GIAC Exam GCCC Topic 5 Question 59 Discussion

Actual exam question for GIAC's GCCC exam

Question #: 59
Topic #: 5

[All GCCC Questions]

An Internet retailer's database was recently exploited by a foreign criminal organization via a remote attack. The initial exploit resulted in immediate root-level access. What could have been done to prevent this level of access being given to the intruder upon successful exploitation?

AConfigure the DMZ firewall to block unnecessary service

BInstall host integrity monitoring software

CInstall updated anti-virus software

DConfigure the database to run with lower privileges

Show Suggested Answer

Suggested Answer: C

by Leeann at Sep 15, 2024, 02:44 AM

Limited Time Offer

25%

Off

Get Premium GCCC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Junita

12 hours ago

But wouldn't installing host integrity monitoring software also help in detecting and preventing such attacks?

upvoted 0 times

...

Audria

2 days ago

I agree with Keshia, that would have prevented the intruder from gaining root-level access.

upvoted 0 times

...

Alex

7 days ago

D) Configure the database to run with lower privileges seems like the best option here. Limiting the access rights of the database can really help contain the damage from such an exploit.

upvoted 0 times

...

Keshia

16 days ago

We should have configured the DMZ firewall to block unnecessary services.

upvoted 0 times

...