During a review of the vulnerability scan results on a server, an information security analyst notices the following: The MOST appropriate action for the analyst to recommend to developers is to change the web server so:
A.
it only accepts TLSv1 .2.
B.
it only accepts cipher suites using AES and SHA.
C.
it no longer accepts the vulnerable cipher suites.
D.
SSL/TLS is offloaded to a WAF and load balancer.
A cipher suite is a set of algorithms that defines how the encryption, authentication, and integrity of data are performed during a secure communication session. Some cipher suites are considered vulnerable or weak because they use outdated or insecure algorithms that can be easily broken or compromised by attackers. The vulnerability scan results show that the web server accepts several vulnerable cipher suites, such as RC4, MD5, or DES. The best action for the analyst to recommend to developers is to change the web server so it no
longer accepts the vulnerable cipher suites and only accepts the secure ones.
This section is not available anymore. Please use the main Exam Page.CS0-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
bootleg
Highly Voted 2 years, 6 months agoskibby16
Most Recent 1 year, 7 months ago2Fish
2 years, 3 months agoSylFlo
2 years, 5 months agoCizzla7049
2 years, 7 months agoComptia_Secret_Service
2 years, 7 months agosh4dali
2 years, 9 months agoAverage_Joe
2 years, 8 months ago