CompTIA CASP+ Practice Test

What security challenge is presented by a legacy system still in use that relies on the Telnet protocol?

• A. Non-compliance with modern encryption standards.
• B. Increased user access due to outdated controls.
• C. Limited system capabilities.
• D. Potential data loss during migrations.

The correct answer is: Non-compliance with modern encryption standards.

The reliance on the Telnet protocol in a legacy system presents significant security challenges primarily due to non-compliance with modern encryption standards. Telnet transmits data in plaintext, meaning that any information, including credentials and sensitive data, can be easily intercepted by malicious actors during transmission. This lack of encryption makes it highly vulnerable to eavesdropping attacks, such as man-in-the-middle attacks, where an attacker can capture and read the data being communicated. Modern standards and protocols, such as Secure Shell (SSH), provide robust encryption, ensuring that data in transit is protected from unauthorized access. The use of Telnet, therefore, violates contemporary security best practices and compliance requirements that dictate that data, especially sensitive information, should always be encrypted to safeguard it against interception. The other options, while they may touch on different aspects of legacy systems, do not specifically highlight the core security issue presented by using Telnet. For instance, increasing user access might relate to outdated user management practices rather than the protocol itself. Limited system capabilities could refer more to overall system performance rather than a direct security challenge. Potential data loss during migrations pertains to operational risks rather than the inherent security issues associated with transmitting data over Telnet. Therefore, the failure to adhere to modern encryption standards