CompTIA XK0-005 Exam - Topic 12 Question 6 Discussion

Actual exam question for CompTIA's XK0-005 exam

Question #: 6
Topic #: 12

The security team has identified a web service that is running with elevated privileges A Linux administrator is working to change the systemd service file to meet security compliance standards. Given the following output:

Which of the following remediation steps will prevent the web service from running as a privileged user?

ARemoving the ExecStarWusr/sbin/webserver -D SOPTIONS from the service file

BUpdating the Environment File line in the [Service] section to/home/webservice/config

CAdding the User-webservice to the [Service] section of the service file

DChanging the:nulti-user.target in the [Install] section to basic.target

Show Suggested Answer

Suggested Answer: A

by Raymon at Dec 08, 2022, 11:50 PM

Limited Time Offer

25%

Off

Get Premium XK0-005 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Lashon

4 months ago

Totally agree, C is the best choice here!

upvoted 0 times

...

Cora

4 months ago

Changing to basic.target won't help with privileges.

upvoted 0 times

...

Rikki

4 months ago

Surprised that people still run services as root!

upvoted 0 times

...

Sunshine

4 months ago

I think removing ExecStart is too drastic.

upvoted 0 times

...

Tenesha

4 months ago

Option C is definitely the right move!

upvoted 0 times

...

Nicolette

5 months ago

I feel like updating the Environment File won't really affect the user privileges. It seems more about configuration than security compliance.

upvoted 0 times

...

Malcom

5 months ago

I’m a bit confused about the ExecStart line. Removing it seems drastic, but I can't recall if it directly relates to privilege levels.

upvoted 0 times

...

Chaya

5 months ago

I think adding the User line to the service file is the right move. We practiced a similar question where changing the user context was crucial for compliance.

upvoted 0 times

...

Julene

5 months ago

I remember we discussed how running services as non-privileged users is a key security practice, but I'm not sure which option directly addresses that.

upvoted 0 times

...

Sage

5 months ago

Aha, I know this one! Inferential statistics is the process of drawing conclusions about a population based on sample data, which is exactly what the question is asking about. I'm confident this is the right answer.

upvoted 0 times

...

Lettie

5 months ago

I'm a bit confused by the wording of this question. It seems to be describing goodwill, but I want to make sure I fully understand the concept before answering. Maybe I'll skip this one for now and come back to it.

upvoted 0 times

...

Ty

5 months ago

Hmm, this looks like a tricky one. I'll need to carefully work through the details to figure out the total IOPS required.

upvoted 0 times

...

Adolph

5 months ago

I'm pretty sure SSL v3 offers client-side authentication, so I'll go with option C.

upvoted 0 times

...

Magda

5 months ago

Okay, let me see. Packet filtering routers are used in low-risk environments, so they need to be fast and flexible. I'm leaning towards C, since that mentions they are fast, flexible, and transparent.

upvoted 0 times

...