Network Security Chapter 5 & 6 Quiz

For users who are members of the Sales team, you want to force their computers to use specific desktop background and remove access to administrative tools from the Start menu.Which solution should you use?

0%
Group Policy
0%
1. The Local Group Policy on the computer.2. GPOs linked to the domain that contains the user or computer object.3. GPOs linked to the organizational unit that contains the object.
0%
Create a security group for the managers. Add all users as members of the group. Add the group to the file's DACL.
0%
Use cable locks to chain the laptops to the desks.

Which of the following is an advantage of using switches to create virtual LANs?

0%
Block employees from accessing certain Web sites.Cache web pages
0%
Broadcast traffic travels to a subset of devices rather than to all devices on the network.
0%
Easy migration of systems to different hardwareCentralized administration
0%
A false server intercepts communications from a client by impersonating the intended server.

You need to increase the security of your Linux system by finding and closing open ports. Which of the following commands should you use to locate open ports?

0%
Honeynet
0%
Smurf
0%
Flag
0%
nmap

Which of the following does a router acting as a firewall use to control which packets are forwarded or dropped?

0%
Cramming
0%
ARP poisoning
0%
ACL
0%
Disable SSID broadcast

Which of the following phone attacks adds unauthorized charges to a telephone bill?

0%
FEC0::AB:9007
0%
Circuit proxy filtering firewallApplication layer firewall
0%
ARP spoofing/poisoning
0%
Cramming

Which of the following do switches and wireless access points use to control access through the device?

0%
MAC filtering
0%
IPSec
0%
Screen lock
0%
Database servers

You need to enumerate the devices on your network and display the configuration details of the network.Which of the following utilities should you use?

0%
A gaming company wants to create a networked version of its latest game. Communication speed and reducing packet overhead are more important than error-free delivery.A company connects two networks through an expensive WAN link. The communication media is reliable, but very expensive. They want to minimize connection times.
0%
False negative
0%
nmap
0%
Implement version 3 of SNMP.

Which of the following measures will make your wireless network invisible to the casual attacker performing war driving?

0%
Disable Bluetooth on the phone
0%
Database servers
0%
Disable SSID broadcast
0%
MAC filtering

Which of the following are characteristics of a packet filtering firewall?

0%
StatelessFilters IP address and port
0%
Broadcast traffic travels to a subset of devices rather than to all devices on the network.
0%
Subnets divide an IP network address into multiple network addresses.
0%
Eight hexadecimal quartets128-bit address

You can use a variety of methods to manage the configuration of a network router. Match the management option on the right with its corresponding description on the left.

0%
Make Mark a member of the Sales group; add Mark's user account directly to the ACL for the Design folder.
0%
A proxy server is blocking access to the web sites.
0%
DNS
0%
SSL: Uses public-key cryptographyHTTP: Transfers data in clear textSSH: Uses public-key cryptographyTelnet: Transfers data in clear textConsole port: Cannot be sniffed

Which of the following is the most important thing to do to prevent console access to the router?

0%
Hexadecimal numbers32 numbers, grouped by colons
0%
Keep the router in a locked room.
0%
Packet filtering
0%
Circuit proxy filtering firewallApplication layer firewall

You are responsible for maintaining Windows workstation operating systems in your organization. Recently, an update from Microsoft was automatically installed on your workstations that caused an application that was developed in-house to stop working.To keep this from happening again, you decide to test all updates on a virtual machine before allowing them to be installed on production workstations.Currently, all of your testing virtual machines do not have a network connection. However, they need to be able to connect to the update servers at Microsoft to download and install updates. What should you do?

0%
Connect the virtual network interfaces in the virtual machines to the virtual switch.Create a new virtual switch configured for bridged (external) networking.
0%
Restrict content based on content categories
0%
Implement a hardware checkout policy.
0%
Connect the virtual network interfaces in the virtual machines to the virtual switch.Create a new virtual switch configured for host-only (internal) networking.

Your company security policy states that wireless networks are not to be used because of the potential risk they present to your network.One day you find that an employee has connected a wireless access point to the network in his office.What type of security risk is this?

0%
Peer-to-peer networking
0%
Rogue access point
0%
Integer overflow
0%
netstat -a

Match the Group Policy type on the left with the function that it can perform on the right.

0%
War driving
0%
War chalking
0%
Create a security group for the managers. Add all users as members of the group. Add the group to the file's DACL.
0%
Software that should be installed on a specific computer: Computer ConfigurationSoftware that should be installed for a specific user: User ConfigurationScripts that should run at startup or shutdown: Computer ConfigurationScripts that should run at logon or logoff:User ConfigurationNetwork communication security settings:Computer Configuration

Which of the following protocols allows hosts to exchange messages to indicate problems with packet delivery?

0%
ARP spoofing/poisoning
0%
ICMP
0%
RADIUS
0%
Filters based on sessionsStateful

Most mobile device management (MDM) systems can be configured to track the physical location of enrolled mobile devices. Arrange the location technology on the left in order of accuracy on the right, from most accurate to least accurate.

0%
Implement an Application later protocol to encrypt data prior to saving it in the database.Disable anonymous access.
0%
Most accurateGPSMore accurateWi-Fi triangulationLess accurateCell phone tower triangulationLeast accurateIP address resolution
0%
Change the default administrative user name and passwordUse an SSH client to access the router configuration
0%
Make Mark a member of the Sales group; add Mark's user account directly to the ACL for the Design folder.

What is a typical goal of MAC spoofing?

0%
Bypass 802.1x port-based security
0%
Browsing the organization's Website.
0%
Disable Bluetooth on the phone
0%
Near a window

What are the most common network traffic packets captured and used in a replay attack?

0%
Input validation
0%
Screen lock
0%
Packet filtering
0%
Authentication

Which command should you use to scan for open TCP ports on your Linux system?

0%
nmap -sT
0%
IPS
0%
SSH
0%
Extranet

You are configuring a network firewall to allow SMTP outbound e-mail traffic, and POP3 inbound e-mail traffic. Which of the following TCP/IP ports should you open on the firewall?

0%
IP address
0%
172.17.0.0172.17.128.0
0%
Encryption
0%
25 110

You have just installed a packet-filtering firewall on your network. What options will you be able to set on your firewall? Select all that apply.

0%
Destination address of a packetSource address of a packetPort number
0%
Monitoring the audit trails on a server.Listening to network traffic
0%
A: DirectionalB: DirectionalC: OmnidirectionalD: DirectionalE: DirectionalF: DirectionalG: Directional
0%
Add Mark Mangum to the ACL for the Confidential.xls file with Deny permissions.

Your network recently experienced a series of attacks aimed at the Telnet and FTP services. You have rewritten the security policy to abolish the unsecured services, and now you must secure the network using your firewall and routers. Which ports must be closed to prevent traffic directed to these two services?

0%
nmap
0%
23, 21
0%
Disable WPS in the access point's configuration
0%
Extranet

Which type of Denial of Service (DoS) attack occurs when a name server receives malicious or misleading data that incorrectly maps host names and IP addresses?

0%
DNS poisoning
0%
WPA2 with AES
0%
80, 443, 22
0%
Authentication

Which of the following describes an IPv6 address?

0%
Combine different media type on the same subnet.
0%
Eight hexadecimal quartets128-bit address
0%
Keep the router in a locked room.
0%
When the device is inactive for a period of time.

When a malicious user captures authentication traffic and replays it against the network later, what is the security problem you are most concerned about?

0%
Destination address of a packetSource address of a packetPort number
0%
An unauthorized user gaining access to sensitive information
0%
Change the administrative password to AP.
0%
When the device is inactive for a period of time.

Which IDS method searches for intrusion or attack attempts by recognizing patterns or identities listed in a database?

0%
Application level
0%
Signature based
0%
Peer-to-peer networking
0%
A switch filters port traffic based on MAC address.

During the application development cycle, a developer asks several of his peers to assess the portion of the application he was assigned to write for security vulnerabilities.Which assessment technique was used in this scenario?

0%
Host base firewall
0%
Downloading a file
0%
Hijacking
0%
Code review

Which of the following network services or protocols uses TCP/IP port 22?

0%
IPSec
0%
VPN
0%
SSH
0%
ESP

You have configured a NIDS to monitor network traffic. Which of the following describes an attack that is not detected by the NIDS device?

0%
WPA2 with AES
0%
False negative
0%
Destination address of a packetSource address of a packetPort number
0%
Signature based

You've decided to use a subnet mask of 255.255.192.0 on the 172.17.0.0 network to create four separate subnets.Which network IDs will be assigned to these subnets in this configuration?

0%
172.17.0.0172.17.128.0
0%
80, 443, 22
0%
Anomaly based IDS
0%
25 110

You are an IT consultant and are visiting a new client's site to become familiar with their network. As you walk around their facility, you note the following:-When you enter the facility, a receptionist greets you and directs you down the hallway to the office manager's cubicle. The receptionist uses a notebook system that is secured to her desk with cable lock.-The office manager informs you that the organization's servers are kept in a locked closet. Only she has the key to the closet. When you arrive on site, you will be required to get the key from her to access the closet.-She informs you that server backups are configured to run each night. A rotation of external USB hard disks are used as the backup media.-You notice the organization's network switch is kept in an empty cubicle adjacent to the office manager's workspace.-You notice that a router/firewall/content filter all-in-one device has been implemented in the server closet to protect the internal network from external attacks.Which security-related recommendations should you make to this client?

0%
Destination address of a packetSource address of a packetPort number
0%
Verify that your network's existing security infrastructure is working properly.Install the latest firmware updates from the device manufacturer.
0%
UDP: connectionless, unreliable, unsequenced, low overheadTCP: connection-oriented, reliable, sequenced, high overhead
0%
Relocate the switch to the locked server closet.Control access to the work area with locking doors and card readers.

You have a group of salesmen who would like to access your private network through the Internet while they are traveling. You want to control access to the private network through a single server.Which solution should you implement?

