CompTIA Security+ (SY0-501) — Question 964

Given the log output:
Max 15 00:15:23.431 CRT: #SEC_LOGIN-5-LOGIN_SUCCESS:
Login Success [user: msmith] [Source: 10.0.12.45]
[localport: 23] at 00:15:23:431 CET Sun Mar 15 2015
Which of the following should the network administrator do to protect data security?

Answer options

• A. Configure port security for logons
• B. Disable telnet and enable SSH
• C. Configure an AAA server
• D. Disable password and enable RSA authentication

Correct answer: B

Explanation

The correct answer is B because SSH provides a secure alternative to telnet, encrypting the data transmitted over the network, which is essential for protecting sensitive information. Option A, configuring port security, does not specifically address the security issues related to telnet. Option C, configuring an AAA server, is useful but not as immediate as transitioning to SSH. Option D, disabling password authentication for RSA, could reduce security if not implemented correctly.