Generally speaking which of the following could be done to mitigate a Day Zero host or server attack?

A.
Install software that prevents actions such as buffer overflows and writes to the system directory.

B.
Deploy Intrustion Detection on all switches that directly connect to hosts or servers. C. Install Virus scanning software.

C.
Ensure that your hosts and servers all have the latest security patches.