0%
IP address
0%
VPN concentrator
0%
A compromise of the host system might affect multiple servers
0%
NFC relay attack

You are an application developer. You use hypervisor with multiple virtual machines installed to test your applications on various operating system versions and editions.Currently, all of your testing virtual machines are connected to the production network through the hypervisor's network interface. However, you are concerned that the latest application you are working on could possibly adversely impact other network hosts if mistakes or errors exist in the code.To prevent this, you decide to isolate the virtual machines from the production network. However, they still need to be able to communicate directly with each other.What should you do?

0%
Verify that your network's existing security infrastructure is working properly.Install the latest firmware updates from the device manufacturer.
0%
Connect the virtual network interfaces in the virtual machines to the virtual switch.Create a new virtual switch configured for host-only (internal) networking.
0%
SSL: Uses public-key cryptographyHTTP: Transfers data in clear textSSH: Uses public-key cryptographyTelnet: Transfers data in clear textConsole port: Cannot be sniffed
0%
Implement a mobile endpoint management (MEM) solution.

You are concerned about sniffing attacks on your wireless network. Which of the following implementations offers the best countermeasure to sniffing?

0%
WPA2 with AES
0%
NTFS and share permissions
0%
Int the top floor
0%
Teardrop

While developing a network application, a programmer adds functionally that allows her to access the running program, without authentication, to capture debugging. The programmer forgets to remove this functionality prior to finalizing the code and shipping the application.What type of security weakness does this represent?

0%
DNS poisoning
0%
Backdoor
0%
Remediation servers802.1x authentication
0%
Cramming

You are implementing a wireless network in a dentist's office. The dentist's practice is small, so you choose to use an inexpensive, consumer-grade access point.While reading the documentation, you notice that the access point supports Wi-Fi Protected Setup (WPS) using a PIN. You are concerned about the security implications of this functionality.What should you do to reduce the risk?

0%
Implement a mobile endpoint management (MEM) solution.
0%
Implementing a client-side validation
0%
Configure the RADIUS server with a server certificate.Configure all wireless access points with client certficates
0%
Disable WPS in the access point's configuration

What actions can a typical passive Intrusion Detection System (IDS) take when it detects an attack?

0%
Broadcast traffic travels to a subset of devices rather than to all devices on the network.
0%
Circuit proxy filtering firewallApplication layer firewall
0%
The IDS logs all pertinent data about the intrusion.An alert is generated and delivered via e-mail, the console, or an SNMP trap.
0%
Operates at the Session layer.Verifies sequencing of session packets.

What is the most common form of host based IDS that employs signature or pattern matching detection methods?

0%
Anti-virus software
0%
DHCP reservations
0%
Sniffing
0%
Signature based

Which of the following best describes Bluesnarfing?

0%
Unauthorized viewing calendar, e-mails, and messages on a mobile device
0%
Legitimate traffic being flagged as malicious
0%
Database servers
0%
Easy migration of systems to different hardwareCentralized administration

Which of the following is a form of denial of service attack thatsubverts the TCP three-way handshake process by attempting to open numerous sessions on a victim server but intentionally failing to complete the session by not sending the final required packet?

0%
Implement storage segmentationEnable device encryption
0%
NFC relay attack
0%
SYN flood
0%
Implement an application-aware IPS in front of the Web server.

You have a company network with a single switch. All devices connect to the network through the switch.You want to control which devices will be able to connect to your network. For devices that do not have the latest operating system patches, you want to prevent access to all network devices except for a special server that holds the patches that the computers need to download.Which of the following components will be part of your solution?

0%
Restrict content based on content categories
0%
Remediation servers802.1x authentication
0%
Destination address of a packetSource address of a packetPort number
0%
Move the router to a secure server room.

Which EAP implementation is mot secure?

0%
IPS
0%
EAP-TLS
0%
Screen lock
0%
Fuzzing

You want to implement a protocol on your network that allows computers to find the IP address of a host from a logical name. Which protocol should you implement?

0%
DNS
0%
Circuit-level
0%
WPA2 with AES
0%
nmap

An attacker inserts SQL database commands into a data input field of an order form used by a Web-based application. When submitted, these commands are executed on the remote database server, causing customer contact information from the database to be sent to the malicious user's Web browser.Which practice would have prevented this exploit?

0%
All listening and non-listening sockets
0%
Disable WPS in the access point's configuration
0%
All-in-one appliance
0%
Implementing a client-side validation

Which of the following describes how a router can be used to implement security on your network?

0%
A false server intercepts communications from a client by impersonating the intended server.
0%
A failure in one hardware component could affect multiple servers
0%
Circuit proxy filtering firewallApplication layer firewall
0%
Use an access control list to deny traffic from specific IP addresses.

Which of the following will enter random data to the inputs of an application?

0%
Firewall
0%
Fuzzing
0%
A failure in one hardware component could affect multiple servers
0%
Screen lock

You want to implement 802.1x authentication on your wireless network. Where would you configure passwords that are used for authentication?

0%
On a RADIUS server
0%
MAC address filtering
0%
Application level
0%
WPA2 with AES

Recently, a Web site named www.vidshare.com has become extremely popular with users around the world. An attacker registers the following domain names:www.videoshare.comwww.vidshar.comwww.vidsshar.comEach of these URLs points to a phising Web site that tricks users into supplying their vidshare.com user names and passwords.What type of attack has occurred in this scenario?

0%
Input validation
0%
Typosquatting
0%
Privilege escalation
0%
ARP poisoning

You have a file server named Srv3 that holds files used by the Development department. You want to allow users to access the files over the network, and control access to files when files are accessed through the network or through a local logon.Which solution should you implement?

0%
NTFS and share permissions
0%
Change the administrative password to AP.
0%
Implement version 3 of SNMP.
0%
802.11gBluetooth

Which of the following attacks tries to associate an incorrect MAC address with a known IP address?

0%
ARP poisoning
0%
Fuzzing
0%
Hexadecimal numbers32 numbers, grouped by colons
0%
Sniffing

Which VPN protocol typically employs IPSec as its data encryption mechanism?

0%
L2TP
0%
VoIP
0%
ACL
0%
StatelessFilters IP address and port

You've just finished installing a wireless access point for a client. What should you do to prevent unauthorized users from accessing the access point (AP) configuration utility?

0%
Change the administrative password to AP.
0%
Move the router to a secure server room.
0%
Open ports 20 and 21 for inbound and outbound connections
0%
Browsing the organization's Website.

Which of the following is specifically meant to ensure that a program operates on clean, correct and useful data?

0%
Packet filtering
0%
Signature based
0%
Extranet
0%
Input validation

You are troubleshooting a wireless connectivity issue in a small office. You determine that the 2.4 GHz cordless phones used in the office are interfering with the wireless network transmissions. If the cordless phones are causing the interference, which of the following wireless standards could the network be using?

0%
Drive-by download
0%
802.11gBluetooth
0%
Int the top floor
0%
WPA2 with AES

Which step is required to configure a NAP on a Remote Desktop (RD) Gateway server?

0%
When the device is inactive for a period of time.
0%
Edit the properties for the server and select Request clients to send a statement of health.
0%
A false server intercepts communications from a client by impersonating the intended server.
0%
Clients must be issued a valid certificate before a connection to the private network is allowed.

The process of walking around an office building with an 802.11 signal detector known as what?

0%
The DDoS attack uses zombie computers.
0%
VPN concentrator
0%
War driving
0%
Padded cell

A SYN packet is received by a server. The SYN packet has the exact same address for both the sender and receiver addresses, which is the address of the server. This is an example of what type of attack?

0%
Land attack
0%
Implement storage segmentationEnable device encryption
0%
The DDoS attack uses zombie computers.
0%
Code review

An attacker uses an exploit to push a modified hosts file to client systems. This hosts file redirects traffic from legitimate tax preparation sites to malicious sites to gather personal and financial information.What kind of exploit has been used in this scenario?

0%
Pharming DNS poisoning
0%
Disable SSID broadcast
0%
Add Mark Mangum to the ACL for the Confidential.xls file with Deny permissions.
0%
SQL injection

What type of attack is most likely to succeed against communications between Instant Messaging clients?

0%
Group Policy
0%
Software that should be installed on a specific computer: Computer ConfigurationSoftware that should be installed for a specific user: User ConfigurationScripts that should run at startup or shutdown: Computer ConfigurationScripts that should run at logon or logoff:User ConfigurationNetwork communication security settings:Computer Configuration
0%
Sniffing
0%
Land attack

In addition to Authentication Header (AH), IPSec is comprised of what other service?

0%
Disable Bluetooth on the phone
0%
Operates at the Session layer.Verifies sequencing of session packets.
0%
Encapsulating Security Payload (ESP)
0%
Keep the router in a locked room.

Which of the following is the best device to protect your private network from a public untrusted network?

0%
Disable Bluetooth on the phone
0%
Smurf
0%
Input validation
0%
Firewall

Match the virtualization feature on the right with the appropriate description on the left.

0%
Authentication
0%
Users take pictures of proprietary processes and proceduresSpecify where and when mobile devices can be possessed in your acceptable use policy.Devices with a data plan can e-mail stolen dataSpecify where and when mobile devices can be possessed in your acceptable use policy.Devices have no PIN or password configuredEnroll devices in a mobile device management system.Anti-malware software is not installedImplement a network access control (NAC) solution.A device containing sensitive data may be lostEnroll devices in a mobile device management system.
0%
Flexibility:Moving virtual machines between hypervisor hosts.Testing:Verifying that security controls are working as designed.Server consolidation:Performing a physical-to-virtual migration (P2V).Sandboxing:Isolating a virtual machine from the physical network.
0%
IPS

Which of the following is not a reason to use subnets on a network?

0%
Disable SSID broadcast
0%
Block employees from accessing certain Web sites.Cache web pages
0%
Circuit proxy filtering firewallApplication layer firewall
0%
Combine different media type on the same subnet.

You want to maintain tight security on your internal network so you restrict access to the network through certain port numbers. If you want to allow users to use DNS, which port should you enable?

0%
A proxy server is blocking access to the web sites.
0%
53
0%
25 110
0%
False negative

Which of the following is not a VPN tunnel protocol?

0%
Cramming
0%
ARP poisoning
0%
Extranet
0%
RADIUS

You have a router that is configured as a firewall. The router is a layer 3 device only. Which of the following does the router use for identifying allowed or denied packets?

0%
IP address
0%
Host base firewall
0%
netstat -a
0%
False negative

You manage the information systems for a large co-location data center.Networked environmental controls are used to manage the temperature within the data center. These controls use embedded smart technology allowing them to be managed using a mobile device app over an Internet connection.You are concerned about the security of these devices. What can you do to increase their security posture?

0%
SSL: Uses public-key cryptographyHTTP: Transfers data in clear textSSH: Uses public-key cryptographyTelnet: Transfers data in clear textConsole port: Cannot be sniffed
0%
Verify that your network's existing security infrastructure is working properly.Install the latest firmware updates from the device manufacturer.
0%
Restrict content based on content categories
0%
The threat agent will obtain information about open ports on the system.The system will unavailable to respond to legitimate requests.

While using a Web-based game created using Adobe Flash, a Flash cookie is set on a user's computer. The game saves legitimate data in the Flash cookie, such as statistics and user preferences.However, the game creator also programmed the game to track the Web sites that that user visits while the game is running and save them in the Flash cookie. This data is transferred to a server over an Internet connection without the user's permission.What type of exploit has occurred in this scenario?

0%
A compromise of the host system might affect multiple servers
0%
Group Policy
0%
VPN concentrator
0%
Locally shared object (LSO) exploit

Arrange the Group Policy Objects (GPOs) in the order in which they are applied.

0%
Padded cell
0%
1. The Local Group Policy on the computer.2. GPOs linked to the domain that contains the user or computer object.3. GPOs linked to the organizational unit that contains the object.
0%
A compromise of the host system might affect multiple servers
0%
Group Policy

Capturing packets as they travel from one host to another with the intent of altering the contents of the packets is a form of which concern?

0%
The wireless TV system
0%
The DDoS attack uses zombie computers.
0%
Man-in-the-middle attack
0%
Land attack

Which of the following best describes the ping of death?

0%
Use an access control list to deny traffic from specific IP addresses.
0%
6384:1319:7700:7631:446A:5511:8940:2552141:0:0:0:15:0:0:1
0%
An ICMP packet that is larger than 65,536 bytes
0%
An access point that is configured to mimic a valid access point to obtain logon credentials and other sensitive information.

While using a Web-based order form, an attacker enters an unusually large value in the Quantity field.The value she entered is so large that it exceeds the maximum value supported by the variable type used to store the quantity in the Web application. This causes the value of the quantity variable to wrap around to the minimum possible value, which is a negative number.As a result, the Web application processes the order as a return instead of a purchase, and the attacker's account is refunded a large sum of money.What type of attack has occurred in this scenario?

0%
Privilege escalation
0%
Implementing server-side validation.Implementing client-side validation.
0%
Integer overflow
0%
Source address

An attacker as hidden an NFC reader behind an NFC-based kiosk in an airport.The attacker uses the device to capture NFC data in transit between end-user and the reader in the kiosk. She then uses that information later on to masquerade as the original end-user device and establish an NFC connection to the kiosk.What kind of attack has occurred in this scenario?

0%
Pop-up blocker
0%
NFC relay attack
0%
SYN flood
0%
Implementing server-side validation.Implementing client-side validation.

Which of the following common network monitoring or diagnostic activity can be used as a passive malicious attack?

0%
Smurf
0%
Disable SSID broadcast
0%
Sniffing
0%
Bluejacking`

Which of the following are true of a circuit proxy filter firewall?

0%
Hexadecimal numbers32 numbers, grouped by colons
0%
Ingress and egress filters
0%
Disable SSID broadcast
0%
Operates at the Session layer.Verifies sequencing of session packets.

A Smurf attack requires all but which of the following elements to be implemented?

0%
Padded cell
0%
1. The Local Group Policy on the computer.2. GPOs linked to the domain that contains the user or computer object.3. GPOs linked to the organizational unit that contains the object.
0%
The DDoS attack uses zombie computers.
0%
NFC relay attack

You are concerned about protecting your network from network-based attacks from the Internet. Specifically, you are concerned about attacks that have not yet been identified or that do not have prescribed protections.Which type of device should you use?

0%
Downloading a file
0%
802.11gBluetooth
0%
All-in-one appliance
0%
Anomaly based IDS

Which of the following best describes an evil twin?

0%
Disable Bluetooth on the phone
0%
An access point that is configured to mimic a valid access point to obtain logon credentials and other sensitive information.
0%
Executing commands or accessing resources on a system the attacker does not otherwise have authorization to access
0%
Easy migration of systems to different hardwareCentralized administration

Which of the following is the best protection to prevent attacks on mobile phones through the Bluetooth protocol?

0%
Input validation
0%
Disable Bluetooth on the phone
0%
Screen lock
0%
Disable SSID broadcast

Which of the following devices does not examine the MAC address in a frame before processing or forwarding the frame?

0%
IPS
0%
Hub
0%
Screen lock
0%
ACL

You have multiple users who are computer administrators. You want each administrator to be able to shut down systems and install drivers.What should you do?

0%
The DDoS attack uses zombie computers.
0%
Create a security group for the administrators; add all users to the group.Grant the group necessary user rights.
0%
Software that should be installed on a specific computer: Computer ConfigurationSoftware that should be installed for a specific user: User ConfigurationScripts that should run at startup or shutdown: Computer ConfigurationScripts that should run at logon or logoff:User ConfigurationNetwork communication security settings:Computer Configuration
0%
Hijacking

You have a shared folder named Reports. Members of the Managers group have been given Write access to the shared folder.Mark Mangum is a member of the Managers group. He needs access to the files in the Reports folder, but should not have any access to the Confidential.xls file.What should you do?

0%
Destination address of a packetSource address of a packetPort number
0%
Configure the RADIUS server with a server certificate.Configure all wireless access points with client certficates
0%
Implement an Application later protocol to encrypt data prior to saving it in the database.Disable anonymous access.
0%
Add Mark Mangum to the ACL for the Confidential.xls file with Deny permissions.

Which of the following are subject to SQL injection attacks?

0%
MAC flooding
0%
Database servers
0%
Filters based on sessionsStateful
0%
StatelessFilters IP address and port

Which protocol should you disable on the user access ports of a switch?

0%
DTP
0%
XSS
0%
IPS
0%
::1

Your organization has recently purchased 20 tablet devices for the Human Resources department to use for training sessions.You are concerned that these devices could represent a security risk to your network and want to strengthen their security profile as much as possible.Which actions should you take?

0%
Hijacking
0%
Implement storage segmentationEnable device encryption
0%
VPN concentrator
0%
Implement an application-aware IPS in front of the Web server.

Which of the following are advantages of virtualization?

0%
Eight hexadecimal quartets128-bit address
0%
Use an access control list to deny traffic from specific IP addresses.
0%
An ICMP packet that is larger than 65,536 bytes
0%
Easy migration of systems to different hardwareCentralized administration

To increase security on your company's internal network, the administrator has disabled as many ports as possible. Now, however, though you can browse the Internet, you are unable to perform secure credit card transactions.Which port needs to be enabled to allow secure transactions?

0%
443
0%
Configuration testing
0%
Open ports 20 and 21 for inbound and outbound connections
0%
Disable WPS in the access point's configuration

Which of the following is the main difference between a DoS attack and a DDoS attack?

0%
The DDoS attack uses zombie computers.
0%
ACK
0%
War chalking
0%
War dialing

Which of the following switch attacks associates the attacker's MAC address with the IP address of the victim's device.

0%
Extranet
0%
Cramming
0%
ARP spoofing/poisoning
0%
Screen lock

When the TCP/IP session state is manipulated so that a third party is able to insert alternate packets into the communication stream, what type of attack has occurred?

0%
War driving
0%
Hijacking
0%
Rogue access point
0%
Locally shared object (LSO) exploit

A smart phone was lost at the airport. There is no way to recover the device. Which of the following will ensure data confidentiality on the device?

0%
Screen lock
0%
Buffer overflow
0%
DNS poisoning
0%
Remote wipe

You want to install a firewall that can reject packets that are not part of an active session. Which type of firewall should you use?

0%
Switch
0%
False negative
0%
Circuit-level
0%
Application level

Which of the following devices is capable of detecting and responding to security threats?

0%
IPS
0%
ACL
0%
XSS
0%
Cramming

What is the least secure place to locate an access point with an omni-directional antenna when creating a wireless cell?

0%
Input validation
0%
Bluejacking`
0%
Authentication
0%
Near a window

Using the Netstat command, you notice that a remote system has made a connection to your Windows Server 2008 system using TCP/IP portWhich of the following actions is the remote system most likely to be performing?

0%
MAC address filtering
0%
On a RADIUS server
0%
Downloading a file
0%
ARP spoofing/poisoning

You have a development machine that contains sensitive information relative to your business. You are concerned that spyware and malware might get installed while browsing websites and could compromise your system or pose a confidential risk. Which of the following would best protect your system?

0%
Run the browser within a virtual environment
0%
IP address
0%
Disable WPS in the access point's configuration
0%
Use a stronger administrative password.

When you browse to a website, a pop-up window tells you that your computer has been infected with a virus. You click on the window to see what the problem is. Later, you find out that the window has installed spyware on your system.What type of attack has occurred?

0%
Drive-by download
0%
Anomaly based IDS
0%
802.11gBluetooth
0%
Pharming DNS poisoning

Which of the following Denial of Service (DoS) attacks uses ICMP packets and will only be successful if the victim has less bandwidth than the attacker?

0%
Hijacking
0%
Sniffing
0%
Man-in-the-middle attack
0%
Ping flood

Which of the following is an advantage of a virtual browser?

0%
Filters based on sessionsStateful
0%
Protects the host operating system from malicious downloads
0%
Disable Bluetooth on the phone
0%
Disable SSID broadcast

You provide Internet access for a local school. You want to control Internet access based on user, and prevent access to specific URLs. Which type of firewall should you install?

0%
ARP poisoning
0%
Int the top floor
0%
Application level
0%
Peer-to-peer networking

Which statement best describes IPSec when used in tunnel mode?

