GIAC Exam GCED Topic 9 Question 56 Discussion

Actual exam question for GIAC's GCED exam

Question #: 56
Topic #: 9

[All GCED Questions]

Why would a Cisco network device with the latest updates and patches have the service config setting enabled, making the device vulnerable to the TFTP Server Attack?

ADisabling telnet enables the setting on the network device.

BThis setting is enabled by default in the current Cisco IOS.

CAllowing remote administration using SSH under the Cisco IOS also enables the setting.

DAn attack by Cisco Global Exploiter will automatically enable the setting.

EThis older default IOS setting was inherited from an older configuration despite the upgrade.

Show Suggested Answer

Suggested Answer: A

A company needs to classify its information as a key step in valuing it and knowing where to focus its protection.

Rotation of duties and separation of duties are both key elements in reducing the scope of information access and the ability to conceal malicious behavior.

Separation of duties helps minimize ''empire building'' within a company, keeping one individual from controlling a great deal of information, reducing the insider threat.

Security awareness programs can help other employees notice the signs of an insider attack and thus reduce the insider threat.

Detection is a reactive method and only occurs after an attack occurs. Only preventative methods can stop or limit an attack.

by Buddy at Dec 09, 2024, 02:37 AM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Sharmaine

8 days ago

I think the correct answer is E. An older default setting from a previous IOS version could still be enabled, even after upgrading to the latest version. Cisco has done a great job with security, but sometimes legacy configurations can cause issues.

upvoted 0 times

...