When implementing hardening techniques on a company's main database server to minimize its attack surface, which of the following measures should be taken FIRST?
Implement account lockout policies after several failed login attempts.
Configure the firewall to allow only essential traffic.
Update the server to the latest stable OS version and apply all available security patches.
Conduct a vulnerability scan to identify and fix security flaws.
The process of hardening a server should begin with updating the server to the latest stable version of the operating system, including all the available security patches. This action addresses known vulnerabilities and reduces the number of potential attack vectors that could be exploited. Configuring a firewall, setting account lockout policies, and conducting a vulnerability scan are important hardening steps, but they come after ensuring that the server is running the most secure operating system version available.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is updating the OS and applying security patches considered the FIRST step in server hardening?
Open an interactive chat with Bash
What is the difference between hardening and conducting a vulnerability scan?
Open an interactive chat with Bash
How does configuring a firewall complement the server hardening process?