To reduce sniffing risk, which practice should organizations avoid?

Boost your skills for the EC-Council Certified Ethical Hacker v13 Exam. Use flashcards and multiple choice questions to prepare effectively. Each question includes hints and explanations. Get exam-ready now!

Multiple Choice

To reduce sniffing risk, which practice should organizations avoid?

Explanation:
Sniffing risk comes from sending sensitive information in plaintext over the network. To reduce this risk, avoid protocols that expose credentials and data unencrypted. Basic HTTP authentication, FTP, and Telnet all transmit information in clear text, making it easy for anyone monitoring the network to read credentials and data. So the best practice is to avoid these insecure protocols altogether and use secure alternatives like HTTPS, SSH, and SFTP/FTPS for transfers and remote access. The other scenarios describe using insecure protocols rather than avoiding them, which would increase sniffing risk rather than reduce it.

Sniffing risk comes from sending sensitive information in plaintext over the network. To reduce this risk, avoid protocols that expose credentials and data unencrypted. Basic HTTP authentication, FTP, and Telnet all transmit information in clear text, making it easy for anyone monitoring the network to read credentials and data. So the best practice is to avoid these insecure protocols altogether and use secure alternatives like HTTPS, SSH, and SFTP/FTPS for transfers and remote access.

The other scenarios describe using insecure protocols rather than avoiding them, which would increase sniffing risk rather than reduce it.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy