Not/Applicable
Test por , creado hace más de 1 año

6251808272-151_175

10
0
0
Not/Applicable
Creado por Not/Applicable hace casi 10 años
Cerrar

6251808272-151_175

Pregunta 1 de 25

1

Which of the following types of attacks involves interception of authentication traffic in an attempt to gain unauthorized access to a wireless network?

Selecciona una de las siguientes respuestas posibles:

  • Near field communication

  • IV attack

  • Evil twin

  • Replay attack

Explicación

Pregunta 2 de 25

1

Which of the following is a BEST practice when dealing with user accounts that will only need to be active for a limited time period?

Selecciona una de las siguientes respuestas posibles:

  • When creating the account, set the account to not remember password history.

  • When creating the account, set an expiration date on the account.

  • When creating the account, set a password expiration date on the account.

  • When creating the account, set the account to have time of day restrictions.

Explicación

Pregunta 3 de 25

1

Which of the following types of authentication packages user credentials in a ticket?

Selecciona una de las siguientes respuestas posibles:

  • Kerberos

  • LDAP

  • TACACS+

  • RADIUS

Explicación

Pregunta 4 de 25

1

Which of the following is required to allow multiple servers to exist on one physical server?

Selecciona una de las siguientes respuestas posibles:

  • Software as a Service (SaaS)

  • Platform as a Service (PaaS)

  • Virtualization

  • Infrastructure as a Service (IaaS)

Explicación

Pregunta 5 de 25

1

Several employees submit the same phishing email to the administrator. The administrator finds that the links in the email are not being blocked by the company's security device. Which of the following might the administrator do in the short term to prevent the emails from being received?

Selecciona una de las siguientes respuestas posibles:

  • Configure an ACL

  • Implement a URL filter

  • Add the domain to a block list

  • Enable TLS on the mail server

Explicación

Pregunta 6 de 25

1

A company has several conference rooms with wired network jacks that are used by both employees and guests. Employees need access to internal resources and guests only need access to the Internet. Which of the following combinations is BEST to meet the requirements?

Selecciona una de las siguientes respuestas posibles:

  • NAT and DMZ

  • VPN and IPSec

  • Switches and a firewall

  • 802.1x and VLANs

Explicación

Pregunta 7 de 25

1

LDAP and Kerberos are commonly used for which of the following?

Selecciona una de las siguientes respuestas posibles:

  • To perform queries on a directory service

  • To store usernames and passwords for Federated Identity

  • To sign SSL wildcard certificates for subdomains

  • To utilize single sign-on capabilities

Explicación

Pregunta 8 de 25

1

An administrator needs to renew a certificate for a web server. Which of the following should be submitted to a CA?

Selecciona una de las siguientes respuestas posibles:

  • CSR

  • Recovery agent

  • Private key

  • CRL

Explicación

Pregunta 9 de 25

1

An administrator needs to submit a new CSR to a CA. Which of the following is a valid FIRST step?

Selecciona una de las siguientes respuestas posibles:

  • Generate a new private key based on AES.

  • Generate a new public key based on RSA.

  • Generate a new public key based on AES.

  • Generate a new private key based on RSA.

Explicación

Pregunta 10 de 25

1

The security team would like to gather intelligence about the types of attacks being launched against the organization. Which of the following would provide them with the MOST information?

Selecciona una de las siguientes respuestas posibles:

  • Implement a honeynet

  • Perform a penetration test

  • Examine firewall logs

  • Deploy an IDS

Explicación

Pregunta 11 de 25

1

After recovering from a data breach in which customer data was lost, the legal team meets with the Chief Security Officer (CSO) to discuss ways to better protect the privacy of customer data.

Which of the following controls support this goal?

Selecciona una de las siguientes respuestas posibles:

  • Contingency planning

  • Encryption and stronger access control

  • Hashing and non-repudiation

  • Redundancy and fault tolerance

Explicación

Pregunta 12 de 25

1

A security engineer, Joe, has been asked to create a secure connection between his mail server and the mail server of a business partner. Which of the following protocol would be MOST appropriate?

Selecciona una de las siguientes respuestas posibles:

  • HTTPS

  • SSH

  • FTP

  • TLS

Explicación

Pregunta 13 de 25

1

A new network administrator is setting up a new file server for the company. Which of the following would be the BEST way to manage folder security?

Selecciona una de las siguientes respuestas posibles:

  • Assign users manually and perform regular user access reviews

  • Allow read only access to all folders and require users to request permission

  • Assign data owners to each folder and allow them to add individual users to each folder

  • Create security groups for each folder and assign appropriate users to each group

Explicación

Pregunta 14 de 25

1

A recent vulnerability scan found that Telnet is enabled on all network devices. Which of the following protocols should be used instead of Telnet?

Selecciona una de las siguientes respuestas posibles:

  • SCP

  • SSH

  • SFTP

  • SSL

Explicación

Pregunta 15 de 25

1

A network engineer is setting up a network for a company. There is a BYOD policy for the employees so that they can connect their laptops and mobile devices.

Which of the following technologies should be employed to separate the administrative network from the network in which all of the employees' devices are connected?

Selecciona una de las siguientes respuestas posibles:

  • VPN

  • VLAN

  • WPA2

  • MAC filtering

Explicación

Pregunta 16 de 25

1

A network administrator is asked to send a large file containing PII to a business associate.

Which of the following protocols is the BEST choice to use?

Selecciona una de las siguientes respuestas posibles:

  • SSH

  • SFTP

  • SMTP

  • FTP

Explicación

Pregunta 17 de 25

1

When performing the daily review of the system vulnerability scans of the network Joe, the administrator, noticed several security related vulnerabilities with an assigned vulnerability identification number. Joe researches the assigned vulnerability identification number from the vendor website. Joe proceeds with applying the recommended solution for identified vulnerability.

Which of the following is the type of vulnerability described?

Selecciona una de las siguientes respuestas posibles:

  • Network based

  • IDS

  • Signature based

  • Host based

Explicación

Pregunta 18 de 25

1

A malicious individual is attempting to write too much data to an application's memory. Which of the following describes this type of attack?

Selecciona una de las siguientes respuestas posibles:

  • Zero-day

  • SQL injection

  • Buffer overflow

  • XSRF

Explicación

Pregunta 19 de 25

1

Ann, a security administrator, wishes to replace their RADIUS authentication with a more secure protocol, which can utilize EAP. Which of the following would BEST fit her objective?

Selecciona una de las siguientes respuestas posibles:

  • CHAP

  • SAML

  • Kerberos

  • Diameter

Explicación

Pregunta 20 de 25

1

Ann, a security administrator, has concerns regarding her company's wireless network. The network is open and available for visiting prospective clients in the conference room, but she notices that many more devices are connecting to the network than should be.

Which of the following would BEST alleviate Ann's concerns with minimum disturbance of current functionality for clients?

Selecciona una de las siguientes respuestas posibles:

  • Enable MAC filtering on the wireless access point.

  • Configure WPA2 encryption on the wireless access point.

  • Lower the antenna's broadcasting power.

  • Disable SSID broadcasting.

Explicación

Pregunta 21 de 25

1

A distributed denial of service attack can BEST be described as:

Selecciona una de las siguientes respuestas posibles:

  • Invalid characters being entered into a field in a database application.

  • Users attempting to input random or invalid data into fields within a web browser application.

  • Multiple computers attacking a single target in an organized attempt to deplete its resources.

  • Multiple attackers attempting to gain elevated privileges on a target system.

Explicación

Pregunta 22 de 25

1

Joe analyzed the following log and determined the security team should implement which of the following as a mitigation method against further attempts?

Host 192.168.1.123
[00: 00: 01]Successful Login: 015 192.168.1.123 : local
[00: 00: 03]Unsuccessful Login: 022 214.34.56.006 : RDP 192.168.1.124
[00: 00: 04]UnSuccessful Login: 010 214.34.56.006 : RDP 192.168.1.124
[00: 00: 07]UnSuccessful Login: 007 214.34.56.006 : RDP 192.168.1.124
[00: 00: 08]UnSuccessful Login: 003 214.34.56.006 : RDP 192.168.1.124

Selecciona una de las siguientes respuestas posibles:

  • Reporting

  • IDS

  • Monitor system logs

  • Hardening

Explicación

Pregunta 23 de 25

1

A computer supply company is located in a building with three wireless networks. The system security team implemented a quarterly security scan and saw the following.

SSID State Channel Level

Computer AreUs1 connected 1 70dbm

Computer AreUs2 connected 5 80dbm

Computer AreUs3 connected 3 75dbm

Computer AreUs4 connected 6 95dbm

Which of the following is this an example of?

Selecciona una de las siguientes respuestas posibles:

  • Rogue access point

  • Near field communication

  • Jamming

  • Packet sniffing

Explicación

Pregunta 24 de 25

1

A systems administrator has implemented PKI on a classified government network. In the event that a disconnect occurs from the primary CA, which of the following should be accessible locally from every site to ensure users with bad certificates cannot gain access to the network?

Selecciona una de las siguientes respuestas posibles:

  • A CRL

  • Make the RA available

  • A verification authority

  • A redundant CA

Explicación

Pregunta 25 de 25

1

While configuring a new access layer switch, the administrator, Joe, was advised that he needed to make sure that only devices authorized to access the network would be permitted to login and utilize resources. Which of the following should the administrator implement to ensure this happens?

Selecciona una de las siguientes respuestas posibles:

  • Log Analysis

  • VLAN Management

  • Network separation

  • 802.1x

Explicación