CompTIA CySA+ (CS0-002) — Question 414

A company uses an FTP server to support its critical business functions. The FTP server is configured as follows:
✑ The FTP service is running with the data directory configured in /opt/ftp/data.
✑ The FTP server hosts employees' home directories in /home.
✑ Employees may store sensitive information in their home directories.
An IoC revealed that an FTP directory traversal attack resulted in sensitive data loss. Which of the following should a server administrator implement to reduce the risk of current and future directory traversal attacks targeted at the FTP server?

Answer options

• A. Implement file-level encryption of sensitive files.
• B. Reconfigure the FTP server to support FTPS.
• C. Run the FTP server in a chroot environment.
• D. Upgrade the FTP server to the latest version.

Correct answer: C

Explanation

Running the FTP server in a chroot environment isolates its file system, which helps prevent directory traversal attacks by restricting the server's access to only its designated directories. Other options, while beneficial, do not directly address the underlying vulnerability of directory traversal as effectively. File-level encryption secures data but does not prevent unauthorized access, FTPS improves security in transit but not at the file system level, and updating the server may fix bugs but does not inherently mitigate traversal attacks.