CISSP Practice question #133

What would not be part of our server hardening before we promote a new server to production.
A: Apply all patches.
B: Disable unused ports.
C: Disable non-required services.
D: Open all ports.

CBK 7: Security Operations
Source: ThorTeaches.com practice tests

Answer


“D: Leaving ports open is the opposite of server hardening. When we receive or build new systems they often are completely open, before we introduce them to our environment we harden them. We develop a long list of ports to close, services to disable, accounts to delete, missing patches and many other things.

show less

IT security trainer.
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like

32 Comments

Leave a Reply