Which scenario describes exposure of FTP/SFTP server credentials on a public code hosting platform?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the Certified Ethical Hacker Version 11 Exam with a comprehensive test featuring flashcards and multiple choice questions, each accompanied by hints and explanations to ensure a thorough understanding. Ace your ethical hacking exam with confidence!

Multiple Choice

Which scenario describes exposure of FTP/SFTP server credentials on a public code hosting platform?

Explanation:
Focusing on the risk of secrets being exposed through a public code hosting platform is key. When FTP/SFTP server login details are published in a repository on GitHub, they become publicly discoverable to anyone who visits the project. This is a direct leakage of credentials through a platform that is specifically designed to host and share code, making it the clearest example of exposing FTP/SFTP server credentials on a public code hosting service. The other scenarios involve sensitive data but not the explicit context of a public code hosting platform. A password hash found in log files is still dangerous, but it isn’t credentials exposed on a code-hosting site. Exposing database credentials in a configuration file is a common mistake, but again it doesn’t demonstrate leakage specifically through a public code hosting platform.

Focusing on the risk of secrets being exposed through a public code hosting platform is key. When FTP/SFTP server login details are published in a repository on GitHub, they become publicly discoverable to anyone who visits the project. This is a direct leakage of credentials through a platform that is specifically designed to host and share code, making it the clearest example of exposing FTP/SFTP server credentials on a public code hosting service.

The other scenarios involve sensitive data but not the explicit context of a public code hosting platform. A password hash found in log files is still dangerous, but it isn’t credentials exposed on a code-hosting site. Exposing database credentials in a configuration file is a common mistake, but again it doesn’t demonstrate leakage specifically through a public code hosting platform.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy