Certified Ethical Hacker (CEH v10) — Question 67

Why should the security analyst disable/remove unnecessary ISAPI filters?

Answer options

• A. To defend against social engineering attacks
• B. To defend against webserver attacks
• C. To defend against jailbreaking
• D. To defend against wireless attacks

Correct answer: B

Explanation

Disabling or removing unnecessary ISAPI filters is crucial as they can create vulnerabilities that attackers might exploit to compromise the web server. While social engineering, jailbreaking, and wireless attacks are important security concerns, they are not directly related to the risks posed by ISAPI filters.