Question

While performing disk and file maintenance on the company file server, you determine a user in the accounting department has been accidentally saving documents to all shared folders on the file server. The user’s computer was recently passed to her from another user in the company, and according to company policy, the user should have access only to the accounting share.
Which of the following best describes this situation?

A. The user bypassed the security of the file server.
B. The principle of least privilege was not followed.
C. The firewall on the server is disabled.
D. The firewall on the user’s computer is disabled.

Answer 1

Answer:

B. The principle of least privilege was not followed.

Explanation:

The principle of least privilege (POPL) also known as the principle of minimal privilege or the principle of least authority is based on the idea that a process, user or program should only be given authorization to access only resources  and files that are needed to perform their work. It can be used to restrict access rights for applications, systems, processes and devices to only those permissions required to perform authorized activities For example a user that is supposed to be a typist should not be given access to be able to install programs.

Answer 2

Answer:

B. The principle of least privilege was not followed.

Explanation:

From the example, too much access and privilege was given to the user and that was why he was able to share folders to all servers. The principle of least privilege, also known as the principal of least authority is used in computer security and ensures that a user is allowed the barest minimum permission required to perform their duty effectively.