A newly installed Linux server on your network is found to be running several services by default. Which of the following actions aligns with security best practices and minimizes the server's exposure to potential exploits?
Disable any services that are not required for the server's role.
Implement a firewall and define rules to protect exposed services against unauthorized access.
Change the default ports on which the services are running to less common port numbers.
Apply all available updates and patches to the services currently running.