A security assessment reveals critical patches have remained unapplied on a server for a long time. Which tactic addresses these missing updates most effectively?
Rebuild the system with fresh hardware
Run a host-based intrusion detection program and maintain normal operations
Install the recommended fixes after evaluating them in a test environment
Place the server in an isolated network and continue usual tasks
Applying tested patches is essential for systems with old programs, since leaving them unpatched prolongs the risk window. Adding security layers like network segmentation or host-based firewalls can provide extra protection, but the direct resolution of known weaknesses is best done by updating. Quarantining a server outright can disrupt operations unnecessarily when proper updates can resolve the underlying risk.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is it important to evaluate patches in a test environment before applying them?
Open an interactive chat with Bash
What is a host-based intrusion detection program, and why isn’t it the best solution here?
Open an interactive chat with Bash
What are additional security layers, like network segmentation or firewalls, and how do they complement patching?