CompTIA Server+ (SK0-005) — Question 123

A security manager is concerned that a rogue employee could boot a server from an outside USB drive. Which of the following actions can be taken to reduce this risk? (Choose two.)

Answer options

• A. Close unneeded ports.
• B. Disable unneeded physical ports.
• C. Set a BIOS password.
• D. Install a SIEM.
• E. Disable unneeded services.
• F. Install a HIDS.

Correct answer: B, C

Explanation

Disabling unneeded physical ports (Option B) helps prevent unauthorized access via USB drives, while setting a BIOS password (Option C) restricts booting options to only those authorized. The other options, while useful for security, do not directly address the specific risk of booting a server from an external USB drive.