Which statement is true about traditional Ethernet LAN access security?

Traditional Ethernet LAN access security is limited by default because it relies mainly on physical access and basic switch protections, with no built-in strong authentication or encryption. In a classic Ethernet setup, if someone can plug into the network, they can often send and receive traffic on that segment, and MAC addresses can be spoofed or rogue devices introduced unless additional controls are in place. This is why the statement is true: traditional Ethernet does not provide robust access security on its own and requires extra measures such as 802.1X for device authentication, switch port security to lock down MACs, DHCP snooping, and ARP inspection, plus VLANs to segment traffic. The other options aren’t correct because security concerns exist on Ethernet as well, not just wireless networks, and network size doesn’t determine whether these vulnerabilities are present.