CET_TARDE - Security Fundamentals 2017 - Part 1

Descrição

Security Fundamentals Quizzes
Hawerth Castro
Quiz por Hawerth Castro, atualizado more than 1 year ago
Hawerth Castro
Criado por Hawerth Castro mais de 7 anos atrás
83
0

Resumo de Recurso

Questão 1

Questão
Which type of malware can copy itself and infect a computer without the user’s consent or knowledge?
Responda
  • virus
  • Trojan horse
  • rootkit
  • backdoor

Questão 2

Questão
What type of self-replicating program copies itself to other computers on a network without any user intervention and consumes bandwidth and computer resources?
Responda
  • virus
  • Trojan horse
  • worm
  • backdoor

Questão 3

Questão
What malware looks like a useful or desired executable program but is in reality program that is supposed to cause harm to your computer or steal information from your computer?
Responda
  • virus
  • Trojan horse
  • worm
  • backdoor

Questão 4

Questão
What malware collects a user’s personal information or details about your browsing habits without your knowledge?
Responda
  • virus
  • Trojan horse
  • worm
  • spyware

Questão 5

Questão
What malware gives administrator-level control over a computer system?
Responda
  • rootkit
  • Trojan horse
  • worm
  • spyware

Questão 6

Questão
What software component comes with Windows Vista and Windows 7 to defend against spyware?
Responda
  • Windows Firewall
  • Windows Defender
  • UAC
  • Windows Anti-virus

Questão 7

Questão
What do you call a message warning you to delete an essential Windows file?
Responda
  • virus hoax
  • keylogger
  • backdoor
  • worm

Questão 8

Questão
What server can be used to install Windows updates for your organization?
Responda
  • SCOM
  • WSUS
  • IIS
  • WDS

Questão 9

Questão
What do you call multiple Windows updates that have been packaged together as one installation and are well tested?
Responda
  • service packs
  • cumulative packs
  • critical update
  • optional update

Questão 10

Questão
What Windows feature notifies you when something tries to make changes to your computer without your knowledge?
Responda
  • WDS
  • NAT
  • Windows Defender
  • UAC

Questão 11

Questão
What host firewall is included with Windows 7?
Responda
  • Windows Firewall
  • Windows Defender
  • Microsoft Protector
  • Microsoft Safety Net

Questão 12

Questão
What do you call unsolicited junk email?
Responda
  • spam
  • j-mail
  • junkettes
  • Infected mail

Questão 13

Questão
What email validation system is designed to stop spam that uses source address spoofing?
Responda
  • Foremost Relay System
  • Sender Policy Framework
  • Spam Checking Networking
  • Spoof Checker

Questão 14

Questão
What do spammers and hackers look for when they want to send email through your network?
Responda
  • open SMTP servers
  • open web servers
  • open POP3 servers
  • open FTP servers

Questão 15

Questão
Which tab in Internet Explorer settings would you use to delete history and cookies?
Responda
  • General
  • Privacy
  • Security
  • Advanced

Questão 16

Questão
Which Internet Explorer zone is the least secure?
Responda
  • Internet zone
  • local intranet zone
  • trusted sites zone
  • restricted sites zone

Questão 17

Questão
What technique is used to send you to a fake, but realistic-looking, website to verify your account information?
Responda
  • spoofing
  • smurfing
  • man-in-the-middle
  • phishing

Questão 18

Questão
Which of the following terms indicates that information is to be read only by those people for whom it is intended?
Responda
  • confidentiality
  • integrity
  • availability
  • accounting

Questão 19

Questão
What technology is not used to implement confidentiality?
Responda
  • encryption
  • access controls
  • auditing
  • authentication

Questão 20

Questão
Which of the following makes sure that data is not changed when it not supposed to be?
Responda
  • confidentiality
  • integrity
  • availability
  • accounting

Questão 21

Questão
Which of the following is not a response when dealing with a risk?
Responda
  • avoidance
  • mitigation
  • transfer
  • patching

Questão 22

Questão
What do you call the security discipline that requires that a user is given no more privilege necessary to perform his or her job?
Responda
  • defense in depth
  • reduction of attack surface
  • risk transfer
  • principle of least privilege

Questão 23

Questão
What do you call the scope that hacker can use to break into a system?
Responda
  • defense in depth
  • attack surface
  • principle of least privilege
  • risk mitigation

Questão 24

Questão
What method used by a hacker relies on the trusting nature of the person being attacked?
Responda
  • social engineering
  • attack surface
  • principle of least privilege
  • risk avoidance

Questão 25

Questão
What is the best way to protect against social engineering?
Responda
  • stronger encryption
  • stronger authentication
  • employee awareness
  • risk mitigation

Questão 26

Questão
What is needed to highly secure a system?
Responda
  • lots of time
  • more money
  • system update
  • disabled administrator account

Questão 27

Questão
What is the first line of defense when setting up a network?
Responda
  • physically secure the network
  • configure authentication
  • configure encryption
  • configure an ACL

Questão 28

Questão
Which concept determines what resources users can access after they log on?
Responda
  • authentication
  • auditing
  • access control
  • defense in depth

Questão 29

Questão
What is used to provide protection when one line of defense is breached?
Responda
  • defense in depth
  • attack surface
  • principle of least privilege
  • risk mitigation

Questão 30

Questão
What is used to identify a person before giving access?
Responda
  • authentication
  • encryption
  • access control
  • auditing

Questão 31

Questão
What is used to verify that an administrator is not accessing data that he should not be accessing?
Responda
  • authentication
  • encryption
  • access control
  • auditing

Questão 32

Questão
What type of device can be easily lost or stolen or can be used for espionage?
Responda
  • processors
  • RAM chips
  • removable devices
  • servers

Questão 33

Questão
What is a physical or logical device used to capture keystrokes?
Responda
  • USB flash drive
  • PDA
  • Smartphone
  • keylogger

Questão 34

Questão
In dealing with risks, which response is done by buying insurance to protect your bottom line if such a disaster or threat is realized?
Responda
  • risk avoidance
  • risk acceptance
  • risk mitigation
  • risk transfer

Questão 35

Questão
What type of device isolates a network by filtering the packets that can enter it?
Responda
  • firewall
  • bridge
  • gateway
  • switch

Questão 36

Questão
What seven-layer model is often used to describe networking technologies and services?
Responda
  • OSI
  • TCP/IP
  • IPX/SPX
  • DIX

Questão 37

Questão
On which OSI layer do routers function?
Responda
  • 1
  • 2
  • 3
  • 4

Questão 38

Questão
On which OSI layer do TCP and UDP function?
Responda
  • 1
  • 2
  • 3
  • 4

Questão 39

Questão
What OSI layer do switches and bridges use?
Responda
  • 1
  • 2
  • 3
  • 4

Questão 40

Questão
What port does SMTP use?
Responda
  • 21
  • 23
  • 25
  • 443

Questão 41

Questão
What port does LDAP use?
Responda
  • 25
  • 443
  • 389
  • 3389

Questão 42

Questão
What type of firewall filters packets based on IP address and ports?
Responda
  • packet-filtering
  • circuit-filtering
  • application-level
  • stateful

Questão 43

Questão
What type of firewall is also known as a proxy server?
Responda
  • packet-filtering
  • circuit-filtering
  • application-level
  • stateful

Questão 44

Questão
What type of firewall looks at the previous conversations to determine if a packet should enter a network?
Responda
  • packet-filtering
  • circuit-filtering
  • application-level
  • stateful

Questão 45

Questão
What Microsoft technology can verify that a client has the newest Windows updates and has an updated antivirus software package before being allowed access to the network?
Responda
  • IPSec
  • NAP
  • SCCM
  • SCOM

Questão 46

Questão
What technology can you use to isolate a network of servers so that they cannot interact with other servers?
Responda
  • bridge
  • switch
  • router
  • VLAN

Questão 47

Questão
What type of device looks at a packet and forwards it based on its destination IP address?
Responda
  • bridge
  • switch
  • router
  • VLAN

Questão 48

Questão
Which type of routing protocol sends the entire routing table to its neighbors?
Responda
  • distance vector
  • link state
  • scalable driven
  • infinity

Questão 49

Questão
Which type of system detects unauthorized intruders and then takes action to stop them from proceeding?
Responda
  • IDS
  • IPS
  • VLAN
  • NAT

Questão 50

Questão
What type of server would you install that would be used to trap a hacker?
Responda
  • honeypot
  • NAT
  • IPS
  • IDS

