PrepAway - Latest Free Exam Questions & Answers

which of the following would be considered the GREATEST…

During the audit of a database server, which of the following would be considered the GREATEST exposure?

PrepAway - Latest Free Exam Questions & Answers

A.
The password does not expire on the administrator account
A user from within could send a file to an unauthorized person.

B.
Default global security settings for the database remain unchanged
QUESTION 673
Which significant risk is introduced by running the file transfer protocol (FTP) service on a server in a
demilitarized zone (DMZ)?
FTP services could allow a user to download files from unauthorized sources.

C.
Old data have not been purged
A hacker may be able to use the FTP service to bypass the firewall.

D.
Database activity is not fully logged
FTP could significantly reduce the performance of a DMZ server.

B.
Default global security settings for the database remain unchanged
QUESTION 673
Which significant risk is introduced by running the file transfer protocol (FTP) service on a server in a
demilitarized zone (DMZ)?
FTP services could allow a user to download files from unauthorized sources.

A.
The password does not expire on the administrator account
A user from within could send a file to an unauthorized person.

B.
Default global security settings for the database remain unchanged
QUESTION 673
Which significant risk is introduced by running the file transfer protocol (FTP) service on a server in a
demilitarized zone (DMZ)?
FTP services could allow a user to download files from unauthorized sources.

C.
Old data have not been purged
A hacker may be able to use the FTP service to bypass the firewall.

D.
Database activity is not fully logged
FTP could significantly reduce the performance of a DMZ server.

Explanation:
Default security settings for the database could allow issues like blank user passwords or passwords that were
the same as the username. Logging all database activity is not practical. Failure to purge old data may present
a performance issue but is not an immediate security concern. Choice A is an exposure but not as serious as

Since file transfer protocol (FTP) is considered an insecure protocol, it should not be installed on a server in a
demilitarized zone (DMZ). FTP could allow an unauthorized user to gain access to the network. Sending files to
an unauthorized person and the risk of downloading unauthorized files are not as significant as having a firewall
breach. The presence of the utility does not reduce the performance of a DMZ server; therefore, performance
degradation is not a threat.


Leave a Reply