CompTIA Security+ (SY0-701) — Question 16

A company’s web filter is configured to scan the URL for strings and deny access when matches are found. Which of the following search strings should an analyst employ to prohibit access to non-encrypted websites?

Answer options

• A. encryption=off
• B. http://
• C. www.*.com
• D. :443

Correct answer: B

Explanation

The correct answer is B, as 'http://' indicates a non-encrypted connection, unlike 'https://'. Option A would not effectively target non-encrypted sites, while C would only match specific web addresses and D refers to a port used for encrypted traffic, thus not applicable for blocking non-encrypted sites.