Valid SK0-005 Dumps shared by ExamDiscuss.com for Helping Passing SK0-005 Exam! ExamDiscuss.com now offer the newest SK0-005 exam dumps, the ExamDiscuss.com SK0-005 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com SK0-005 dumps with Test Engine here:
IDS alerts indicate abnormal traffic patterns are coming from a specific server in a data center that hosts sensitive data. Upon further investigation, the server administrator notices this server has been infected with a virus due to an exploit of a known vulnerability from its database software. Which of the following should the administrator perform after removing the virus to mitigate this issue from reoccurring and to maintain high availability? (Select three).
Correct Answer: A,C,F
After removing the virus from the server, the administrator should perform the following actions to mitigate the issue from reoccurring and to maintain high availability: * Run a vulnerability scanner on the server to identify any other potential weaknesses or exposures that could be exploited by attackers. * Patch the vulnerability that allowed the virus to infect the server in the first place, using the latest updates from the database software vendor or a trusted source. * Update the antivirus software on the server to ensure it has the most recent virus definitions and can detect and prevent future infections. The other options are either unnecessary or counterproductive for this scenario. Repartitioning the hard drive, reformatting the OS, removing the database software, or air gapping the server from the network would cause downtime and data loss, while enabling a host firewall would not prevent a virus infection from within the network. References: CompTIA Server+ Certification Exam Objectives, Domain 5.0: Security, Objective 5.2: Given a scenario involving a security threat/vulnerability/risk, implement appropriate mitigation techniques.