Ethical Hacking Essentials Practice Test

The selection of installing IIS server on a domain controller as the option that is not a countermeasure against web server attacks is based on understanding the risks associated with this practice.

Using IIS (Internet Information Services) on a domain controller can expose the server to unnecessary risk because domain controllers already carry critical authentication functions for the network. By installing a web server, you increase its attack surface, making it more susceptible to vulnerabilities, exploits, and potential breaches. A compromised web server on a domain controller could lead to significant security issues, including unauthorized access to sensitive information or manipulation of user credentials.

In contrast, the other measures—screening and filtering incoming requests, regularly updating server software, and using secure passwords—are focused on enhancing the security posture of the web server itself. Effective filtering can block malicious traffic, updates ensure known vulnerabilities are patched, and strong passwords protect against unauthorized access. All these are established best practices aimed at mitigating web server attacks.