0%
Eight hexadecimal quartets128-bit address
0%
Hubs transmit frames to all hosts on all ports.
0%
Block employees from accessing certain Web sites.Cache web pages
0%
The entire data packet, including headers, is encapsulated.

Which IPSec subprotocol provides data encryption?

0%
::1
0%
ESP
0%
XSS
0%
An access point that is configured to mimic a valid access point to obtain logon credentials and other sensitive information.

Which of the following features on a wireless network allows or rejects client connections based on the hardware address?

0%
MAC address filtering
0%
ARP poisoning
0%
MAC flooding
0%
Screen lock

Which command should you use to display both listening and non-listening sockets on your Linux system?

0%
Ingress and egress filters
0%
netstat -a
0%
80, 443, 22
0%
Signature based

Which of the following is the most effective protection against IP packet spoofing on a private network?

0%
Disable Bluetooth on the phone
0%
ARP spoofing/poisoning
0%
Screen lock
0%
Ingress and egress filters

You have two folders that contain documents used by various departments:The Development group has been given the Write permission to the Design folder.The Sales group has been given the Write permission to the Products folder.No other permissions have been given to either group.User Mark Tillman needs to have the Read permission to the Design folder and the Write permission to the Products folder. You want to use groups as much as possible.What should you do?

0%
Move the router to a secure server room.
0%
Open ports 20 and 21 for inbound and outbound connections
0%
Make Mark a member of the Sales group; add Mark's user account directly to the ACL for the Design folder.
0%
Verify that your network's existing security infrastructure is working properly.Install the latest firmware updates from the device manufacturer.

As you browse the Internet, you notice that when you go to some sites, multiple additional windows are opened automatically. Many of these windows contain advertisements for products that are inappropriate for your family to view.Which tool can you implement to prevent these windows from showing?

0%
WPA2 with AES
0%
802.11gBluetooth
0%
Pop-up blocker
0%
Anomaly based IDS

Which of the following describes a false positive when using an IPS device?

0%
Unauthorized viewing calendar, e-mails, and messages on a mobile device
0%
Bluejacking`
0%
Legitimate traffic being flagged as malicious
0%
An ICMP packet that is larger than 65,536 bytes

Which of the following solutions would you use to control the actions that users can perform on a computer, such as shutting down the system, logging on through the network, or loading and unloading device drivers?

0%
Group Policy
0%
Create a security group for the managers. Add all users as members of the group. Add the group to the file's DACL.
0%
SYN flood
0%
VPN concentrator

You are an IT consultant and are visiting a new client's site to become familiar with their network. As you walk around their facility, you note the following:-When you enter the facility, a receptionist greets you and escorts you through a locked door to the work area where the office manager sits.-The office manager informs you that the organization's servers are kept in a locked closet. An access card is required to enter the server closet.-She informs you that server backups are configured to run each night. A rotation of tapes are used as the backup media.-You notice the organization's network switch is kept in the server closet.-You notice that a router/firewall/content filter all-in-one device has been implemented in the server closet to protect the internal network from external attacks.-The office manager informs you that her desktop system will no longer boot and asks you to repair or replace it. recovering as much data as possible in the process. You carry the workstation out to you car and bring it back to your office to work on it.What security-related recommendations should you make to this client?

0%
Change the administrative password to AP.
0%
Connect the virtual network interfaces in the virtual machines to the virtual switch.Create a new virtual switch configured for bridged (external) networking.
0%
Use a stronger administrative password.
0%
Implement a hardware checkout policy.

You have just installed a new network-based IDS system that uses signature recognition. What should you do on a regular basis?

0%
Update the signature files
0%
Run the browser within a virtual environment
0%
Signature based
0%
On a RADIUS server

While using the Internet, you type the URL of one of your favorite sites in the browser. Instead of going to the correct site, however, the browser displays a completely different website. When you use the IP address of the Web server, the correct site is displayed.Which type of attack has likely occurred?

0%
MAC filtering
0%
Typosquatting
0%
ARP poisoning
0%
DNS poisoning

Which of the following is not a protection against session hijacking?

0%
StatelessFilters IP address and port
0%
Input validation
0%
Screen lock
0%
DHCP reservations

Which of the following are disadvantages to server virtualization?

0%
Subnets divide an IP network address into multiple network addresses.
0%
Easy migration of systems to different hardwareCentralized administration
0%
A failure in one hardware component could affect multiple servers
0%
A false server intercepts communications from a client by impersonating the intended server.

Which two of the following lists accurately describes TCP and UDP?

0%
Broadcast traffic travels to a subset of devices rather than to all devices on the network.
0%
Packet filtering
0%
UDP: connectionless, unreliable, unsequenced, low overheadTCP: connection-oriented, reliable, sequenced, high overhead
0%
Database servers

Over the last several years, the use of mobile devices within your organization has increased dramatically.Unfortunately, many department heads circumvented your Information Systems procurement policies and directly purchased tablets and smartphones for their employees without authorization. As a result there is a proliferation of devices within your organization without accountability.You need to get things under control and begin tracking the devices that are owned by your organization.How should you do this?

