XK0-005 Domain 2: Security

Which TWO harden SSH? (Select TWO.)

Multiple response — select two or more answers

Answer choices

  1. a. Key-based auth
  2. b. PermitRootLogin yes always
  3. c. Disable weak ciphers
  4. d. Use telnet instead
  5. e. Change default port optionally plus controls

Architectural breakdown & explanation

Keys, strong ciphers, and hardening reduce SSH risk.

Correct answer(s): a. Key-based auth, c. Disable weak ciphers, e. Change default port optionally plus controls

Exam domain: Domain 2: Security (21% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the CompTIA Linux+ bank. Run a full timed practice exam with domain-weighted random questions in your browser.