Exam CISA Topic 2 Question 293 Discussion
Actual exam question for ISACA's CISA exam
Question #: 293
Topic #: 2
Question #: 293
Topic #: 2
An organization want to use virtual desktops to deliver corporate applications to its end users.
Which of the following should an IS auditor recommend to prevent domain name system (DNS) poisoning in their cloud environment?
Which of the following should an IS auditor recommend to prevent domain name system (DNS) poisoning in their cloud environment?
Suggested Answer: B Vote an answer
This approach helps mitigate the risk of DNS poisoning by preventing attacks like cache poisoning, where oversized or malformed DNS responses can be exploited. By configuring DNS servers to limit the size of responses, the organization can reduce vulnerabilities that may allow attackers to inject false data into DNS caches.
While verifying administrators, ensuring DNS changes are propagated, and providing antivirus tools to end users are all good practices, they do not specifically address the risk of DNS poisoning. Configuring the DNS servers to handle appropriately sized responses directly mitigates the vulnerability that attackers exploit in DNS poisoning attacks.
While verifying administrators, ensuring DNS changes are propagated, and providing antivirus tools to end users are all good practices, they do not specifically address the risk of DNS poisoning. Configuring the DNS servers to handle appropriately sized responses directly mitigates the vulnerability that attackers exploit in DNS poisoning attacks.
by Ian at Jul 09, 2026, 10:39 PM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).