Crucial Exams

CompTIA CySA+ CS0-003 (V3) Practice Question

During a web-application assessment, a security analyst runs Nikto against an internal Apache server and receives the following findings:

  • OSVDB-877: HTTP TRACE method is active.
  • Allowed HTTP Methods: GET, HEAD, POST, OPTIONS, TRACE

Based on this output, which remediation would BEST mitigate the most critical risk identified?

  • Configure ModSecurity to suppress the Server response header

  • Disable the TRACE method on the web server

  • Restrict access to the /admin/ directory with an IP allow list

  • Upgrade the Apache package to the latest stable release

CompTIA CySA+ CS0-003 (V3)
Vulnerability Management
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
SAVE $51
CompTIA Cybersecurity Analyst Voucher
CySA+ / v3 / CS0-003
$425.00 $374.00
SAVE $57
CompTIA Cybersecurity Analyst Voucher with Retake
CySA+ / v3 / CS0-003
Includes Retake
$474.00 $417.00
Bash, the Crucial Exams Chat Bot
AI Bot