CompTIA Server+ (SK0-005) — Question 45
A company's IDS has identified outbound traffic from one of the web servers coming over port 389 to an outside address. This server only hosts websites. The company's SOC administrator has asked a technician to harden this server. Which of the following would be the BEST way to complete this request?
Answer options
- A. Disable port 389 on the server
- B. Move traffic from port 389 to port 443
- C. Move traffic from port 389 to port 637
- D. Enable port 389 for web traffic
Correct answer: A
Explanation
Disabling port 389 on the server is the best option as it prevents any unnecessary outbound traffic that could indicate a security issue. The other options suggest either moving traffic to other ports or enabling it, which would not address the potential risk associated with the detected outbound traffic.