While checking a software repository, an analyst finds login details stored in a code file. The development team mentions it is necessary for testing. Which measure reduces unauthorized exposure for sensitive details?
Place the login details in a renamed file hidden in a private folder
Use a dedicated service that updates access data on a schedule and restricts retrieval
Compress the credentials into a password-protected archive and store it in the repository
Move the data into a shared local file used by the entire development group
Using a dedicated solution that changes access data on a schedule and limits retrieval reduces the chance of a breach. Storing sensitive details in hidden files or archives does not address the presence of the data in the repository. Sharing the files in a local directory without rotation still allows retrieval if the contents are copied or pushed to another location.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is it important to use a dedicated service to update access data on a schedule?
Open an interactive chat with Bash
What risks are associated with storing sensitive data in hidden files or password-protected archives?
Open an interactive chat with Bash
How does restricting retrieval of credentials enhance security?