0%
Move the router to a secure server room.
0%
Use a stronger administrative password.
0%
Implement a mobile endpoint management (MEM) solution.
0%
Implement a hardware checkout policy.

A customer just received a phone bill on which there are charges for unauthorized services. This customer is a victim of which type of attack?

0%
DNS poisoning
0%
Firewall
0%
80, 443, 22
0%
Cramming

Which type of attack is the act of exploiting a software program's free acceptance of input in order to execute arbitrary code on a target?

0%
1. The Local Group Policy on the computer.2. GPOs linked to the domain that contains the user or computer object.3. GPOs linked to the organizational unit that contains the object.
0%
Buffer overflow
0%
Ping flood
0%
Host system auditing

Which of the following is a privately controlled portion of a network that is accessible to some specific eternal entities?

0%
IPS
0%
Extranet
0%
ARP poisoning
0%
Bluejacking`

Your organization uses an 802.11g wireless network. Recently, other tenants installed the following equipment in your building:-A wireless television distribution system running at 2.4 GHz-A wireless phone system running at 5.8 GHz-A wireless phone system running at 900 MHz-An 802.11n wireless network running in the 5 GHz frequency rangeSince this equipment was installed, your wireless network has been experiencing significant interference. Which system is to blame?

0%
Rogue access point
0%
The system is vulnerable because LEAP is susceptible to dictionary attacks.
0%
The wireless TV system
0%
To delay intruders in order to gather auditing data

Which of the following mobile device security considerations will disable the ability to use the device after a short period of inactivity?

0%
Extranet
0%
Sniffing
0%
Screen lock
0%
MAC flooding

An attacker is conducting passive reconnaissance on a targeted company. Which of the following could he be doing?

0%
Allowing NetBIOS traffic outside of your secured network
0%
Browsing the organization's Website.
0%
Authentication
0%
Hexadecimal numbers32 numbers, grouped by colons

What purpose does a wireless site survey server?

0%
Operates at the Session layer.Verifies sequencing of session packets.
0%
6384:1319:7700:7631:446A:5511:8940:2552141:0:0:0:15:0:0:1
0%
Packet filtering
0%
To identify existing or potential sources of interference.To identify the coverage area and preferred placement of access points.

Drag each IP port on the left to its associated service on the right. Be aware that some port numbers may be used more than once.

0%
Connect the virtual network interfaces in the virtual machines to the virtual switch.Create a new virtual switch configured for host-only (internal) networking.
0%
SNMP: 161 TCP and UDPSSH: 22 TCP and UDPTFTP: 69 UDPSCP: 22 TCP and UDPTelnet: 23 TCPHTTPS: 443 TCP and UDPHTTP: 80 TCPFTP: 20 TCPSMTP: 25 TCPPOP3: 110 TCP
0%
Spark jammingRepeatedly blasts receiving equipment with high-intensity, short-duration RF bursts at a rapid paceRandom noise jammingProduces RF signals using random amplitudes and frequenciesRandom pulse jammingUses radio signal pulses of random amplitude and frequency
0%
An access point that is configured to mimic a valid access point to obtain logon credentials and other sensitive information.

During the application development cycle, an application tester creates multiple virtual machines on a hypervisor, each with a different version and edition of Windows installed. She then installs the latest build of the application being developed on each virtual machine and evaluates them for security vulnerabilities.Which assessment technique was used in this scenario?

0%
Configuration testing
0%
Configure the RADIUS server with a server certificate.Configure all wireless access points with client certficates
0%
Host base firewall
0%
Encryption

What is the goal of a TCP/IP hijacking attack?

0%
Executing commands or accessing resources on a system the attacker does not otherwise have authorization to access
0%
Unauthorized viewing calendar, e-mails, and messages on a mobile device
0%
Circuit proxy filtering firewallApplication layer firewall
0%
6384:1319:7700:7631:446A:5511:8940:2552141:0:0:0:15:0:0:1

You've just deployed a new Cisco router that connects several network segments in you organization.The router is physically located in a cubicle near your office. You've backed up the router configuration to a remote location in an encrypted file. You access the router configuration interface from your notebook computer using an SSH client with a user name of admin01 and a password of P@ssW0rd. You have used MD5 hashing algorithm to protect the password.What should you do to increase the security of this device?

0%
A proxy server is blocking access to the web sites.
0%
Implement an Application later protocol to encrypt data prior to saving it in the database.Disable anonymous access.
0%
Move the router to a secure server room.
0%
Browsing the organization's Website.

You want to create a collection of computers on your network that appears to have valuable data, but are really computers configured with fake data that could entice a potential intruder. Once the intruder connects, you want to be able to observe and gather information about methods of attack that are being deployed. What should you implement?

0%
Int the top floor
0%
IP address
0%
DNS
0%
Honeynet

FTPS uses which mechanism to provide security for authentication and data transfer?

0%
Authentication
0%
XSS
0%
Firewall
0%
SSL

Which of the following sends unsolicited business cards and messages to a Bluetooth device?

0%
ACL
0%
Bluejacking`
0%
ARP spoofing/poisoning
0%
Hexadecimal numbers32 numbers, grouped by colons