Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Palo Alto Networks Exam PSE-StrataDC Topic 7 Question 63 Discussion

Actual exam question for Palo Alto Networks's PSE-StrataDC exam
Question #: 63
Topic #: 7
[All PSE-StrataDC Questions]

Why are containers uniquely suitable for whitelist-based runtime security?

Show Suggested Answer Hide Answer
Suggested Answer: A

Contribute your Thoughts:

Marcos
5 months ago
Haha, I bet the Docker team wishes they had a built-in 'runtime analysis capability' like in option B. That would be pretty neat, but I guess we're stuck with the good old Dockerfile for now.
upvoted 0 times
...
Alton
5 months ago
D is also a good option. Ops teams often have a good understanding of the processes used in the containers they manage, making whitelisting more straightforward.
upvoted 0 times
Lelia
4 months ago
D) Ops teams often have a good understanding of the processes used in the containers they manage
upvoted 0 times
...
Jovita
4 months ago
A) Developers typically define the processes used in their containers within the Dockerfile
upvoted 0 times
...
...
My
5 months ago
I believe that operations teams knowing the processes used in containers is crucial for effective whitelisting.
upvoted 0 times
...
Telma
5 months ago
But what about the built-in runtime analysis capability in Docker for whitelisting?
upvoted 0 times
...
Precious
5 months ago
I agree with Onita. Having defined processes makes it easier to whitelist.
upvoted 0 times
...
Dick
5 months ago
I agree with Wendell. Containers are great for whitelisting because you can easily define and control the processes that are allowed to run within them.
upvoted 0 times
Crista
4 months ago
D) Operations teams typically know what processes are used within a container
upvoted 0 times
...
Elliott
5 months ago
C) Containers typically have only a few defined processes that should ever be executed.
upvoted 0 times
...
Alona
5 months ago
A) Developers typically define the processes used in their containers within the Dockerfile
upvoted 0 times
...
...
Onita
5 months ago
I think containers are suitable for whitelist-based security because developers define processes in Dockerfile.
upvoted 0 times
...
Wendell
5 months ago
C seems like the best answer here. Containers are designed to be lightweight and focused, so they typically have a limited number of processes that should be running.
upvoted 0 times
Caitlin
5 months ago
Yes, containers are all about isolating processes, so it's easier to whitelist what should be running.
upvoted 0 times
...
Corinne
5 months ago
I agree, C makes sense. Containers are meant to be streamlined and secure.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77