ISC2 Exam SSCP Topic 1 Question 34 Discussion

Actual exam question for ISC2's Systems Security Certified Practitioner exam

Question #: 34
Topic #: 1

[All Systems Security Certified Practitioner Questions]

Which of the following firewall rules found on a firewall installed between an organization's internal network and the Internet would present the greatest danger to the internal network?

APermit all traffic between local hosts.

BPermit all inbound ssh traffic.

CPermit all inbound tcp connections.

DPermit all syslog traffic to log-server.abc.org.

Show Suggested Answer

Suggested Answer: C

Any opening of an internal network to the Internet is susceptible of creating a new vulnerability.

Of the given rules, the one that permits all inbound tcp connections is the less likely to be used since it amounts to almost having no firewall at all, tcp being widely used on the Internet.

Reference(s) used for this question:

ALLEN,

Julia H., The CERT Guide to System and Network Security Practices, Addison-Wesley, 2001, Appendix B, Practice-Level Policy Considerations (page 409).

by Jesusa at May 05, 2022, 08:42 AM

Limited Time Offer

25%

Off

Get Premium SSCP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!