🎖️🏵️ Memorial Weekend Sale — 30% off🎖️🏵️

CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA PenTest+ PT0-002 Practice Question

During a penetration test, you have determined that the SSL certificates used on a company's web server are self-signed and have been expired for 6 months. What would be the most appropriate recommendation to include in your report to improve their certificate management practices?

  • Replace self-signed certificates with certificates issued by a trusted Certificate Authority (CA), and implement a process to check and renew certificates before they expire.

  • Implement a web application firewall (WAF) to secure the server and mitigate the need for a trusted certificate.

  • Renew the self-signed certificates to extend their validity period so that users no longer receive security warnings.

  • Request an exception from browsers' certificate warning lists to avoid security warnings about the self-signed certificates.

This question is for objective:
Reporting and Communication
Your Score:
Reporting and Communication
Information Gathering and Vulnerability Scanning
Attacks and Exploits
Tools and Code Analysis
Planning and Scoping