CompTIA CASP+ Practice Test

Which action is recommended to mitigate security risks for a legacy system using Telnet?

• A. Disable remote access completely.
• B. Move the system to a secure VLAN.
• C. Upgrade to a newer protocol.
• D. Implement stronger password policies.

The correct answer is: Move the system to a secure VLAN.

Mitigating security risks for a legacy system using Telnet involves considering the vulnerabilities associated with this older protocol, which does not encrypt data transmitted over the network. Moving the system to a secure VLAN is a recommended action because a VLAN can help isolate the legacy system from other network traffic, reducing the attack surface and restricting access to only trusted users or devices. This creates a segmented environment where potential threats can be contained, making it more difficult for unauthorized users to access sensitive data or seize control of the system. In the context of legacy systems, maintaining operations while enhancing security is critical. Placing the system in a secure VLAN helps to manage and mitigate risks without completely discarding its utility. This is particularly useful if upgrading the legacy system is not feasible due to budget, complexity, or compatibility issues. Addressing other options can provide additional insight. Disabling remote access completely might effectively cut off risks, but it also eliminates the utility of remote management if it's needed. Upgrading to a newer protocol could greatly enhance security as well, but it often involves significant investment and changes to infrastructure that may not be immediately possible for some organizations. Implementing stronger password policies is beneficial in enhancing security, but it does not directly address the issues inherent with the Telnet protocol