What should you do with services, protocols, daemons, etc., on a system?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the PCI Approved Scanning Vendor (ASV) Test. Study with flashcards, multiple choice questions, hints, and explanations. Get exam ready!

Multiple Choice

What should you do with services, protocols, daemons, etc., on a system?

Explanation:
Minimize the system’s exposure by running only what is actually needed. You should enable only the necessary services, protocols, and daemons so the system has just the components it requires to function. Each active service or daemon can open ports or provide pathways for attackers, and unnecessary protocols can introduce misconfigurations or vulnerabilities. By auditing and disabling everything that isn’t essential, you reduce the attack surface and simplify monitoring and defense. Some stronger-sounding alternatives miss important parts: disabling all services would break functionality, and focusing only on security-related services can ignore other required components. Enabling only the services required for the system’s function is close, but the broader guidance to include all relevant items—services, protocols, and daemons—ensures a truly hardened, minimal configuration.

Minimize the system’s exposure by running only what is actually needed. You should enable only the necessary services, protocols, and daemons so the system has just the components it requires to function. Each active service or daemon can open ports or provide pathways for attackers, and unnecessary protocols can introduce misconfigurations or vulnerabilities. By auditing and disabling everything that isn’t essential, you reduce the attack surface and simplify monitoring and defense. Some stronger-sounding alternatives miss important parts: disabling all services would break functionality, and focusing only on security-related services can ignore other required components. Enabling only the services required for the system’s function is close, but the broader guidance to include all relevant items—services, protocols, and daemons—ensures a truly hardened, minimal configuration.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy