CompTIA Network+ (N10-008) — Question 244

During a recent security audit, a contracted penetration tester discovered the organization uses a number of insecure protocols. Which of the following ports should be disallowed so only encrypted protocols are allowed? (Choose two.)

Answer options

• A. 22
• B. 23
• C. 69
• D. 443
• E. 587
• F. 8080

Correct answer: B, C

Explanation

The correct answers are B and C because port 23 is used for Telnet, which is not encrypted, and port 69 is used for Trivial File Transfer Protocol (TFTP), which also lacks encryption. The other options, such as 22 (SSH), 443 (HTTPS), 587 (SMTP with SSL/TLS), and 8080 (HTTP alternative), support secure connections.