CompTIA Updated SK0-005 Exam Questions and Answers by giovanni

After removing the virus from the server, the administrator should perform the following actions to mitigate the issue from reoccurring and to maintain high availability:

Run a vulnerability scanner on the server to identify any other potential weaknesses or exposures that could be exploited by attackers.

Patch the vulnerability that allowed the virus to infect the server in the first place, using the latest updates from the database software vendor or a trusted source.

Update the antivirus software on the server to ensure it has the most recent virus definitions and can detect and prevent future infections. The other options are either unnecessary or counterproductive for this scenario. Repartitioning the hard drive, reformatting the OS, removing the database software, or air gapping the server from the network would cause downtime and data loss, while enabling a host firewall would not prevent a virus infection from within the network. References: CompTIA Server+ Certification Exam Objectives, Domain 5.0: Security, Objective 5.2: Given a scenario involving a security threat/vulnerability/risk, implement appropriate mitigation techniques.

Off-site storage involves storing data backups in a physically separate location from where the servers and primary data reside. This protects critical data in case the main site is damaged or destroyed due to a natural disaster, such as floods, fires, or earthquakes. Off-site storage can be in the form of cloud storage or physical tapes stored in a geographically distant location.

Off-site storage (Answer A): It ensures that a company's critical data remains accessible even if the local infrastructure is compromised. This is a common part of disaster recovery planning and is crucial for business continuity.

Life-cycle management (Option B): While important for managing data from creation to deletion, it does not specifically protect data during disasters.

Environmental controls (Option C): These manage physical conditions like temperature and humidity but do not address the risk of data loss during disasters.

Data-at-rest encryption (Option D): Encryption protects the confidentiality of stored data but does not ensure availability in the event of a disaster.

CompTIA Server+ Reference:This topic is covered under SK0-005 Objective 4.1: Summarize disaster recovery methods and concepts.

Archive is a method of storing historical data that is not frequently accessed or modified. Archive can reduce the amount of data that needs to be backed up and save bandwidth and storage space. Differential is a method of backing up only the data that has changed since the last full backup. Differential can also save bandwidth and storage space, as well as speed up the backup process.

References:

CompTIA Server+ Certification Exam Objectives1, page 12

Server Management: Server Hardware Installation and Management2, Module 2, Lesson 5

A security guard is a human element in physical security, making them susceptible to social engineering attacks. Social engineering exploits human behavior, and a guard can be tricked into allowing unauthorized access through persuasion, manipulation, or deception.

Security guard (Answer A): Human elements are the most vulnerable to social engineering techniques like impersonation or manipulation.

Access control vestibule (Option B): This is a physical security barrier, which is harder to exploit through social engineering.

Perimeter fencing (Option C): This is a static physical barrier, not susceptible to social engineering.

Biometric locks (Option D): These rely on biological data and are not susceptible to social engineering in the same way a human would be.

Bollards (Option E): Physical barriers that are not vulnerable to social engineering.

CompTIA Server+ Reference:This topic relates to SK0-005 Objective 4.4: Implement physical security controls.