Scenario
Four application servers must be checked for TLS 1.2-only support, current Apache version 2.4.18, and unnecessary non-default ports.
Your task: Review the evidence and select the best analyst response for each field.
| Evidence | Details |
|---|---|
| AppServ1 | Apache 2.4.18, TLSv1.2 only |
| AppServ2 | Apache 2.1.0, TLSv1.1 and TLSv1.2 |
| AppServ3 | Apache 2.4.18, TLSv1.1 and TLSv1.2, extra port |
| AppServ4 | Apache 2.4.18, TLSv1.2 only, ports 443, 80, 8443, 41 |
Analyst Decisions
Instructor Answer
- AppServ1 is current and only supports TLS 1.2.
- AppServ2 needs both an Apache upgrade and TLS restriction.
- AppServ3 has the correct Apache version but must disable TLS 1.1 and address non-default ports.
- AppServ4 passes Apache and TLS checks but still exposes non-default ports.