An outside organization has completed a penetration test for a company. One of the items on the report is reflecting the ability to read SSL traffic from the web
server. Which of the following is the MOST likely mitigation for this reported item?
Ensure patches are deployed
Install an IDS on the network
Configure the firewall to block traffic on port 443
Implement a VPN for employees
As vulnerabilities are discovered, the vendors of the operating systems or applications often respond by releasing a patch. A patch is designed to correct a known
bug or fix a known vulnerability, such as in this case to be able to read SSL traffic, in a piece of software.
A patch differs from an update, which, in addition to fixing a known bug or vulnerability, adds one or more features to the software being updated.