ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CS0-002 All Questions

View all questions & answers for the CS0-002 exam
Go to Exam

Exam CS0-002 topic 1 question 285 discussion

Actual exam question from CompTIA's CS0-002
Question #: 285
Topic #: 1
[All CS0-002 Questions]

A new on-premises application server was recently installed on the network. Remote access to the server was enabled for vendor support on required ports, but recent security reports show large amounts of data are being sent to various unauthorized networks through those ports. Which of the following configuration changes must be implemented to resolve this security issue while still allowing remote vendor access?

  • A. Apply a firewall application server rule.
  • B. Add the application server to the allow list.
  • C. Sandbox the application server.
  • D. Enable port security.
  • E. Block the unauthorized networks.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by gnnggnnggnng at Feb. 3, 2023, 11:14 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
talosDevbot
Highly Voted 2 years, 5 months ago
Selected Answer: A
A firewall rule is best suited to resolve this issue. The question stated that remote access to certain ports to the server was enabled for the purpose of vendor support. This means that that port was opened at the firewall, leaving it vulnerable to scans and unwanted traffic. Configuration changes to the firewall must be made to implement a logic like this: PERMIT traffic from vendor to application server on those required ports DENY any other traffic. Option A is more specific than Option E since E doesn't state how networks will be blocked.
upvoted 13 times
NerdAlert
2 years, 3 months ago
This makes sense because like you said the rule could be more general and block anything unnecessary, whereas E will only block the existing unauthorized networks and leave room for new unauthorized networks.
upvoted 4 times
...
rg00
1 year, 10 months ago
Option E is more specific. It literally says to block unauthorized networks. Option A does not mention anything on your provided example.
upvoted 4 times
...
...
Jacobmy98
Highly Voted 2 years, 3 months ago
Selected Answer: A
Wouldn't it make sense to permit 1 network and deny all in the firewall rules ? instead of blocking MANY networks when there could possibly be more you would have to update ?
upvoted 6 times
...
kyky
Most Recent 2 years, 1 month ago
Selected Answer: E
I strongly vote for E
upvoted 3 times
...
karpal
2 years, 1 month ago
Selected Answer: E
I would go for E. Block the unauthorized networks. . It is more specific then A that is too general - it does not say what kind of firewall rule to apply.
upvoted 2 times
...
kiduuu
2 years, 2 months ago
Selected Answer: A
It may be difficult to determine which networks are unauthorized (E), and it could potentially block legitimate traffic. Applying a firewall rule to restrict traffic to authorized networks and ports is a more effective and targeted approach -> (A)
upvoted 1 times
...
HereToStudy
2 years, 3 months ago
Selected Answer: E
E using a firewall
upvoted 1 times
...
mraval
2 years, 4 months ago
Selected Answer: E
E is Correct
upvoted 1 times
...
Kashim
2 years, 4 months ago
Selected Answer: E
E. Block the unauthorized networks. To resolve this security issue while still allowing remote vendor access, blocking the unauthorized networks that are receiving large amounts of data through the open ports is the best solution. This will prevent the data from being sent to the unauthorized networks while still allowing the vendors to access the server remotely. Applying a firewall application server rule, adding the application server to the allow list, sandboxing the application server, or enabling port security will not necessarily address the issue of unauthorized data transfer to the outside network.
upvoted 3 times
2Fish
2 years, 4 months ago
I am leaning on E as well. I supposed with A you could add a rule to the application server firewall, but it may not be as restrictive as just blocking the other networks.
upvoted 1 times
...
...
knister
2 years, 4 months ago
Selected Answer: A
A makes more sense here.
upvoted 2 times
...
Stiobhan
2 years, 5 months ago
I wonder if by A they mean an Application Proxy? That would make sense but other than that it would be D.
upvoted 1 times
...
CatoFong
2 years, 5 months ago
Selected Answer: E
E. is correct
upvoted 2 times
...
Shrouq1996
2 years, 5 months ago
i think its E
upvoted 2 times
...
gnnggnnggnng
2 years, 5 months ago
Selected Answer: E
The best answer is E. Block the unauthorized networks. This would prevent any data from being sent to these unauthorized networks and reduce the risk of data exfiltration.
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel