Which of the following is a tool that can be used to evaluate the servers having vulnerabilities that are related to the operating system and installed software?

Which of the following is a tool that can be used to evaluate the servers having vulnerabilities that
are related to the operating system and installed software?

Which of the following is a tool that can be used to evaluate the servers having vulnerabilities that
are related to the operating system and installed software?

A.
DNS dynamic update

B.
Windows Software Update Services

C.
Read-Only domain controller (RODC)

D.
Microsoft Baseline Security Analyzer

Explanation:
Microsoft Baseline Security Analyzer is a tool that can be used to evaluate the servers having
vulnerabilities that are related to the operating system and installed software Microsoft Baseline
Security Analyzer (MBSA) is a software tool of Microsoft to determine security state by assessing
missing security updates and less-secure security settings within Microsoft Windows, Windows
components such as Internet Explorer, IIS web server, and products Microsoft SQL Server, and
Microsoft Office macro settings. Microsoft Baseline Security Analyzer (MBSA) includes a graphical
and command line interface that can perform local or remote scans of Windows systems.

Answer B is incorrect. Windows Server Update Services (WSUS) is an add-on component of
Windows Server 2008. It provides functionality to a server to run as a Windows Update server in a
Windows network environment. Administrators can configure a WSUS server as the only server to
download updates from Windows site, and configure other computers on the network to use the
server as the source of update files. This will save lots of bandwidth as each computer will not
download updates individually. WSUS 3.0 SP1 is the only version of WSUS that can be installed on
Windows Server 2008. Earlier versions of WSUS cannot be installed on a server running Windows
Server 2008.

Answer C is incorrect. Read-only Domain Controller (RODC) is a domain controller that hosts the
read-only partition of the Active Directory database. RODC was developed by Microsoft typically to
be deployed in a branch office environment. RODC is a good option to enhance security by placing it
in a location where physical security is poor. RODC can also be placed at locations having relatively
few users and a poor network bandwidth to the main site. As only the read-only partition of the
Active Directory database is hosted by RODC, a little local IT knowledge is required to maintain it.

Answer A is incorrect. DNS dynamic update is used to enable DNS client computers for registering
and dynamically updating their resource records with a DNS server whenever any modification or
change has been taken place. It is used to update the DNS client computers with the reflecting
changes.



Leave a Reply 0

Your email address will not be published. Required fields are marked *