Kļūda paskaidrojumā vai arī..

Pāris dienas atkārtoju vielu, lai varētu nokārtot eksāmenu. Tam par godu pat iegādājos arī viena “it kā droša” kantora studiju materiālus, lai varētu labāk sagatavoties.

Lasot šos jautājumus pie viena apstājos:

Which significant risk is introduced by running the file transfer protocol (FTP) service on a server in a demilitarized zone (DMZ)?

A. A user from within could send a file to an unauthorized person.
B. FTP services could allow a user to download files from unauthorized sources.
C. A hacker may be able to use the FTP service to bypass the firewall.
D. FTP could significantly reduce the performance of a DMZ server.
Answer: C
Explanation:
Since file transfer protocol (FTP) is considered an insecure protocol, it should not be installed on a server in a demilitarized zone (DMZ). FTP could allow an unauthorized user to gain access to the
network. Sending files to an unauthorized person and the risk of downloading unauthorized files are not as significant as having a firewall breach. The presence of the utility does not reduce the
performance of a DMZ server; therefore, performance degradation is not a threat.

Pieņemu, ka atbildes variants ir norādīts pareizākais, bet paskaidrojums…  vai tā ir apzināta kļūda vai arī to rakstījis kāds antiņš un tāpēc nav vērts nemaz turpināt studijas pēc šī materiāla?

Pēc labās prakses un vispār pieņēmtiem principiem FTP serveris tieši ir jānovieto DMZ zonā, tomēr šeit mēģina apgalvot pretējo.

Kur tad diez FTP ir jānovieto? Pirms ugunsmūra vai LAN? Smieklīgi.

Leave a Reply