ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SK0-005 All Questions

View all questions & answers for the SK0-005 exam
Go to Exam

Exam SK0-005 topic 1 question 65 discussion

Actual exam question from CompTIA's SK0-005
Question #: 65
Topic #: 1
[All SK0-005 Questions]

A company's IDS has identified outbound traffic from one of the web servers coming over port 389 to an outside address. This server only hosts websites. The company's SOC administrator has asked a technician to harden this server. Which of the following would be the BEST way to complete this request?

  • A. Disable port 389 on the server
  • B. Move traffic from port 389 to port 443
  • C. Move traffic from port 389 to port 637
  • D. Enable port 389 for web traffic
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Dion79 at May 19, 2022, 1:28 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
broman
11 months, 1 week ago
I think the answer C was a typo 636 is the secure port for LDAP and would be correct, however given the options, A is correct
upvoted 1 times
...
AzadOB
11 months, 1 week ago
Selected Answer: A
Port 389 is commonly associated with LDAP (Lightweight Directory Access Protocol), which is used for directory services. Since the web server should not be conducting LDAP-related activities, it's concerning that outbound traffic is being observed on this port. To harden the server and ensure that it's not misused for unintended purposes, the best approach would be to: A. Disable port 389 on the server.
upvoted 2 times
...
kloug
1 year, 10 months ago
aaaaaaaaaaaa
upvoted 1 times
...
Pongsathorn
2 years, 3 months ago
Selected Answer: A
OS Hardening Hardening the server should start with hardening the operating system. This involves a series of steps that should result in a server that offers a minimum of attack points to a hacker. Let's look at six steps that can lead to this result. Disable Unused Services/Close Unneeded Ports Any services that are not required on the server should be disabled. Only those required for the server to perform its role in the network should be left on. The easiest way to do this is to install a host firewall on the system and adopt a “disable by default” policy with respect to services by closing the port used for the service. Then manually enable any you need. Ref. CompTIA Server+ Study Guide: Exam SK0-005 Troy McMillan
upvoted 1 times
...
nixonbii
2 years, 4 months ago
Selected Answer: A
We all want to give the test the answer it wants but if you discover a server handling traffic that is outside of its scope of operation, you need to shut down the offending port ASAP. Complete security scans and try to find out what the nature of that traffic was.
upvoted 1 times
...
Timock
2 years, 5 months ago
Selected Answer: A
This is solely a web server so should be ports for HTTPS. There should not be any traffic leaving the server on 389externally and its LDAP traffic so definitely a concern. Port 389 can be disabled. Not to mention LDAPS would be 636 not 637. http://ports.my-addr.com/tcp_port-udp_port-application-and-description.php?port=637
upvoted 1 times
...
TheITStudent
2 years, 6 months ago
Selected Answer: A
For this, sense this only needs web traffic hosted, only port 80 & 443 need to be open, port 389 can be closed... I would just disable it. The better answer would be a more specific firewall rule set, but given the options, I would choose A.
upvoted 4 times
...
Dion79
2 years, 8 months ago
A or C??
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel