Which of the following is the MOST secure type of remote administration?
A.
SSH over IPsec client-to-site VPN B.
RDP over SSLv2 HTTPS terminal services gateway C.
HTTP over WPA2-TKIP WiFi D.
Telnet over PSTN.
A.
Which of the following is the MOST secure type of remote administration?
A.
SSH over IPsec client-to-site VPN
B.
RDP over SSLv2 HTTPS terminal services gateway
C.
D.
Telnet over PSTN.
A.
Of the options listed, SSH over IPsec client-to-site VPN is the most secure type of remote administration.
SSH (Secure Shell) is a protocol that provides a secure, encrypted connection between two systems. It is commonly used for remote administration, as it allows an administrator to log in to a remote system and perform administrative tasks without exposing sensitive information (such as login credentials) to potential eavesdroppers.
IPsec (Internet Protocol Security) is a suite of protocols used to secure network communication over the internet. IPsec can provide encryption, authentication, and integrity verification for network traffic, and is commonly used to establish virtual private network ( VPN) connections.
When SSH is used over an IPsec client-to-site VPN, it provides two layers of security. First, the SSH connection is encrypted, preventing anyone from intercepting or modifying the traffic. Second, the VPN connection provides an additional layer of encryption and authentication, ensuring that only authorized users can access the network.
In contrast, the other options listed are less secure:
RDP (Remote Desktop Protocol) over SSLv2 HTTPS terminal services gateway: SSLv2 is an outdated and insecure version of the SSL/TLS protocol, and should not be used. Additionally, RDP is vulnerable to man-in-the-middle attacks and can be used to execute arbitrary code on the remote system.
HTTP over WPA2-TKIP WiFi: HTTP is an insecure protocol that does not provide encryption or authentication. WPA2-TKIP is a Wi-Fi security protocol, but it has known vulnerabilities that make it susceptible to attacks.
Telnet over PSTN: Telnet is an insecure protocol that sends data in plaintext, and should not be used for remote administration. PSTN (Public Switched Telephone Network) is a type of telephone network, but it does not provide encryption or authentication for data transmitted over it.