CompTIA Security+ (SY0-701) — Question 467

A company is using a legacy FTP server to transfer financial data to a third party. The legacy system does not support SFTP, so a compensating control is needed to protect the sensitive, financial data in transit. Which of the following would be the most appropriate for the company to use?

Answer options

• A. Telnet connection
• B. SSH tunneling
• C. Patch installation
• D. Full disk encryption

Correct answer: B

Explanation

SSH tunneling is the most suitable choice as it securely encrypts the data being transmitted over the insecure FTP protocol, thereby protecting sensitive financial information. The other options, such as Telnet, do not provide encryption, while patch installation and full disk encryption do not specifically address the need for securing data in transit.