New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

WGU (D487, KEO1) Secure Software Design Exam - Topic 3 Question 3 Discussion

Actual exam question for WGU's WGU (D487, KEO1) Secure Software Design exam
Question #: 3
Topic #: 3
[All WGU (D487, KEO1) Secure Software Design Questions]

Recent vulnerability scans discovered that the organization's production web servers were responding to ping requests with server type, version, and operating system, which hackers could leverage to plan attacks.

How should the organization remediate this vulnerability?

Show Suggested Answer Hide Answer
Suggested Answer: A

To remediate the vulnerability of servers responding to ping requests with sensitive information, the organization should configure the servers to return as little information as possible to network requests. This practice is known as reducing the attack surface. By limiting the amount of information disclosed, potential attackers have less data to use when attempting to exploit vulnerabilities. Regular updates and patching (Option B) are also important, but they do not address the specific issue of information disclosure. Uninstalling or disabling unnecessary features (Option C) and restricting access to configuration files (Option D) are good security practices, but they do not directly prevent the leakage of server information through ping responses.


by Kathrine at Nov 20, 2025, 03:11 AM

Limited Time Offer

25%

Off

Get Premium WGU (D487, KEO1) Secure Software Design Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Stephen
14 hours ago
Regular updates are crucial too, can't overlook option B.
upvoted 0 times
...
Allene
6 days ago
Wait, servers are still responding to pings? That's surprising!
upvoted 0 times
...
Rodney
11 days ago
Agreed, option A is a must!
upvoted 0 times
...
Rosann
16 days ago
Definitely need to limit info from server responses.
upvoted 0 times
...
Jacqueline
21 days ago
Haha, I bet the admins were like, "Hey, let's make it easy for the hackers! They'll love all the juicy details we're giving them."
upvoted 0 times
...
Kristel
26 days ago
Definitely option A. Hackers can easily exploit any information leakage, so it's important to lock down the servers.
upvoted 0 times
...
Hillary
1 month ago
I agree, option A is the best choice. Reducing the attack surface is an effective security measure.
upvoted 0 times
...
Kaitlyn
1 month ago
Option A is the correct answer. Minimizing information disclosure is crucial to prevent attackers from gathering intelligence.
upvoted 0 times
...
Sabina
1 month ago
I practiced a similar question where disabling unnecessary features was key. So, I wonder if option C could also help in this situation.
upvoted 0 times
...
Cherry
2 months ago
I'm not entirely sure, but I remember something about keeping servers updated being important too. Maybe option B is relevant here?
upvoted 0 times
...
Cecil
2 months ago
I'm a bit confused on the best approach here. Seems like there are a few good options, but I'll need to think it through carefully to decide which one is the most effective.
upvoted 0 times
...
Misty
2 months ago
Limiting access to the configuration files is important too. Gotta make sure only admins can get in there and make changes.
upvoted 0 times
...
Ezekiel
2 months ago
I think option A makes the most sense since we want to minimize the information exposed to potential attackers.
upvoted 0 times
...
Fairy
2 months ago
A) is the best choice. Less info means less risk.
upvoted 0 times
...
Lizbeth
2 months ago
Disabling unnecessary features is always a good security practice, so I'd definitely consider that option as well. Can't have anything exposed that you don't need.
upvoted 0 times
...
Sang
3 months ago
Limiting access to configuration files sounds good, but I feel like it might not directly address the ping response issue. Is option D really the best choice?
upvoted 0 times
...
Edwin
3 months ago
Hmm, I'm not sure. Keeping the servers updated with the latest security patches seems like it could also be a good way to address this vulnerability.
upvoted 0 times
...
Jess
3 months ago
I think the best approach here is to ensure the servers are configured to return as little information as possible. That way, hackers won't have as much to work with when planning attacks.
upvoted 0 times
Lyda
3 months ago
Definitely! Less info means less risk.
upvoted 0 times
...
...

Save Cancel