CompTIA CySA+ (CS0-003) — Question 302

A security analyst needs to block vulnerable ports and disable legacy protocols. The analyst has ensured NetBIOS trio, Telnet, SMB, and TFTP are blocked and/or disabled. Which of the following additional protocols should the analyst block next?

Answer options

• A. LDAPS v3
• B. SNMP v1
• C. TLS 1.3
• D. Kerberos v5

Correct answer: B

Explanation

The correct answer is B, SNMP v1, as it is known for its lack of security features and can expose sensitive information. In contrast, LDAPS v3, TLS 1.3, and Kerberos v5 are more secure protocols that provide enhanced security mechanisms and should be retained.