During a routine audit, you discover that a production server is using the default settings for its web server software, which include verbose error messages and sample applications. The server hosts sensitive customer data. What is the best immediate action to address this vulnerability?
Schedule a security review to consider future improvements beyond the default settings.
Change the default settings to a hardened configuration, ensuring verbose error messages and sample applications are disabled.
Keep the verbose error messages enabled for easier troubleshooting by administrators.
Read the web server software documentation to understand the purpose of default settings.