Certified Ethical Hacker (CEH v11) — Question 218

Larry, a security professional in an organization, has noticed some abnormalities in the user accounts on a web server. To thwart evolving attacks, he decided to harden the security of the web server by adopting a few countermeasures to secure the accounts on the web server.
Which of the following countermeasures must Larry implement to secure the user accounts on the web server?

Answer options

• A. Retain all unused modules and application extensions.
• B. Limit the administrator or root-level access to the minimum number of users.
• C. Enable all non-interactive accounts that should exist but do not require interactive login.
• D. Enable unused default user accounts created during the installation of an OS.

Correct answer: B

Explanation

The correct answer is B, as limiting administrator access reduces the risk of unauthorized actions and vulnerabilities. Option A is incorrect because retaining unused modules can increase attack surfaces. Option C is not advisable since non-interactive accounts can still pose risks if not managed properly. Option D is also wrong because enabling unused default accounts can lead to potential security breaches.