From the screenshot of the network device in a maintenance audit, which change should the client company make?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the Computer Hacking Forensic Investigator v11 exam. Study with flashcards and multiple choice questions. Each question includes hints and explanations. Get exam-ready efficiently!

Multiple Choice

From the screenshot of the network device in a maintenance audit, which change should the client company make?

Explanation:
Disclosing fingerprint details in a device banner creates a security risk because it lets an attacker identify the exact model or software version and tailor exploits to that target. The best change is to remove any identifying numbers, names, or version information from the banner. By stripping these details, the banner no longer aids someone trying to fingerprint the device or select a specific vulnerability to attack, which is especially important during maintenance audits when screenshots can capture the banner. Including vendor support contact information can be misused in social engineering; revealing more detailed version numbers makes fingerprinting easier; and while a banner stating that only authorized IT personnel may proceed is common, it doesn’t address the critical risk of leaking system fingerprints. Keeping banners generic minimizes information leakage while still serving a legitimate login prompt.

Disclosing fingerprint details in a device banner creates a security risk because it lets an attacker identify the exact model or software version and tailor exploits to that target. The best change is to remove any identifying numbers, names, or version information from the banner. By stripping these details, the banner no longer aids someone trying to fingerprint the device or select a specific vulnerability to attack, which is especially important during maintenance audits when screenshots can capture the banner.

Including vendor support contact information can be misused in social engineering; revealing more detailed version numbers makes fingerprinting easier; and while a banner stating that only authorized IT personnel may proceed is common, it doesn’t address the critical risk of leaking system fingerprints. Keeping banners generic minimizes information leakage while still serving a legitimate login prompt.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy