Rosa is a Linux administrator at a new job. Her new boss tells her to ensure that all
the passwords on the Linux system are secure. Which action should Rosa perform
first to ensure password security?
A.
Implement a strong password policy, then train all end users about strong password
use
B.
Verify that passwords are being stored in a password shadow file.
C.
Implement a password aging policy then notify all end users about the change
D.
Instruct all users to change their passwords.
Explanation:
To make sure the passwords themselves are secure, the use of a strong password
policy makes it more difficult to attack the passwords and attack them. For example
you want the passwords difficult enough so that a dictionary attack can’t crack
them.
Incorrect Answers:
B: Putting the passwords in a shadow file will help prevent someone from capturing thefile and
trying to decode it. However, it is more important FIRST to have a strongpassword policy to
prevent password disclosure from a brute force attack.
C: Password aging will help prevent breaches of the actual account, but does not protectthe actual
passwords and make them secure.
D: Changing the passwords protect the account, but does not ensure that the
passwordsthemselves are secure.