CompTIA CySA+ (CS0-002) — Question 93

A company’s change management team has asked a security analyst to review a potential change to the email server before itis released into production. The analyst reviews the following change request:

Change request date: 2020-01-30 -
Change requester. Cindy Richardson

Change asset: WIN2K-EMAILOOI -
Change requested: Modify the following SPF record to change +all to –all

Which of the following is the MOST likely reason for the change?

Answer options

• A. To reject email from servers that are not listed in the SPF record
• B. To reject email from email addresses that are not digitally signed
• C. To accept email to the company's domain
• D. To reject email from users who are not authenticated to the network

Correct answer: A

Explanation

The correct answer is A, as changing +all to -all in an SPF record indicates that emails from servers not specified in the SPF record should be rejected. Options B, C, and D do not accurately reflect the purpose of modifying the SPF record, as they pertain to different email authentication mechanisms and do not relate to the SPF policy change being proposed.