GIAC Exam GCED Topic 9 Question 56 Discussion

Actual exam question for GIAC's GCED exam

Question #: 56
Topic #: 9

[All GCED Questions]

Why would a Cisco network device with the latest updates and patches have the service config setting enabled, making the device vulnerable to the TFTP Server Attack?

ADisabling telnet enables the setting on the network device.

BThis setting is enabled by default in the current Cisco IOS.

CAllowing remote administration using SSH under the Cisco IOS also enables the setting.

DAn attack by Cisco Global Exploiter will automatically enable the setting.

EThis older default IOS setting was inherited from an older configuration despite the upgrade.

Show Suggested Answer

Suggested Answer: A

A company needs to classify its information as a key step in valuing it and knowing where to focus its protection.

Rotation of duties and separation of duties are both key elements in reducing the scope of information access and the ability to conceal malicious behavior.

Separation of duties helps minimize ''empire building'' within a company, keeping one individual from controlling a great deal of information, reducing the insider threat.

Security awareness programs can help other employees notice the signs of an insider attack and thus reduce the insider threat.

Detection is a reactive method and only occurs after an attack occurs. Only preventative methods can stop or limit an attack.

by Buddy at Dec 09, 2024, 02:37 AM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Merissa

1 months ago

Haha, of course it's the old configuration haunting the device. That's the story of my life in IT. Always gotta watch out for those legacy settings, even after an upgrade. Good thing I've got a sense of humor about this stuff!

upvoted 0 times

...

Marilynn

1 months ago

The Cisco Global Exploiter? Really? That's a new one on me. I don't think that's a real thing, but I could be wrong. Better double-check the options here.

upvoted 0 times

Ramonita

4 days ago

C) Allowing remote administration using SSH under the Cisco IOS also enables the setting.

upvoted 0 times

...

Vince

11 days ago

B) This setting is enabled by default in the current Cisco IOS.

upvoted 0 times

...

Anastacia

22 days ago

A) Disabling telnet enables the setting on the network device.

upvoted 0 times

...

Antonette

2 months ago

Ah, I see. Allowing remote administration through SSH can enable the vulnerable setting. Gotta be careful with those IOS configurations, huh? This is a tricky one.

upvoted 0 times

Antonio

2 days ago

It's important to always double check the configurations, especially after updates.

upvoted 0 times

...

Anastacia

27 days ago

Disabling telnet can also enable the setting on the network device.

upvoted 0 times

...

Annalee

1 months ago

Yes, allowing remote administration through SSH can definitely make the device vulnerable.

upvoted 0 times

...

Xuan

2 months ago

Hmm, I'm not sure about this one. The service config setting being enabled by default in the current IOS seems a bit odd to me. I'll have to research that more before deciding.

upvoted 0 times

Sunshine

12 days ago

C) Allowing remote administration using SSH under the Cisco IOS also enables the setting.

upvoted 0 times

...

Vanda

15 days ago

B) This setting is enabled by default in the current Cisco IOS.

upvoted 0 times

...

Darci

1 months ago

A) Disabling telnet enables the setting on the network device.

upvoted 0 times

...

Sharmaine

2 months ago

I think the correct answer is E. An older default setting from a previous IOS version could still be enabled, even after upgrading to the latest version. Cisco has done a great job with security, but sometimes legacy configurations can cause issues.

upvoted 0 times