Learn about securing cloud services for the CompTIA CV0-003 certification exam. Understand why services like Telnet and FTP should be disabled in a cloud platform.
Table of Contents
Question
A cloud engineer is deploying a server in a cloud platform. The engineer reviews a security scan report. Which of the following recommended services should be disabled? (Choose two.)
A. Telnet
B. FTP
C. Remote login
D. DNS
E. DHCP
F. LDAP
Answer
A. Telnet
B. FTP
Explanation
The services that should be disabled are Telnet (A) and FTP (B).
Telnet is an older protocol used for remote command line administration of systems. It lacks encryption, which means that all the data is transmitted in clear text, including usernames and passwords. This makes it susceptible to eavesdropping attacks.
FTP, or File Transfer Protocol, is used for transferring files between an FTP server and a client. Like Telnet, FTP does not encrypt its traffic, making it vulnerable to data interception and unauthorized access.
Modern, secure alternatives to these services are available. SSH (Secure Shell) is a good alternative to Telnet as it provides encrypted, secure remote administration of systems. Similarly, SFTP (SSH File Transfer Protocol) or FTPS (FTP Secure) can be used instead of FTP for secure file transfer.
CompTIA CV0-003 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the CompTIA CV0-003 exam and earn CompTIA CV0-003 certification.