Questão 51

Questão
What special area serves as a buffer area between the Internet and the internal network and can be used to hold web servers that are accessed from the Internet?
Responda
  • DMZ
  • NAT
  • VLAN
  • PLC

Questão 52

Questão
How many firewalls would you use to create a sandwich DMZ?
Responda
  • 1
  • 2
  • 3
  • 4

Questão 53

Questão
You have several Internet web servers that need to communicate with a SQL server. Where would you place the SQL server?
Responda
  • internal network
  • DMZ
  • Internet
  • isolated VLAN

Questão 54

Questão
Which of the following servers would you not place on the DMZ?
Responda
  • Internet web server
  • email relay servers
  • email mailbox servers
  • proxy servers

Questão 55

Questão
What technology allows a user at home to connect to the corporate network?
Responda
  • NAT
  • VPN
  • DMZ
  • PLC

Questão 56

Questão
Which IPsec protocol provides integrity protection for packet headers, data, and user authentication but does not encrypt the data load?
Responda
  • AH
  • ESP
  • IKE
  • LDAP

Questão 57

Questão
What is the process of identifying an individual?
Responda
  • authentication
  • authorization
  • accounting
  • auditing

Questão 58

Questão
What do you call the process in which a user is identified via a username and password?
Responda
  • authentication
  • authorization
  • accounting
  • auditing

Questão 59

Questão
What is the process of giving individual access to a system or resource?
Responda
  • authentication
  • authorization
  • accounting
  • auditing

Questão 60

Questão
What is the process of keeping track of a user’s activity?
Responda
  • authentication
  • authorization
  • accounting
  • authoring

Questão 61

Questão
What process prevents someone from denying that she accessed a resource?
Responda
  • accounting
  • authorization
  • sniffing
  • nonrepudiation

Questão 62

Questão
Which of the following is a secret numeric password used for authentication?
Responda
  • security token
  • digital certificate
  • digital signature
  • PIN

Questão 63

Questão
What type of electronic document contains a public key?
Responda
  • digital certificate
  • biometrics
  • PIN
  • PAN

Questão 64

Questão
What item, about the size of a credit card, allows access to a network and its resources?
Responda
  • digital certificate
  • smart card
  • security token
  • biometric

Questão 65

Questão
What type of authentication method identifies and recognizes people based on physical traits such as fingerprints?
Responda
  • digital certificates
  • WEP
  • biometrics
  • RADIUS

Questão 66

Questão
What authentication type is the default for Active Directory?
Responda
  • NTLM
  • Kerberos
  • MS-CHAP
  • MS-CHAPv2

Questão 67

Questão
What directory service is used with Windows domains?
Responda
  • Active Directory
  • E-Directory
  • PAM
  • Kerberos

Questão 68

Questão
What type of server runs Active Directory?
Responda
  • member server
  • file server
  • domain controller
  • NTLAN server

Questão 69

Questão
When you access permissions to a folder, you should first grant permissions to __________ rather than users.
Responda
  • groups
  • computers
  • collections
  • organizational units

Questão 70

Questão
When you create a local user on a computer running in Windows 7, where is the user account stored?
Responda
  • Active Directory
  • SAM
  • PAN
  • SQL database

Questão 71

Questão
Which type of group can be granted rights and permissions?
Responda
  • security
  • distribution
  • authorizing
  • SAM

Questão 72

Questão
What authorizes a user to perform certain actions in Windows such as logging on or performing a backup?
Responda
  • right
  • permission
  • accessible
  • key

Questão 73

Questão
When you grant access to print to a printer, what are you granting?
Responda
  • right
  • permission
  • accessible
  • key

Questão 74

Questão
Where are users and permissions stored for an NTFS folder?
Responda
  • access log
  • access file
  • registry
  • ACL

Questão 75

Questão
What type of permissions are assigned directly to a file or folder?
Responda
  • explicit
  • inherited
  • encompassing
  • overriding

Questão 76

Questão
What is the process of converting data into a format that cannot be read by another user?
Responda
  • encryption
  • locking
  • keying
  • registering

Questão 77

Questão
Which authentication sends the username and password in plain text?
Responda
  • MS-CHAP
  • CHAP
  • PAP
  • SPAP

