Which of the following hardening techniques must be applied on a container image before deploying it to a production environment?

Rationale

Remove default applications and disable Telnet are hardening techniques applied on a container image before deploying it to a production environment.

Both techniques enhance security by reducing the attack surface and eliminating unnecessary services that could be exploited in a production setting.

A (Remove default applications.) CORRECT

Removing default applications is critical because these applications can introduce vulnerabilities that attackers might exploit. By stripping down the container to only necessary components, the overall security posture is significantly improved.

B (Install a NIPS.) YOUR ANSWER

While installing a Network Intrusion Prevention System (NIPS) can be part of a broader security strategy, it does not specifically pertain to hardening a container image itself. NIPS is typically deployed at the network level rather than modifying the container's configuration before production.

C (Disable Telnet.) CORRECT

Disabling Telnet is an essential hardening measure as Telnet transmits data in plain text, making it susceptible to interception. Removing it ensures that only secure communication protocols, like SSH, are used, thereby protecting sensitive information.

D (Reconfigure the DNS.) YOUR ANSWER

Reconfiguring DNS does not directly contribute to hardening a container image. It is more relevant to network configuration and management rather than minimizing vulnerabilities within the container itself.

E (Add an SFTP server.) YOUR ANSWER

Adding an SFTP server may enhance file transfer security but does not address hardening the container image. This action could even introduce unnecessary complexity and potential vulnerabilities if not properly managed.

F (Delete the public certificate.) YOUR ANSWER

Deleting a public certificate can lead to issues with secure communications and is not a recommended hardening practice. Instead, proper certificate management is crucial for maintaining secure connections.

Conclusion

Hardening a container image before deploying it to production involves removing unnecessary applications and disabling insecure services like Telnet. These actions reduce vulnerabilities and enhance the security of the deployment. Other choices, while relevant to security, do not directly contribute to the hardening of the container image itself.

Which of the following hardening techniques must be applied on a container image before deploying it to a production environment?

Remove default applications and disable Telnet are hardening techniques applied on a container image before deploying it to a production environment.

Related Questions

Related Quizzes

How familiar were you with this question?

Report an Issue

Rate this Practice Test