Question
A security analyst is doing a vulnerability assessment on a database server. A scanning tool returns the following information: Database: CustomerAccess1 Column: Password Data type:
A security analyst is doing a vulnerability assessment on a database server. A scanning tool returns the following information:
Database: CustomerAccess1
Column: Password
Data type: MD5 Hash
Salted?: No
There have been several security breaches on the web server that accesses this database. The security team is instructed to mitigate the impact of any possible breaches. The security team is also instructed to improve the security on this database by making it less vulnerable to offline attacks. Which of the following would BEST accomplish these goals? (Select TWO).
-
Start using salts to generate MD5 password hashes
-
Generate password hashes using SHA-256
-
Force users to change passwords the next time they log on
-
Limit users to five attempted logons before they are locked out
-
Require the web server to only use TLS 1.2 encryption
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started