PrepAway - Latest Free Exam Questions & Answers

Which of the following rules is LEAST likely to support…

Which of the following rules is LEAST likely to support the concept of least privilege?

PrepAway - Latest Free Exam Questions & Answers

A.
The number of administrative accounts should be kept to a minimum.

B.
Administrators should use regular accounts when performing routine operations like reading mail.

C.
Permissions on tools that are likely to be used by hackers should be as restrictive as possible.

D.
Only data to and from critical systems and applications should be allowed through the firewall.

Explanation:
Only data to and from critical systems and applications should be allowed through the firewall is a detractor.
Critical systems or applications do not necessarily need to have traffic go through a firewall. Even if they did,
only the minimum required services should be allowed. Systems that are not deemed critical may also need to
have traffic go through the firewall.
Least privilege is a basic tenet of computer security that means users should be given only those rights
required to do their jobs or tasks. Least privilege is ensuring that you have the minimum privileges necessary to
do a task. An admin NOT using his admin account to check email is a clear example of this.
Incorrect Answers:
A: The number of administrative accounts should be kept to a minimum: this is good practice and supports the
concept of least privilege.
B: Administrators should use regular accounts when performing routine operations like reading mail: this is
good practice and supports the concept of least privilege.
C: Permissions on tools that are likely to be used by hackers should be as restrictive as possible: this is good
practice and supports the concept of least privilege.


Leave a Reply