CompTIA Security Plus Mock Test Q613

A vulnerability assessment indicates that a router can be accessed from default port 80 and default port 22. Which of the following should be executed on the router to prevent access via these ports? (Select TWO).

A. FTP service should be disabled
B. HTTPS service should be disabled
C. SSH service should be disabled
D. HTTP service should disabled
E. Telnet service should be disabled


Correct Answer: C,D
Section: Threats and Vulnerabilities

Explanation:
Port 80 is used by HTTP. Port 22 is used by SSH. By disabling the HTTP and Telnet services, you will prevent access to the router on ports 80 and 22.

Incorrect Answers:
A: FTP uses ports 20 and 21. Disabling this service will not prevent access to the router on ports 80 or 22.
B: HTTPS uses port 443. Disabling this service will not prevent access to the router on ports 80 or 22.
E: Telnet uses port 23. Disabling this service will not prevent access to the router on ports 80 or 22.

References:
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers