CompTIA Updated SK0-005 Exam Questions and Answers by abdurrahman

The server administrator should close port 3389 and rerun the scan. Port 3389 is used for Remote Desktop Protocol (RDP), which allows remote access and control of a server. RDP is vulnerable to brute-force attacks, credential theft, and malware infection. Closing port 3389 can prevent unauthorized access and improve the security of the server. The other ports are not as risky as port 3389 and can be left open for legitimate purposes. References: CompTIA Server+ Certification Exam Objectives, Domain 5.0: Security, Objective 5.4: Given a scenario, implement proper environmental controls and techniques.

Failover NIC teaming (Network Interface Card teaming) is a method used to provide fault tolerance by combining two or more NICs into a single logical interface. If one NIC fails, the other NIC(s) take over, ensuring continuous network connectivity.

Increased fault tolerance (Answer D): The primary benefit of failover NIC teaming is to ensure that network communication is not interrupted when one NIC fails. The remaining NICs take over to maintain uptime.

Decreased latency (Option A): NIC teaming is not primarily used to reduce latency; it’s focused on redundancy and fault tolerance.

Increased transmission size (Option B): NIC teaming does not directly increase the size of transmissions.

Increased system resources (Option C): NIC teaming doesn’t increase system resources like CPU or memory, but it ensures network redundancy.

CompTIA Server+ Reference:This topic is covered under SK0-005 Objective 1.4: Summarize methods used to manage network connections.

Using a network-based deployment, such as network booting (PXE - Preboot Execution Environment) or imaging through a server, is the most efficient way to load operating systems onto multiple machines simultaneously. This approach minimizes the manual intervention required for each device, as the administrator can initiate the operating system installation or imaging process across all desktops at once through the network. In contrast, using an SD card, DVD (Optical), or USB would require the administrator to physically move the media from one desktop to another, significantly increasing the setup time for each device.

HIDS (Host Intrusion Detection System): Continuously monitors a system for suspicious activity and logs or raises alerts when potential threats are identified. This proactive approach is crucial for identifying and mitigating threats on a web server exposed to the external network.

Applying OS updates: While essential for maintaining system security, updates address vulnerabilities and may not necessarily identify ongoing threats.

Disabling unused services: Reduces the attack surface by minimizing potential entry points for malicious actors, but doesn't actively identify threats.

Installing anti-malware: Primarily designed to detect and remove malware after infection, not for ongoing threat identification.

References:

CompTIA Server+ Objectives (Exam codes SK0-004 or SK0-005): Search for sections on intrusion detection and prevention.