Great News!
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
A system administrator has provisioned a new web server. Which of the following, in combination, form the best practice to secure the server's OS? (Choose three.)
Correct Answers: c. Disable TLS 1.0/1.1 and SSL, e. Enable SSH key access only, h. Restrict access on port 22 to the IP address of the administrator's workstation
Disabling outdated protocols like TLS 1.0/1.1 and SSL improves security by preventing use of weak encryption. Enabling SSH key access only removes password-based vulnerabilities. Restricting port 22 access limits SSH connections to trusted IPs, reducing exposure to unauthorized login attempts.
Why the other options are incorrect:
a. Install TLS certificates on the server:
Important for encrypting web traffic but primarily secures application-level communication, not the OS itself.
b. Forward port 80 traffic to port 443:
Improves web traffic security by redirecting HTTP to HTTPS, but doesn’t directly secure the OS.
d. Disable password authentication:
Similar to enabling SSH key access, but without specifying key access only, this is incomplete as it may disable all authentication if not managed properly.
f. Provision the server in a separate VPC:
Network segmentation is good practice but not directly an OS security control.
g. Disable the superuser/administrator account:
Disabling default admin accounts is often not feasible; better practice is to restrict access or rename the account rather than disable it completely.
Discover a range of courses designed to provide you with the knowledge and skills needed to excel in your chosen field.
You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams