To reduce sniffing risk, which practice should organizations avoid?

Study for the EC-Council Certified Ethical Hacker (CEH) v13 Exam. Utilize flashcards and multiple-choice questions with helpful hints and detailed explanations. Excel in your exam preparation!

Multiple Choice

To reduce sniffing risk, which practice should organizations avoid?

Explanation:
Sniffing risk comes from sending sensitive information in plaintext over the network. To reduce this risk, avoid protocols that expose credentials and data unencrypted. Basic HTTP authentication, FTP, and Telnet all transmit information in clear text, making it easy for anyone monitoring the network to read credentials and data. So the best practice is to avoid these insecure protocols altogether and use secure alternatives like HTTPS, SSH, and SFTP/FTPS for transfers and remote access. The other scenarios describe using insecure protocols rather than avoiding them, which would increase sniffing risk rather than reduce it.

Sniffing risk comes from sending sensitive information in plaintext over the network. To reduce this risk, avoid protocols that expose credentials and data unencrypted. Basic HTTP authentication, FTP, and Telnet all transmit information in clear text, making it easy for anyone monitoring the network to read credentials and data. So the best practice is to avoid these insecure protocols altogether and use secure alternatives like HTTPS, SSH, and SFTP/FTPS for transfers and remote access.

The other scenarios describe using insecure protocols rather than avoiding them, which would increase sniffing risk rather than reduce it.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy