CompTIA Security+ (SY0-601) — Question 186

An organization is concerned about hackers potentially entering a facility and plugging in a remotely accessible Kali Linux box. Which of the following should be the first lines of defense against such an attack? (Choose two.)

Answer options

• A. MAC filtering
• B. Zero trust segmentation
• C. Network access control
• D. Access control vestibules
• E. Guards
• F. Bollards

Correct answer: C, D

Explanation

The correct answers, C and D, focus on controlling physical access to the facility and the network. Network access control (C) ensures that only authorized devices can connect to the network, while access control vestibules (D) provide a physical barrier to prevent unauthorized entry. Options A, B, E, and F do not directly address the immediate threat of unauthorized physical access and are less effective as first lines of defense in this scenario.