During a monthly vulnerability scan, a server was flagged for being vulnerable to an Apache Struts exploit. Upon further investigation, the developer responsible for the server informs the security team that Apache Struts is not installed on the server. Which of the following BEST describes how the security team should reach to this incident?
A. The finding is a false positive and can be disregarded
B. The Struts module needs to be hardened on the server
C. The Apache software on the server needs to be patched and updated
D. The server has been compromised by malware and needs to be quarantined.
Answer: A. The finding is a false positive and can be disregarded
You might also like to view...
What would the command sudo apt-get install screen -s do?
A) Install screen B. Download screen C. Simulate installing screen D. Remove screen
Which of the following statements is false?
a. Object-oriented programming is today's key programming methodology. b. Java has become the language of choice for implementing Internet-based applications and software for devices that communicate over a network. c. Software commands computer hardware to perform tasks. d. In use today are more than a trillion general-purpose computers and trillions more Java-enabled cellphones, smartphones and other handheld devices.