1.3. Implement OS hardening practices and procedures to achieve workstation and server security.

It's important to realize that a key element in securing a system is to reduce its attack surface. The attack surface is the area that is exposed to untrusted networks or entities and that is vulnerable to attack. If a system is hosting numerous services and protocols, its attack surface is larger than that of a system running only essential services and protocols.


For more information on this topic, refer to Chapter 1 of the CompTIA Security+ Study Guide, 4th Edition (Sybex, November 2008).

It's tempting to install every service, component, application, and protocol available to you on every computer system you deploy. However, this temptation ...

Get CompTIA Security+™: Review Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.