ExamTopics Logo
Mail Us[email protected]
Menu
Palo-Alto-Networks Discussions
exam questions

Exam PCSFE All Questions

View all questions & answers for the PCSFE exam
Go to Exam

Exam PCSFE topic 1 question 57 discussion

Actual exam question from Palo Alto Networks's PCSFE
Question #: 57
Topic #: 1
[All PCSFE Questions]

Why are containers uniquely suitable for runtime security based on allow lists?

  • A. Containers have only a few defined processes that should ever be executed.
  • B. Developers define the processes used in containers within the Dockerfile.
  • C. Docker has a built-in runtime analysis capability to aid in allow listing.
  • D. Operations teams know which processes are used within a container.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by bbbb72f at July 24, 2024, 1:53 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
TopicNerd
9 months ago
Selected Answer: A
A. Containers have only a few defined processes that should ever be executed.
upvoted 1 times
...
bbbb72f
9 months, 1 week ago
A. Containers have only a few defined processes that should ever be executed. Reasons: Nature of Containers: Containers are designed to be lightweight and specialized, executing only a specific set of processes required by the application. This makes it easier to define and manage allow lists for runtime security. Source: Docker Documentation - What is a Container? Isolation and Immutability: Containers are isolated from each other and from the underlying operating system, and are generally immutable after creation. This means that any additional or unexpected processes can be readily identified and blocked, enhancing security. Source: Kubernetes Documentation - Containers
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago