Certified Ethical Hacker (CEH v11) — Question 141

After an audit, the auditors inform you that there is a critical finding that you must tackle immediately. You read the audit report, and the problem is the service running on port 389.
Which service is this and how can you tackle the problem?

Answer options

• A. The service is NTP, and you have to change it from UDP to TCP in order to encrypt it.
• B. The service is LDAP, and you must change it to 636, which is LDAPS.
• C. The findings do not require immediate actions and are only suggestions.
• D. The service is SMTP, and you must change it to SMIME, which is an encrypted way to send emails.

Correct answer: B

Explanation

The correct answer is B because port 389 is used by LDAP, and the secure version of this protocol runs on port 636 (LDAPS). Options A and D are incorrect as they refer to different services (NTP and SMTP), and option C misrepresents the urgency of the findings, which are critical and require immediate action.