ISC2 Exam SSCP Topic 11 Question 19 Discussion

Actual exam question for ISC2's Systems Security Certified Practitioner exam

Question #: 19
Topic #: 11

[All Systems Security Certified Practitioner Questions]

Which of the following can best eliminate dial-up access through a Remote Access Server as a hacking vector?

AUsing a TACACS+ server.

BInstalling the Remote Access Server outside the firewall and forcing legitimate users to authenticate to the firewall.

CSetting modem ring count to at least 5.

DOnly attaching modems to non-networked hosts.

Show Suggested Answer

Suggested Answer: B

Containing the dial-up problem is conceptually easy: by installing the Remote Access Server outside the firewall and forcing legitimate users to authenticate to the firewall, any access to internal resources through the RAS can be filtered as would any other connection coming from the Internet.

The use of a TACACS+ Server by itself cannot eliminate hacking.

Setting a modem ring count to 5 may help in defeating war-dialing hackers who look for modem by dialing long series of numbers.

Attaching modems only to non-networked hosts is not practical and would not prevent these hosts from being hacked.

Source: STREBE, Matthew and PERKINS, Charles, Firewalls 24seven, Sybex 2000, Chapter 2: Hackers.

by Cecily at May 06, 2022, 08:21 PM

Limited Time Offer

25%

Off

Get Premium SSCP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!