A company's IDS has detected outbound traffic from a web server over port 389. What is the BEST action to harden the server?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Enhance your IT career with CompTIA Server+ Exam prep. Study anytime with flashcards and engaging multiple choice questions. Detailed explanations at your fingertips!

Multiple Choice

A company's IDS has detected outbound traffic from a web server over port 389. What is the BEST action to harden the server?

Explanation:
The best action to harden the server when outbound traffic over port 389 is detected is to move traffic from port 389 to port 637. Port 389 is traditionally used for Lightweight Directory Access Protocol (LDAP), which, if misused or compromised, can pose a security risk. By moving the traffic to port 637, which is used for the LDAP protocol over SSL/TLS (LDAPs), the communication can be encrypted, providing additional security for data in transit. This helps to mitigate risks associated with insecure data transmission and protects sensitive data handled by the web server. Updating the server firewall rules could improve security, but simply modifying firewall settings may not address the underlying issue of unsecured traffic. Blocking all outbound traffic could be too drastic a measure and may disrupt legitimate operations. Disabling the web server would prevent it from serving its purpose entirely and is not a sustainable long-term solution. Adjusting the traffic to a more secure port allows the server to maintain its functionality while enhancing security measures.

The best action to harden the server when outbound traffic over port 389 is detected is to move traffic from port 389 to port 637. Port 389 is traditionally used for Lightweight Directory Access Protocol (LDAP), which, if misused or compromised, can pose a security risk. By moving the traffic to port 637, which is used for the LDAP protocol over SSL/TLS (LDAPs), the communication can be encrypted, providing additional security for data in transit. This helps to mitigate risks associated with insecure data transmission and protects sensitive data handled by the web server.

Updating the server firewall rules could improve security, but simply modifying firewall settings may not address the underlying issue of unsecured traffic. Blocking all outbound traffic could be too drastic a measure and may disrupt legitimate operations. Disabling the web server would prevent it from serving its purpose entirely and is not a sustainable long-term solution. Adjusting the traffic to a more secure port allows the server to maintain its functionality while enhancing security measures.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy