CompTIA CASP+ (CAS-004) — Question 414

While performing mandatory monthly patch updates on a production application server, the security analyst reports an instance of buffer overflow for a new application that was migrated to the cloud and is also publicly exposed. Security policy requires that only internal users have access to the application. Which of the following should the analyst implement to mitigate the issues reported? (Choose two.)

Answer options

• A. Configure firewall rules to block all external traffic.
• B. Enable input validation for all fields.
• C. Enable automatic updates to be installed on all servers.
• D. Configure the security group to enable external traffic.
• E. Set up a DLP policy to alert for exfiltration on all application servers.
• F. Enable nightly vulnerability scans.

Correct answer: A, B

Explanation

The correct answers, A and B, are effective because configuring firewall rules to block all external traffic will prevent unauthorized access, addressing the exposure of the application. Enabling input validation is essential to protect against buffer overflow attacks. The other options either allow external traffic or do not directly address the immediate security risks posed by the buffer overflow issue.