A system administrator notices that an unauthorized user gained access to a server via SSH using a compromised user account. Which security measure should be implemented to prevent such attacks in the future?
Trap 1: Disable SSH and use Telnet
Telnet is unencrypted and less secure.
Trap 2: Enforce a complex password policy
Complex passwords reduce brute force risk but do not prevent compromised passwords.
Trap 3: Allow all users to use sudo without passwords
This increases security risk.
- A
Configure SSH to use key-based authentication only
Key-based authentication is more secure and prevents password attacks.
- B
Disable SSH and use Telnet
Why wrong: Telnet is unencrypted and less secure.
- C
Enforce a complex password policy
Why wrong: Complex passwords reduce brute force risk but do not prevent compromised passwords.
- D
Allow all users to use sudo without passwords
Why wrong: This increases security risk.