Certified Ethical Hacker (CEH v13) — Question 188

Larry, a security professional in an organization, has noticed some abnormalities in the user accounts on a web server. To thwart evolving attacks, he decided to harden the security of the web server by adopting a few countermeasures to secure the accounts on the web server.
Which of the following countermeasures must Larry implement to secure the user accounts on the web server?

Answer options

• A. Retain all unused modules and application extensions.
• B. Limit the administrator or root-level access to the minimum number of users.
• C. Enable all non-interactive accounts that should exist but do not require interactive login.
• D. Enable unused default user accounts created during the installation of an OS.

Correct answer: B

Explanation

The correct answer is B because limiting administrator access reduces the potential attack surface, making it harder for unauthorized users to gain control. Options A and D increase risk by retaining unnecessary components and accounts, while C involves enabling accounts that do not require interaction, which can also pose security risks.