Back to Secure Network Architecture

Hardening

5 minutes 5 Questions

Hardening refers to the process of configuring network devices and applications to minimize security vulnerabilities. This includes installing patches and updates to address known vulnerabilities, disabling unnecessary services, removing unused accounts, and implementing strict password policies. B…

Test mode:
Start practice test
CompTIA Security+ - Hardening Example Questions

Test your knowledge of Hardening

Question 1

A company's remote workers need access to internal resources. Management has requested a more secure way to protect the VPN from being exploited. What should be implemented?

Correct Answer: Multi-Factor Authentication (MFA)

Multi-Factor Authentication (MFA) provides an additional layer of security by requiring users to authenticate with more than one method, making it harder for attackers to compromise accounts. SSO, password expiration, and login banners are useful but do not provide the same level of security as MFA. Removing VPN access and using default user accounts are poor security practices.

Question 2

A company has implemented a web server for its public-facing website. To minimize potential exploitation, what should be done during the hardening process?

Correct Answer: Disable unnecessary services

Hardening a web server involves disabling unnecessary services, reducing the potential attack surface. Allowing all ports, enabling remote management, and disabling the firewall would make the server more vulnerable. Installing FTP and using default passwords are also weak security measures.

Question 3

To comply with a new software security policy, an administrator must limit the installed applications. What should be done to adhere to the policy?

Correct Answer: Implement a whitelist

Implementing a whitelist allows only approved applications while blocking others. This limits installed applications and enhances security. Allowing all applications and disabling the policy do not adhere to the requirements. Blocking specific applications (blacklist) is not as secure as a whitelist. Antivirus software is an additional security layer but doesn't limit installed applications.

More Hardening questions
8 questions (total)
Start 8 question test