CA.
upvoted 3 times
joaks
4 years ago
So my take will be 1- Generate CSR 2-Submit 3- Install the new cert 4- Remove if necessary
upvoted 5 times
Bill_nye_russian_guy
3 years, 11 months ago
I mean if you do any research you can see that you cannot remove it first because there needs to be a certificate, Generate CSR, you submit your CSR request, install the new cert and depending on the framework, you may or may not need to remove.
upvoted 2 times
...
...
...
Commander123
4 years ago
Isn't this the order? 1.Generate 2.Submit 3.Remove 4. Install
upvoted 2 times
catastrophie
4 years ago
I believe the proper order would be 1. Remove 2. Generate 3. Submit 4. Install. Keeping the old SSL certificate is a security risk so removing it immediately would be my first step. Then create the new CRS for submission to the CA and install. This is just the way I look at it and I've been known to be wrong once or twice according to my wife.
upvoted 1 times
...
hellobob
4 years ago
My thoughts exactly it mentions "Install re-issued certificate on the server".
upvoted 1 times
...
...
Mr_KiWi
4 years, 1 month ago
This question is vague. Can someone explain it please. As soon as I saw the source code, I thought of the word "Admin" does that mean anything. If I used "admin" as my user name and "password" as my password, will I get admin access?
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel