Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA CS0-003 Exam - Topic 3 Question 45 Discussion

Actual exam question for CompTIA's CS0-003 exam
Question #: 45
Topic #: 3
[All CS0-003 Questions]

A company has the following security requirements:

. No public IPs

* All data secured at rest

. No insecure ports/protocols

After a cloud scan is completed, a security analyst receives reports that several misconfigurations are putting the company at risk. Given the following cloud scanner output:

Which of the following should the analyst recommend be updated first to meet the security requirements and reduce risks?

Show Suggested Answer Hide Answer
Suggested Answer: D

This VM has a public IP and an open port 80, which violates the company's security requirements of no public IPs and no insecure ports/protocols. It also exposes the VM to potential attacks from the internet. This VM should be updated first to use a private IP and close the port 80, or use a secure protocol such as HTTPS.

Reference[CompTIA CySA+ Study Guide: Exam CS0-003, 3rd Edition], Chapter 2: Cloud and Hybrid Environments, page 67.[What is a Public IP Address?][What is Port 80?]


by Merissa at Jul 03, 2025, 06:21 AM

Limited Time Offer

25%

Off

Get Premium CS0-003 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Frank
5 months ago
I thought all data was supposed to be secured at rest, but it looks like it isn't!
upvoted 0 times
...
Denny
5 months ago
Wait, are we sure those misconfigurations are that serious?
upvoted 0 times
...
Eliz
6 months ago
VM_DEV_Web02 seems less urgent, right?
upvoted 0 times
...
Pete
6 months ago
Totally agree, it should be the top priority!
upvoted 0 times
...
Leota
6 months ago
Looks like VM_PRD_DB has the most critical issues.
upvoted 0 times
...
Micaela
6 months ago
I recall that securing data at rest is crucial, so I wonder if VM_DEV_DB is a candidate since it might not be as critical as production but still needs attention.
upvoted 0 times
...
Berry
7 months ago
I practiced a similar question where we had to prioritize based on security risks. I think any VM with public access should be addressed first, but I can't recall which one that is here.
upvoted 0 times
...
Bonita
7 months ago
I'm not entirely sure, but I feel like the web servers might be more exposed. Maybe VM_PRD_Web01 needs to be updated first?
upvoted 0 times
...
Suzan
7 months ago
I remember we discussed the importance of securing databases, especially in production environments. I think VM_PRD_DB might be the priority here.
upvoted 0 times
...
Erin
7 months ago
I'm a bit confused by all the different VMs and their configurations. I'll need to really analyze the security requirements and scanner data to figure out which one poses the biggest risk that needs to be addressed first. Maybe I'll make some notes to help organize my thoughts before selecting an answer.
upvoted 0 times
...
Zack
7 months ago
Okay, let's see here. The security requirements are pretty clear - no public IPs, secured data at rest, and no insecure ports/protocols. Looking at the scanner output, it seems like VM_PRD_DB has the most issues across all those areas, so I'll recommend that one first.
upvoted 0 times
...
Elli
8 months ago
Hmm, this is a tricky one. I need to carefully review the security requirements and scanner output to determine the highest priority issue. The public IP on VM_DEV_Web02 seems like a major risk, but I'll double-check the other VMs as well before making my recommendation.
upvoted 0 times
...
Scarlet
8 months ago
This looks like a straightforward security assessment question. I'll focus on the key requirements first - no public IPs, all data secured at rest, and no insecure ports/protocols. Based on the scanner output, it seems like the VM_PRD_DB has the most critical issues, so I'll recommend that one first.
upvoted 0 times
...
Tayna
9 months ago
I bet the analyst is wishing they had a magic wand to fix all these issues at once. Gotta start somewhere though, and the production DB seems like the safest bet.
upvoted 0 times
...
Francisca
10 months ago
Haha, looks like the dev database VM_DEV_DB is the black sheep of the bunch. Better not let the boss see that one!
upvoted 0 times
...
William
10 months ago
I see your point, Svetlana. Let's prioritize updating VM_PRD_DB to meet the security requirements.
upvoted 0 times
...
Latosha
10 months ago
This is a tough one, but I'd say the analyst should start with the production web server VM_PRD_Web01. Wouldn't want the public to access that!
upvoted 0 times
Pamela
8 months ago
User2: Definitely, we need to make sure no public IPs are exposed.
upvoted 0 times
...
Brynn
9 months ago
User1: I agree, VM_PRD_Web01 should be updated first to meet the security requirements.
upvoted 0 times
...
...
Frederica
10 months ago
Hmm, the dev web server VM_DEV_Web02 also has some problems. Can't ignore that, gotta keep all environments secure.
upvoted 0 times
...
Svetlana
10 months ago
That's true, but securing the database should come first to protect sensitive data.
upvoted 0 times
...
Glenna
10 months ago
Looks like the production database VM_PRD_DB has some major security issues. That should be the top priority to address.
upvoted 0 times
Gertude
8 months ago
User3: Let's focus on securing VM_PRD_DB first to reduce the risks to the company.
upvoted 0 times
...
Carissa
8 months ago
User2: We should definitely prioritize updating VM_PRD_DB to meet the security requirements.
upvoted 0 times
...
Gail
9 months ago
User1: I agree, the production database VM_PRD_DB seems to have the most security issues.
upvoted 0 times
...
...
Tandra
10 months ago
But what about VM_PRD_Web01? It's also a production system that needs to be secured.
upvoted 0 times
...
William
10 months ago
I agree with Svetlana, securing the production database should be the top priority.
upvoted 0 times
...
Svetlana
11 months ago
I think we should update VM_PRD_DB first.
upvoted 0 times
...

Save Cancel