ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CCSP All Questions

View all questions & answers for the CCSP exam
Go to Exam

Exam CCSP topic 1 question 52 discussion

Actual exam question from ISC's CCSP
Question #: 52
Topic #: 1
[All CCSP Questions]

What is the best approach for dealing with services or utilities that are installed on a system but not needed to perform their desired function?

  • A. Remove
  • B. Monitor
  • C. Disable
  • D. Stop
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by gouhaha at Sept. 24, 2020, 5:28 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
evilwizardington
Highly Voted 4 years, 4 months ago
Remember that all questions are looking for the BEST option. Disable is possible, but removing the unused services is the best.
upvoted 16 times
...
saucehozz
Highly Voted 4 years, 7 months ago
I agree with the answer of removing services and utilities. -Think of all services CSPs offer, if you've provisioned services that aren't needed then they are an attack vector; e.g., S3 buckets (*ding ding* (remove, restrict, encrypt, etc)), public API Gateways, any other publicly exposed service, etc. -Think of Linux and other OS' that allow you to install and remove services and utilities; e.g., SMB, NFS, iSCSI, NTP, CUPS, DNS, LDAP... etc. -Think of rampant or forgotten instances themselves that run services that are not longer needed; decommission and remove
upvoted 11 times
...
f90ecff
Most Recent 1 month, 1 week ago
Selected Answer: C
You can't always remove everything, as in when STIGing machines to go into classified environments.
upvoted 1 times
...
MaciekMT
3 months, 3 weeks ago
Selected Answer: A
The best approach for dealing with unnecessary services or utilities on a system is to remove them completely. This reduces the attack surface, eliminates potential security vulnerabilities, and minimizes resource consumption. 🔹 Why "Remove" is the Best Option? Eliminates potential exploits → Attackers can’t target what isn’t there. Frees up system resources → Improves performance and efficiency. Simplifies maintenance → Reduces the need for patching and monitoring unused services.
upvoted 1 times
...
MartinRB
4 months ago
Selected Answer: A
Remove is better than disable, disabled can be enabled again by malicious actor
upvoted 1 times
...
ra1paul
4 months, 2 weeks ago
Selected Answer: A
A because it reduces Attack surface, eliminates the maintanenance headache and also some frameworks such as ISO 27001,CIS benchmarks recommends removing the unused services or ulities. If removal is not possible then disabling is the next best option.
upvoted 1 times
...
sweetykaur
8 months, 1 week ago
Remove. The best approach is to remove unnecessary services or utilities to reduce potential attack surfaces.
upvoted 1 times
...
globy118
1 year ago
Selected Answer: C
Disabling unnecessary services reduces resource usage and minimizes potential security risks.
upvoted 1 times
...
Pika26
2 years ago
Selected Answer: C
C. Disable
upvoted 1 times
...
ikamalbhatt
2 years, 1 month ago
Selected Answer: C
Unneeded services are disabled not removed.
upvoted 1 times
...
Chibabest
4 years, 8 months ago
-All guest accounts are removed -All unnecessary services are disabled(Correct answer)
upvoted 3 times
...
gouhaha
4 years, 8 months ago
Answer should be disabled service not remove as system service we cannot remove
upvoted 4 times
nelombg
3 years, 10 months ago
Remove- See above for other explanations.
upvoted 1 times
...
Wumza
2 years, 7 months ago
All non essential services should be stopped and set to disabled to ensure that they do not run. Al non essential software should be removed from the system. So key point here is services. So disable is the best (note you must disable after stopping the service as stopping alone cannot prevent from running again.)
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel