If insecure protocols must be used, what should be done?

Study for the EC-Council Certified Ethical Hacker (CEH) v13 Exam. Utilize flashcards and multiple-choice questions with helpful hints and detailed explanations. Excel in your exam preparation!

Multiple Choice

If insecure protocols must be used, what should be done?

Explanation:
When you must use insecure protocols, protecting the data in transit is essential by encrypting all transmissions. Encryption thwarts eavesdropping, tampering, and impersonation by making the content unreadable to anyone who intercepts it, and it can also provide authentication when using proper, trusted mechanisms. In practice, wrap or replace insecure protocols with secure transports: use HTTPS for web traffic, SSH instead of Telnet, and SFTP/FTPS instead of plain FTP, or apply TLS to email and other services. Relying on a firewall alone or operating unencrypted admin interfaces leaves credentials and configurations exposed, so encryption of the data channel is the critical mitigation.

When you must use insecure protocols, protecting the data in transit is essential by encrypting all transmissions. Encryption thwarts eavesdropping, tampering, and impersonation by making the content unreadable to anyone who intercepts it, and it can also provide authentication when using proper, trusted mechanisms. In practice, wrap or replace insecure protocols with secure transports: use HTTPS for web traffic, SSH instead of Telnet, and SFTP/FTPS instead of plain FTP, or apply TLS to email and other services. Relying on a firewall alone or operating unencrypted admin interfaces leaves credentials and configurations exposed, so encryption of the data channel is the critical mitigation.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy