CET_TARDE - Security Fundamentals 2017 - Part 2

Descripción

Security Fundamentals Quizzes
Hawerth Castro
Test por Hawerth Castro, actualizado hace más de 1 año
Hawerth Castro
Creado por Hawerth Castro hace más de 7 años
739
0

Resumen del Recurso

Pregunta 1

Pregunta
A flood of packets with invalid source-IP addresses requests a connection on the network. The server busily tries to respond, resulting in valid requests being ignored. What type of attack occurred?
Respuesta
  • Trojan horse
  • Brute force
  • Ping of death
  • SYN flooding

Pregunta 2

Pregunta
What environment would be best suited for a two-firewall network design?
Respuesta
  • large corporate environment
  • A home environment with 10 or fewer hosts
  • A home environment that needs VPN access
  • A smaller, less congested business environment

Pregunta 3

Pregunta
While surfing the Internet, a user notices a box claiming a prize has been won. The user opens the box unaware that a program is being installed. An intruder now accesses the computer and retrieves personal information. What type of attack occurred?
Respuesta
  • Worm
  • Virus
  • Trojan horse
  • Denial of service

Pregunta 4

Pregunta
Which two statements are true concerning anti-spam software? (Choose two.)
Respuesta
  • Anti-spam software can be loaded on either the end-user PC or the ISP server, but not both.
  • When anti-spam software is loaded, legitimate e-mail may be classified as spam by mistake.
  • Installing anti-spam software should be a low priority on the network.
  • Even with anti-spam software installed, users should be careful when opening e-mail attachments.
  • Virus warning e-mails that are not identified as spam via antispam software should be forwarded to other users immediately.

Pregunta 5

Pregunta
What type of advertising is typically annoying and associated with a specific website that is being visited?
Respuesta
  • Adware
  • Popups
  • Spyware
  • Tracking cookies

Pregunta 6

Pregunta
What part of the security policy states what applications and usages are permitted or denied?
Respuesta
  • Dentification and authentication
  • Remote access
  • Acceptable use
  • Incident handling

Pregunta 7

Pregunta
To which part of the network does the wireless access point part of a Linksys integrated router connect?
Respuesta
  • DMZ
  • External
  • Internal
  • A network other than the wired network

Pregunta 8

Pregunta
Identify three techniques used in social engineering. (Choose three.)
Respuesta
  • Fishing
  • Vishing
  • Phishing
  • Spamming
  • Pretexting
  • Junk mailing

Pregunta 9

Pregunta
What is a widely distributed approach to marketing on the Internet that advertises to as many individual users as possible via IM or e-mail?
Respuesta
  • Brute force
  • Spam
  • Spyware
  • Tracking cookies

Pregunta 10

Pregunta
Which acronym refers to an area of the network that is accessible by both internal, or trusted, as well as external, or untrusted, host devices?
Respuesta
  • SPI
  • DMZ
  • ISR
  • ISP

Pregunta 11

Pregunta
During a pretexting event, how is a target typically contacted?
Respuesta
  • By e-mail
  • By phone
  • In person
  • Through another person

Pregunta 12

Pregunta
What is a major characteristic of a Worm?
Respuesta
  • Malicious software that copies itself into other executable programs
  • Tricks users into running the infected software
  • A set of computer instructions that lies dormant until triggered by a specific event
  • Exploits vulnerabilities with the intent of propagating itself across a network

Pregunta 13

Pregunta
What term is used to describe a dedicated hardware device that provides firewall services?
Respuesta
  • Server-based
  • Integrated
  • Personal
  • Appliance-based

Pregunta 14

Pregunta
What best practice relates to wireless access point security?
Respuesta
  • Activation of a popup stopper
  • A change of the default IP address
  • An update in the antivirus software definitions
  • Physically securing the cable between the access point and client

Pregunta 15

Pregunta
Which statement is true about port forwarding within a Linksys integrated router?
Respuesta
  • Only external traffic that is destined for specific internal ports is permitted. All other traffic is denied.
  • Only external traffic that is destined for specific internal ports is denied. All other traffic is permitted.
  • Only internal traffic that is destined for specific external ports is permitted. All other traffic is denied.
  • Only internal traffic that is destined for specific external ports is denied. All other traffic is permitted.

Pregunta 16

Pregunta
What statement is true about security configuration on a Linksys integrated router?
Respuesta
  • A DMZ is not supported.
  • The router is an example of a server-based firewall.
  • The router is an example of an application-based firewall.
  • Internet access can be denied for specific days and times.

Pregunta 17

Pregunta
What is one function that is provided by a vulnerability analysis tool?
Respuesta
  • It provides various views of possible attack paths.
  • It identifies missing security updates on a computer.
  • It identifies wireless weak points such as rogue access points.
  • It identifies all network devices on the network that do not have a firewall installed.
  • It identifies MAC and IP addresses that have not been authenticated on the network.

Pregunta 18

Pregunta
Which statement is true regarding anti-virus software?
Respuesta
  • Only e-mail programs need to be protected.
  • Only hard drives can be protected.
  • Only after a virus is known can an anti-virus update be created for it.
  • Only computers with a direct Internet connection need it.

Pregunta 19

Pregunta
Many best practices exist for wired and wireless network security. The list below has one item that is not a best practice. Identify the recommendation that is not a best practice for wired and wireless security.
Respuesta
  • Periodically update anti-virus software.
  • Be aware of normal network traffic patterns.
  • Periodically update the host operating system.
  • Activate the firewall on a Linksys integrated router.
  • Configure login permissions on the integrated router.
  • Disable the wireless network when a vulnerability analysis is being performed.

Pregunta 20

Pregunta
Refer to the graphic. In the Linksys Security menu, what does the SPI Firewall Protection option Enabled provide?
Respuesta
  • It prevents packets based on the application that makes the request.
  • It allows packets based on approved internal MAC or IP addresses.
  • It requires that packets coming into the router be responses to internal host requests.
  • It translates an internal address or group of addresses into an outside, public address.

Pregunta 21

Pregunta
Passwords that contain recognizable words are vulnerable to a:
Respuesta
  • replay attack
  • dictionary attack
  • hashing attack
  • Denial of service attack

Pregunta 22

Pregunta
A digitally signed e-mail message:
Respuesta
  • is encrypted
  • validates the sender
  • is virus-free
  • validates the recipient

Pregunta 23

Pregunta
Which password attack uses all possible alpha numeric combinations?
Respuesta
  • dictionary attack
  • social engineering
  • brute force attack
  • rainbow table attack

Pregunta 24

Pregunta
What is the minimum OS to configure BitLocker?
Respuesta
  • Windows Vista Enterprise
  • Windows 7 Enterprise
  • Windows XP Pro
  • Windows 2000

Pregunta 25

Pregunta
Account lockout policies are used to prevent which type of security attack?
Respuesta
  • passwords being reused immediately
  • users sharing passwords
  • brute force attacks
  • social engineering

Pregunta 26

Pregunta
A group of users has access to Folder A and all of its contents. You need to prevent some users from accessing a subfolder inside folder A. What should you do first?
Respuesta
  • Change the owner
  • Hide the folder
  • Block inheritance
  • Disable folder sharing

Pregunta 27

Pregunta
Which enables you to change the permissions on a folder?
Respuesta
  • Auditing
  • Take ownership
  • Extended attributes
  • Modify

Pregunta 28

Pregunta
You want to make your computer resistant to online hackers and malicious software. What should you do?
Respuesta
  • Turn on Windows Firewall
  • Configure a forward proxy
  • Enable spam filtering
  • Install anti-virus software

Pregunta 29

Pregunta
The primary purpose of Network Access Protection (NAP) is to prevent:
Respuesta
  • loss of data from client computers on a network
  • users on a network from installing software
  • unauthorized users from accessing a network
  • non-compliant systems from connection to a network

Pregunta 30

Pregunta
Many Internet sites that you visit require a username and password. How should you secure these passwords?
Respuesta
  • Enable session caching
  • Save them to a text file
  • Save them to an encrypted file
  • Reuse the same password
  • Configure the browser to save passwords

Pregunta 31

Pregunta
The purpose of a digital certificate is to verify that a:
Respuesta
  • digital document is complete
  • computer is virus-free
  • private key belongs to a sender
  • public key belongs to a sender

Pregunta 32

Pregunta
In IE8, InPrivate Browsing feature prevents:
Respuesta
  • unauthorized private data input
  • unencrypted communication between the client computer and the server
  • any session data from being stored on the computer
  • user credentials from being sent over the Internet

Pregunta 33

Pregunta
Physically securing servers prevents:
Respuesta
  • DOS attacks
  • man-in-the-middle attacks
  • compromise os the certificate chain
  • theft

Pregunta 34

Pregunta
The Windows Firewall protects computers from:
Respuesta
  • email virus
  • phishing scams
  • unencrypted network access
  • unauthorized network connections

Pregunta 35

Pregunta
Role separation improve server security by:
Respuesta
  • placing servers on separate VLAN’s
  • enforcing principle of least privilege
  • installing applications on separate hard disk
  • physically separating high security servers from others server

Pregunta 36

Pregunta
Which one of the following describes spam?
Respuesta
  • Gathering information about a person or organisation without their knowledge.
  • Performing an unauthorised, usually malicious, action such as erasing files.
  • Putting unnecessary load on the network by making copies of files.
  • Sending unwanted bulk messages.

Pregunta 37

Pregunta
Which one of the following can protect a computer from the risk of unwanted emails?
Respuesta
  • Anti-spam software.
  • Anti-virus software.
  • Anti-spyware software.
  • PC diagnostic software.

Pregunta 38

Pregunta
Which one of the following could lead to the spread of a malicious program?
Respuesta
  • Using only software that has been checked for viruses.
  • Maintaining regularly updated anti-virus software.
  • Opening only virus-checked file attachments from known sources.
  • Using a USB Flash Drive from an unknown source to exchange data.

Pregunta 39

Pregunta
Which one of the following describes why it is important to update antivirussoftware regularly?
Respuesta
  • To protect your computer from all known viruses.
  • To ensure the software identifies old viruses.
  • To protect your computer from unwanted bulk messages.
  • To prevent the spread of malicious programs on the Internet.

Pregunta 40

Pregunta
Which one of the following describes what you should do if you receive a chain letter email?
Respuesta
  • Forward the email.
  • Download it onto your system.
  • Delete the email.
  • Send a read receipt.

Pregunta 41

Pregunta
Which one of the following describes a computer hacker?
Respuesta
  • A skilled programmer who uses authorised access to exploit information available on a computer.
  • A skilled programmer who secretly invades computers without authorisation.
  • A skilled programmer who writes programs to train new employees.
  • A skilled programmer who helps in the installation of new software for an organisation.

Pregunta 42

Pregunta
Which one of the following describes why firewalls are used?
Respuesta
  • To prevent unauthorised access by incoming transmissions.
  • To prevent destruction of a computer in the event of a fire.
  • To enable easy downloading of data from web sites.
  • To detect and disable viruses already on a computer.

Pregunta 43

Pregunta
Which one of the following is MOST likely to be a hoax?
Respuesta
  • An email from a friend you have not seen recently.
  • An email with an attachment sent by a colleague using their personal email address.
  • An email asking you to go to a website for a free computer scan.
  • An email advertisement from a local shop you subscribe to.

Pregunta 44

Pregunta
Which one of the following is the reason that users should log on with ausername and password?
Respuesta
  • To be aware of who is in the building.
  • To check up on the time-keeping of users.
  • To protect computers against unauthorised use.
  • To enable a personalised greeting for each user.

Pregunta 45

Pregunta
Which one of the following statements about a password is TRUE?
Respuesta
  • It must be changed only if it is compromised.
  • It cannot contain special character symbols.
  • It must be registered with the system administrator.
  • It should be changed regularly.

Pregunta 46

Pregunta
Which one of the following should be used to change your password?
Respuesta
  • Control Panel.
  • Anti-virus software.
  • Windows Firewall.
  • Internet Explorer.

Pregunta 47

Pregunta
Which one of the following shows respect for confidentiality of information?
Respuesta
  • Discussing confidential information over the telephone.
  • Disclosing confidential information only to authorised individuals.
  • Uploading confidential information to a shared web site.
  • Emailing confidential information to a colleague.

Pregunta 48

Pregunta
Which one of the following would be considered the BEST way to store a PIN number?
Respuesta
  • Keep a written note of it with you bank cards.
  • Store it on your computer.
  • Memorise it.
  • Keep a written note of it in your office drawer.

Pregunta 49

Pregunta
Which one of the following describes why users should lock their computer when leaving their desk?
Respuesta
  • To prevent unauthorised access to data.
  • To prevent a waste of electricity.
  • To prevent data from getting corrupted.
  • To prevent the computer from malfunctioning.

Pregunta 50

Pregunta
Which one of the following is an example of phishing?
Respuesta
  • An email warning the recipient of a computer virus threat.
  • An email directing the recipient to forward the email to friends.
  • An email directing the recipient to enter personal details on a fake website.
  • An email directing the recipient to download an attachment.

Pregunta 51

Pregunta
Which one of the following is unsafe online activity?
Respuesta
  • Using a screen name or nick name that cannot identify you.
  • Meeting someone you met online face-to-face in the company of your parents.
  • Keeping your social network profile private.
  • Giving your home address to someone you met in a chat room.

Pregunta 52

Pregunta
Which one of the following describes a public network?
Respuesta
  • A network where devices outside the network cannot see or communicate directly with computers on the network.
  • A network where devices outside the network can see but cannot communicate directly with computers on the network.
  • A network where devices outside the network can see and communicate directly with computers on the network.
  • A network where devices outside the network cannot see but can communicate directly with computers on the network.

Pregunta 53

Pregunta
Which one of the following describes how confidential information should be sent using an unsecured network?
Respuesta
  • In an unsigned email.
  • In an encrypted format.
  • In a compressed format.
  • In an attachment.

Pregunta 54

Pregunta
Which one of the following statements about wireless networks is TRUE?
Respuesta
  • They cannot be intercepted by unknown users.
  • They limit accessibility to other users.
  • They limit visibility to other users.
  • They can be accessible to other users.

Pregunta 55

Pregunta
Which one of the following is the recommended action to prevent the risk of access to a network by other users?
Respuesta
  • Disconnect the computer from the network.
  • Complain to the System Administrator.
  • Change the default WEP or WPA access key to one that only you know.
  • Adjust the Internet security settings.

Pregunta 56

Pregunta
Which one of the following describes Bluetooth?
Respuesta
  • Short-range wired protocol for exchanging data.
  • Short-range wireless protocol for exchanging data.
  • Long-range wireless protocol for exchanging data.
  • Long-range wired protocol for exchanging data.

Pregunta 57

Pregunta
Which one of the following describes why Bluetooth device settings should be adjusted?
Respuesta
  • To increase the range of the device.
  • To improve the quality of reception.
  • To prevent the risk of unauthorised access.
  • To reduce interference from other devices.

Pregunta 58

Pregunta
Which one of the following would result in the loss of contact details if it were stolen?
Respuesta
  • Printer
  • Mobile Phone.
  • Modem
  • MP3

Pregunta 59

Pregunta
Which one of the following should you do to ensure that your USB storage device is kept safe and secure?
Respuesta
  • Only use it in private surroundings.
  • Do not access it using a Bluetooth device.
  • Use firewall software.
  • Never leave it unattended.

Pregunta 60

Pregunta
Which one of the following departments would usually hold guidelines and procedures for the secure use of IT within an organisation?
Respuesta
  • The IT Department.
  • The Marketing Department.
  • The Sales Department.
  • The Finance Department.

Pregunta 61

Pregunta
Which one of the following describes why you should follow guidelines and procedures while using IT resources in an organisation?
Respuesta
  • To ensure easy access to information on your computer.
  • To ensure the secure use of IT resources.
  • To ensure the IT Department is able to monitor all activity.
  • To ensure the Finance Department is able to monitor the costs of IT resources.

Pregunta 62

Pregunta
Which one of the following should you approach if you are unsure of the IT security procedure to follow when uninstalling an application on your computer?
Respuesta
  • A technically well-informed team member.
  • A senior colleague in the Finance Department.
  • The Maintenance Department.
  • The Systems Administrator.

Pregunta 63

Pregunta
Which one of the following describes how a breach in IT security should be reported?
Respuesta
  • Using the telephone.
  • By emailing to the IT Manager.
  • Using any means of communication.
  • Using the method listed in the organisation’s security policy.

Pregunta 64

Pregunta
Which one of the following describes how to find out about an organisation’s privacy policy?
Respuesta
  • By reading the office newsletter.
  • By reading the policy in the organisation’s policy manual.
  • By speaking to the Finance Department.
  • By speaking to the Sales Department.

Pregunta 65

Pregunta
Which one of the following would prevent the theft of a laptop?
Respuesta
  • Anti-virus software.
  • Spyware
  • A security cable.
  • A webcam

Pregunta 66

Pregunta
Bridging is a process of sending packets from source to destination on OSI layer 3. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Respuesta
  • Routing
  • Switching
  • Repeating
  • No change is needed.

Pregunta 67

Pregunta
Windows Firewall is a built-in. host-based, stateless firewall. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Respuesta
  • Stateful
  • Network layer
  • Packet filter
  • No change is needed

Pregunta 68

Pregunta
The primary purpose of Network Access Protection (NAP) is to prevent:
Respuesta
  • Loss of data from client computers on a network.
  • Non-compliant systems from connecting to a network.
  • Users on a network from installing software.
  • Unauthorized users from accessing a network.

Pregunta 69

Pregunta
Your company maintains a Web server that is accessible to the public. It should be placed in a/an:
Respuesta
  • primary DNS zone.
  • enterprise domain.
  • perimeter network.
  • Virtual Private Network (VPN).

Pregunta 70

Pregunta
A network sniffer is software or hardware that:
Respuesta
  • captures and analyzes network communication.
  • records user activity and transmits it to the server
  • protects workstations from intrusions.
  • catalogs network data to create a secure index

Pregunta 71

Pregunta
Which enables an employee to connect securely to a corporate network by using the Internet?
Respuesta
  • Virtual Private Networking (VPN)
  • Remote Desktop Protocol (RDP)
  • Network Address Translation (NAT)
  • Network Access Protection (NAP)

Pregunta 72

Pregunta
You are trying to establish communications between a client computer and server. The server is not responding. You confirm that both the client and the server have network connectivity. Which should you check next?
Respuesta
  • Data Execution Prevention
  • Microsoft Update
  • Active Directory Domains and Trusts
  • Windows Firewall

Pregunta 73

Pregunta
You have an application that communicates by using plain text. You want to secure communications between the application and a server at the network layer. What should you implement?
Respuesta
  • IPSec
  • SFTP
  • TLS
  • SSH

Pregunta 74

Pregunta
Which technology enables you to filter communications between a program and the Internet?
Respuesta
  • Antivirus software
  • BitLocker To Go
  • RADIUS Server
  • Software firewall

Pregunta 75

Pregunta
The primary purpose of Network Access Protection (NAP) is to prevent:
Respuesta
  • loss of data from client computers on a network.
  • non-compliant systems from connecting to a network.
  • unauthorized users from accessing a network.
  • users on a network from installing software.

Pregunta 76

Pregunta
A malicious user who intercepts and modifies communications is known as a:
Respuesta
  • red hat hacker
  • man-in-the-middle
  • network sniffer.
  • white hate hacker.

Pregunta 77

Pregunta
Which three file system objects can you specify the NTFS permissions for? (Choose three.)
Respuesta
  • Parents
  • Folders
  • Extensions
  • Files
  • Subfolders

Pregunta 78

Pregunta
You need to prevent unauthorized users from reading a specific file on a portable computer if the portable computer is stolen. What should you implement?
Respuesta
  • Advanced Encryption Standard (AES)
  • Folder level permissions
  • File-level permissions
  • Distributed File System (DFS)
  • BitLocker

Pregunta 79

Pregunta
Basic security questions used to reset a password are susceptible to:
Respuesta
  • social engineering.
  • hashing
  • network sniffing.
  • Trojan horses.

Pregunta 80

Pregunta
Which displays a user’s level of access to a particular file or folder on the server?
Respuesta
  • The Resultant Set of Policy
  • The object's Effective Permission
  • The client computer's registry
  • The object's Advanced Attributes

Pregunta 81

Pregunta
When conducting a security audit, the first step is to:
Respuesta
  • set up a virus quarantine area.
  • inventory the company's technology assets.
  • set up the system logs to audit security events.
  • install auditing software on your servers.

Pregunta 82

Pregunta
Biometrics are used to:
Respuesta
  • study hacking behavior.
  • perform security audits.
  • authenticate users.
  • measure the attack surface.

Pregunta 83

Pregunta
A group of users has access to Folder A and all of its contents. You need to prevent some of the users from accessing a sub-folder inside Folder A.
Respuesta
  • Disable folder sharing
  • Change the owner
  • Block inheritance
  • Hide the folder

Pregunta 84

Pregunta
How can you confirm whether a computer on your network is the target of a brute force attack?
Respuesta
  • Run the show all access command
  • Use antivirus software to scan the computer
  • Check your Windows folder for unsigned files
  • Check the security log for failed authentication attempts

Pregunta 85

Pregunta
The default password length for a Windows Server domain controller is:
Respuesta
  • 0
  • 5
  • 7
  • 14

Pregunta 86

Pregunta
Which is the minimum requirements to create BitLocker To Go media on a client computer?
Respuesta
  • Windows Vista Enterprise Edition
  • Windows 2000 Professional Service Pack 4
  • Windows 7 Enterprise Edition
  • Windows XP Professional Service Pack 3

Pregunta 87

Pregunta
Software designed to infiltrate or damage a computer without the user’s consent is referred to as:
Respuesta
  • Embedded
  • Freeware
  • Malware
  • Unsigned

Pregunta 88

Pregunta
You need to be able to track file access. Which type of auditing should you implement?
Respuesta
  • Object access
  • Process tracking
  • Directory services
  • Logon events

Pregunta 89

Pregunta
A solution designed to detect unauthorized user activities, attacks, and network compromises that can also take action to prevent a breach from occurring.
Respuesta
  • intrusion prevention systems (IPS)
  • intrusion detection systems (IDS)
  • DNS Security Extensions (DNSsec)
  • Unified Threat Management (UTM)

Pregunta 90

Pregunta
A conceptual model, created by the International Organization for Standardization (ISO) to describe a network architecture that allows the passage of data between computer systems. Although never fully utilized as model for a protocol, the OSI model is nonetheless the standard for discussing how networking works.
Respuesta
  • Secure Content Management (SCM)
  • DMZ (demilitarized zone)
  • stateful inspection
  • Open Systems Interconnect (OSI)

Pregunta 91

Pregunta
A system that is designed to protect a computer or a computer network from network-based attacks. A firewall does this by filtering the data packets that are traversing the network.
Respuesta
  • Firewall
  • host firewall
  • Honeypot
  • Honey net

Pregunta 92

Pregunta
An attack against the cached information on your DNS server.
Respuesta
  • Honeypot
  • DNS spoofing
  • DNS poisoning
  • Spoofing

Pregunta 93

Pregunta
The consistency, accuracy, and validity of data or information. One of the goals of a successful information security program is to ensure that data is protected against any unauthorized or accidental changes.
Respuesta
  • Risk
  • Availability
  • Threat
  • Integrity

Pregunta 94

Pregunta
Answer Area
Respuesta
  • Yes
  • No
  • Yes
  • No
  • Yes
  • No

Pregunta 95

Pregunta
Answer Area
Respuesta
  • Yes
  • No
  • Yes
  • No
  • Yes
  • No

Pregunta 96

Pregunta
You are preparing a local audit policy for your workstation. No auditing is enabled. The settings of your policy are shown in the following image:
Respuesta
  • Audit Account logon events
  • Audit logon events
  • Audit Object access
  • Audit system events
  • Audit process traking
  • Audit logon events

Pregunta 97

Pregunta
To keep third-party content providers from tracking your movements on the web, enable InPrivate Browsing. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Respuesta
  • InPrivate Filtering
  • SmartScreen Filter
  • Compatibility Mode
  • No change is needed

Pregunta 98

Pregunta
Humongous Insurance needs to set up a domain controller in a branch office. Unfortunately, the server cannot be sufficiently secured from access by employees in that office, so the company is installing a Primary Domain Controller. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Respuesta
  • Read-Only Domain Controller
  • Backup Domain Controller
  • Active Directory Server
  • No change is needed.

Pregunta 99

Pregunta
Dumpster diving refers to a physical threat that a hacker might use to look for information about a computer network. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Respuesta
  • Minimum password age
  • Maximum password duration
  • Password complexity
  • No change is needed.

Pregunta 100

Pregunta
Which attack listens to network traffic of a computer resource?
Respuesta
  • Resource gathering
  • Denial of service
  • ARP poisoning
  • Eavesdropping
  • Logic bomb

Pregunta 101

Pregunta
To implement WPA2 Enterprise, you would need a/an:
Respuesta
  • RADIUS server
  • SSL server
  • WEP server
  • VPN server

Pregunta 102

Pregunta
The company that you work for wants to set up a secure network, but they do not have any servers. Which three security methods require the use of a server? (Choose three.)
Respuesta
  • 802.1x
  • WPA2 Personal
  • WPA2 Enterprise
  • RADIUS
  • 802.11ac

Pregunta 103

Pregunta
You suspect a user’s computer is infected by a virus. What should you do first?
Respuesta
  • Restart the computer in safe mode
  • Replace the computer’s hard disk drive
  • Disconnect the computer from the network
  • Install antivirus software on the computer

Pregunta 104

Pregunta
Malware is any kind of unwanted software that is installed without your consent. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Respuesta
  • Viruses are
  • Worms are
  • Trojans are
  • No change is needed.

Pregunta 105

Pregunta
You need to be able to track file access. Which type of auditing should you implement?
Respuesta
  • Object access
  • Directory services
  • Logon events
  • Process tracking

Pregunta 106

Pregunta
Which networking protocol provides centralized authentication, authorization and accounting?
Respuesta
  • SMTP
  • RADIUS
  • HTTPS
  • OpenID

Pregunta 107

Pregunta
A Virtual Private Network (VPN) is a/an:
Respuesta
  • Tunnel that prevents information that passes through it from being modified or stolen
  • Perimeter network that contains secure virtual servers
  • Virtual communication method that stores data transmitted in private environment
  • Intrusion Prevention System that filters unauthorized communications in the enterprise network

Pregunta 108

Pregunta
Kerberos prevents (Choose two):
Respuesta
  • File corruption
  • Spyware distribution
  • Replay attacks
  • Eavesdropping
  • Denial of Service attacks

Pregunta 109

Pregunta
You are network administrator. All computers run the Microsoft Internet Explorer browser. You need to prevent web cookies from being saved. What you should you enforce?
Respuesta
  • SmartScreen Filter (ajuda a identificar sites de phishing e de software maligno)
  • InPrivate Browsing
  • Antivirus protection
  • Cross-Site Scripting Filter (ficheiros HTML)

Pregunta 110

Pregunta
What are three ways you can reduce the number of opportunities that attackers have to exploit potential weaknesses or vulnerabilities? (Choose three)
Respuesta
  • Employ content filtering for web browsers
  • Restrict access to system services
  • Employ layered defenses
  • Apply the principle of least privilege
  • Elevate all accounts to administrator accounts

Pregunta 111

Pregunta
8. For each of the following statements, select Yes if the statement is true. Otherwise, select No. Each correct selection is worth one point. -A wireless MAC filter list allows only specified devices to receive packets sent from an access point [blank_start]NO[blank_end] -A wireless MAC filter list can be used to either allow or deny access to the wireless network [blank_start]YES[blank_end] -A wireless MAC filter list automatically applies encryption to a connection [blank_start]NO[blank_end]
Respuesta
  • YES
  • NO
  • YES
  • NO
  • YES
  • NO

Pregunta 112

Pregunta
Encrypting a hard disk is an example of ensuring:
Respuesta
  • Least privilege
  • Confidentiality
  • Integrity
  • Security by default

Pregunta 113

Pregunta
Installing uninterruptible power sources to your servers is an example of ensuring:
Respuesta
  • Integrity
  • Availability
  • Accessibility
  • A backup strategy

Pregunta 114

Pregunta
Media Access Control (MAC) filtering enables you to:
Respuesta
  • Set access permission to a shared folder
  • Limit access to a network based on the client computer’s network adapter
  • Prevent communications between specific IP addresses
  • Restrict communications to specific website

Pregunta 115

Pregunta
Settings a database to run on a cluster of servers is an example of applying:
Respuesta
  • Accessibility
  • Confidentiality
  • Availability
  • Integrity

Pregunta 116

Pregunta
You have a new computer and want to restrict other people from replacing the operating system. Which action prevents a user from installing an alternate operating system by using physical media if the user has physical access to the computer.
Respuesta
  • Password protecting the computer BIOS
  • Removing the user from the administrators group
  • Installing drive-level encryption
  • Disabling removable devices and drives

Pregunta 117

Pregunta
You need to give a standard user permission to run a program as an administrator. How should you set up the program shortcut to accomplish this?
Respuesta
  • In a different Compatibility Mode
  • By using a smart card
  • In a separate memory space
  • By utilizing RunAs

Pregunta 118

Pregunta
Your anti-spam program is blocking emails from a particular sender. your company needs to receive emails from this sender. What should you do?
Respuesta
  • Add the email address to the whitelist
  • Accept RSS feeds from their domain
  • List the sender’s email address in DNS
  • Reconfigure the SMS Gateway

Pregunta 119

Pregunta
You want to prevent external users from acquiring information about your network. You should implement a:
Respuesta
  • Proxy server
  • Firewall
  • Layer-3 switch
  • Router

Pregunta 120

Pregunta
For each of the following statements, select Yes if the statement is true. Otherwise, select No. Each correct selection is worth one point. Securing network communication through IPSec packet signing ensures data integrity while in transit [blank_start]YES[blank_end] IPSec packet ensures that the data is invulnerable to eavesdropping attacks [blank_start]YES[blank_end] Most websites use IPSec to secure communications between their web servers and client web browsers. [blank_start]NO[blank_end]
Respuesta
  • YES
  • NO
  • YES
  • NO
  • YES
  • NO

Pregunta 121

Pregunta
You have an application that communicates by using plain text. You want to secure communications between the application and server at the network layer. What should you implement?
Respuesta
  • SFTP
  • SSH
  • IPSec
  • TLS

Pregunta 122

Pregunta
The process of creating a barrier between domain members and non-domain members by using IPSec policies is referred to as:
Respuesta
  • Server isolation
  • Domain isolation
  • Server filtering
  • Domain filtering

Pregunta 123

Pregunta
An authentication protocol used by Windows stand-alone systems is:
Respuesta
  • SMB
  • NTLM
  • NetBIOS
  • EAP
  • Kerberos

Pregunta 124

Pregunta
An authentication protocol widely used in 802.11 environments is:
Respuesta
  • SMB
  • NTLM
  • NetBIOS
  • EAP
  • Kerberos

Pregunta 125

Pregunta
A strong authentication protocol preferred by Windows Server 2012 R2 is:
Respuesta
  • SMB
  • NTLM
  • NetBIOS
  • EAP
  • Kerberos
Mostrar resumen completo Ocultar resumen completo

Similar

CET_TARDE - Security Fundamentals 2017 - Part 1
Hawerth Castro
CET_TARDE - Security Fundamentals 2017 - Preparing for the certified
Hawerth Castro
Introdução ao Microsoft Word
Roberto Becker
CET_TARDE - Security Fundamentals 2017 - Part 1
Filipe Lopes
SALESFORCE ADM-201 Certification Exam 1
Hawerth Castro
SALESFORCE ADM-201 Certification Exam 2
Hawerth Castro
Microsoft Word 2010 - Aulas 05 e 06
Jaqueline Oliveira
SALESFORCE ADM-201 Certification Exam 7
Hawerth Castro
CET_TARDE - MTA HTML5 Application Development Fundamentals 2
Hawerth Castro
SALESFORCE DEV-401 Certification Evaluation 1
Hawerth Castro
Microsoft Word 2010 Aula 01 e 02
Jaqueline Oliveira