OpenSSL Question

• Scenario :

A recent black-box penetration test of http://example.com discovered several external vulnerabilities—including directory traversal, cross-site scripting (XSS), cross-site request forgery (CSRF), and use of insecure protocols. You’ve been asked to shrink the attack surface and enforce secure communications.

• INSTRUCTIONS

• Part 1

Use the five drop-down menus overlaid on the network diagram to select the correct components (not all options will be used) and place them, from left (Internet) to right (your web server), to build a secure, resilient web architecture.

• Part 2

Use the three drop-down menus in the terminal window to complete the openssl command so that it both generates a new private key and produces a certificate signing request (CSR).