Penetration on an assessment for a client organization, a penetration tester notices numerous outdated software package versions were installed ...s-critical servers. Which of the following would best mitigate this issue?
Yeah, I'm with Oren on this one. Option A gives you a more comprehensive fix. Although, I do have to say, the idea of refraining from patching until QA approves in Option D is just plain ridiculous. That would be the worst thing to do!
That's a fair point, Javier. But I'm worried that Option B is a bit too specific. Patching and change control are more overarching solutions that can address the root cause, rather than just fixing the symptoms.
Ashley
14 days agoCurt
15 days agoOren
15 days agoCaprice
9 hours ago