Ethical Hacking Essentials Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Study for the Ethical Hacking Essentials Test. Explore interactive flashcards and multiple-choice questions with hints and explanations. Prepare thoroughly and boost your exam readiness!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

Which is NOT a countermeasure against web server attacks?

  1. Screen and filter incoming requests

  2. Update server software regularly

  3. Install IIS server on a domain controller

  4. Use secure passwords

The correct answer is: Install IIS server on a domain controller

The selection of installing IIS server on a domain controller as the option that is not a countermeasure against web server attacks is based on understanding the risks associated with this practice. Using IIS (Internet Information Services) on a domain controller can expose the server to unnecessary risk because domain controllers already carry critical authentication functions for the network. By installing a web server, you increase its attack surface, making it more susceptible to vulnerabilities, exploits, and potential breaches. A compromised web server on a domain controller could lead to significant security issues, including unauthorized access to sensitive information or manipulation of user credentials. In contrast, the other measures—screening and filtering incoming requests, regularly updating server software, and using secure passwords—are focused on enhancing the security posture of the web server itself. Effective filtering can block malicious traffic, updates ensure known vulnerabilities are patched, and strong passwords protect against unauthorized access. All these are established best practices aimed at mitigating web server attacks.

More Questions Like This