GAQM Exam CPEH-001 Topic 3 Question 113 Discussion

Actual exam question for GAQM's CPEH-001 exam

Question #: 113
Topic #: 3

A remote user tries to login to a secure network using Telnet, but accidently types in an invalid user name or password. Which responses would NOT be preferred by an experienced Security Manager? (multiple answer)

AInvalid Username

BInvalid Password

CAuthentication Failure

DLogin Attempt Failed

EAccess Denied

Show Suggested Answer

Suggested Answer: A, B

As little information as possible should be given about a failed login attempt. Invalid username or password is not desirable.

by Paulina at Jul 07, 2025, 11:35 AM

Limited Time Offer

25%

Off

Get Premium CPEH-001 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Brittni

2 hours ago

I'd go with A and B, keep it simple and vague. No need to give the attacker any clues about what went wrong. Security 101, folks!

upvoted 0 times

...

Freeman

3 days ago

I think option D) Login Attempt Failed would not be preferred either, as it gives away too much information about the login process.

upvoted 0 times

...

Amos

6 days ago

I agree with Noble. Option C) Authentication Failure would also not be preferred because it discloses too much information to potential attackers.

upvoted 0 times

...

Leslie

10 days ago

Oops, looks like they're trying to hack the system with those invalid login attempts. C, D, and E are way too specific - gotta keep those details under wraps!

upvoted 0 times

Nicolette

1 days ago

A) Invalid Username

upvoted 0 times

...

Noble

10 days ago

I think option A) Invalid Username would not be preferred by an experienced Security Manager because it reveals specific information about the error.

upvoted 0 times

...