You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recommended architecture in terms of server placement?
A.
All three servers need to be placed internally
B.
A web server facing the Internet, an application server on the internal network, a database server on the internal network
C.
A web server and the database server facing the Internet, an application server on the internal network
D.
All three servers need to face the Internet so that they can communicate between themselves
Any answer suggesting a database face the internet is wrong. And if all three are internal then no customers could reach it. Elimination is the best method here.B
Answer is "D" all 3 servers need to be reachable from Internet. All 3 servers could be in a DMZ. It could not be answer "B" because, never a server/database in the LAN should be reachable from Internet. So B is not correct.
The question never actually specifies the architecture of the servers but it does say they need to be "on the internet" which means available. I believe this is D.
This architecture follows the principle of defense in depth and least privilege. By placing the web server facing the Internet, it can handle incoming web traffic and interact with external users. The application server, which contains the logic and processes for the software package, is placed on the internal network to provide an extra layer of security. The database server, which holds sensitive data, is also placed on the internal network to further protect it from direct external access. This configuration helps reduce the attack surface and potential exposure of sensitive data to the public Internet.
From a security perspective B is the correct answer but notice how the question deosn't ask how to set up the servers in the most secure way but just the RECOMMENDED way. This is a trick question and pisses me off but I got it right becuase I saw through the bullshit.
Answer: B
This architecture follows the best practice of using a multi-tiered approach to separate the different components of the web-based software package. Placing the web server facing the Internet allows users to access the application, while keeping the application server and the database server on the internal network provides an additional layer of security. This setup helps to minimize the exposure of sensitive data and reduces the attack surface by limiting direct access to the application and database servers from the Internet.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
guilo84
Highly Voted 1 year, 12 months agoDididom
Most Recent 7 months agoDataTraveler
7 months, 1 week agoostorgaf
8 months, 2 weeks agoOA1
9 months, 1 week agoOA1
9 months, 1 week agoTimebear
1 year, 1 month agoqovert
1 year, 1 month agoShekhdaviraj
1 year, 2 months agoShin_Frankie
1 year, 3 months agoVOAKDO
1 year, 3 months agoAshGreenway
1 year, 4 months agoStants
1 year, 4 months agokarloska2015
1 year, 6 months agostudy4test
1 year, 7 months agomskichu
1 year, 7 months agotinkerer
1 year, 7 months agonoblethic
1 year, 8 months ago