Questão 78

Questão
In Windows, what do you use to enable auditing?
Responda
  • registry
  • group policies
  • NTFS permissions
  • access log

Questão 79

Questão
A user receives a phone call from a person who claims to represent IT services and then asks that user for confirmation of username and password for auditing purposes. Which security threat does this phone call represent?
Responda
  • social engineering
  • anonymous keylogging
  • spam
  • DDoS

Questão 80

Questão
Which two security precautions will help protect a workplace against social engineering? (Choose two.)
Responda
  • ensuring that each use of an access card allows access to only one user at the time
  • ensuring that all operating system and antivirus software is up to date
  • encrypting all sensitive data stored on the servers
  • performing daily data backups
  • registering and escorting all visitors to the premises

Questão 81

Questão
What are two typical physical security precautions that a business can take to protect its computers and systems? (Choose two.)
Responda
  • Perform daily data backups.
  • Replace any software firewalls with a hardware firewall.
  • Implement biometric authentication.
  • Ensure that all operating system and antivirus software is up to date.
  • Disable the autorun feature in the operating system.

Questão 82

Questão
Which physical security technology can hold user authentication information, include software license protection, provide encryption, and provide hardware and software authentication that is specific to the host system?
Responda
  • biometric authentication
  • Trusted Platform Module (TPM)
  • card key access
  • two-factor security

Questão 83

Questão
It has been noted that the computers of employees who use removable flash drives are being infected with viruses and other malware. Which two actions can help prevent this problem in the future? (Choose two.)
Responda
  • Set virus protection software to scan removable media when data is accessed.
  • Configure the Windows Firewall to block the ports that are used by viruses.
  • Enable the TPM in the CMOS settings.
  • Repair, delete, or quarantine the infected files.
  • Disable the autorun feature in the operating system.

Questão 84

Questão
In which situation would a computer technician use the fixmbr command at the command prompt of a Windows XP computer to resolve a security issue?
Responda
  • when unauthorized users have changed the CMOS settings and the CMOS password must be reset
  • when a virus has damaged the master boot record of the system disk
  • when a virus has damaged the boot sector of the system disk
  • when the folder permissions for user members of a group are incorrect

Questão 85

Questão
All users working with a particular Windows 7 computer are able to install unauthorized software. In addition to educating the users about correct security behavior, which action should also be performed to solve this issue?
Responda
  • Set the user folder permissions to Deny.
  • Disable the users’ accounts.
  • Change the user file permissions to Read Only.
  • Enable UAC on the computer.

Questão 86

Questão
You want to dispose of a 2.5 terabyte hard drive that contains confidential financial information. What is the recommended procedure to achieve this?
Responda
  • Use data wiping.
  • Drill through the HDD.
  • Smash the platters with a hammer.
  • Immerse the HDD in a weak solution of bicarbonate of soda.

Questão 87

Questão
What is the most effective way of securing wireless traffic?
Responda
  • WPA2
  • SSID hiding
  • WEP
  • wireless MAC filtering

Questão 88

Questão
Which two items are used in asymmetric encryption? (Choose two.)
Responda
  • a token
  • a TPM
  • a private key
  • a DES key
  • a public key

Questão 89

Questão
Which two characteristics describe a worm? (Choose two.)
Responda
  • hides in a dormant state until needed by an attacker
  • infects computers by attaching to software code
  • executes when software is run on a computer is self-replicating
  • travels to new computers without any intervention or knowledge of the user

Questão 90

Questão
Which type of security threat uses email that appears to be from a legitimate sender and asks the email recipient to visit a website to enter confidential information?
Responda
  • worm
  • phishing
  • adware
  • stealth virus

Questão 91

Questão
Which three questions should be addressed by organizations developing a security policy? (Choose three.)
Responda
  • How should future expansion be done?
  • What are the possible threats to the assets of the organization?
  • What is to be done in the case of a security breach?
  • When do the assets need protecting?
  • What assets require protection?
  • What insurance coverage is required?

Questão 92

Questão
What does a malware detection program look for when running a scan?
Responda
  • a service pack
  • patterns in the programming code of the software on a computer
  • mirror sites
  • patches that prevent a newly discovered virus or worm from making a successful attack

Questão 93

Questão
Port triggering has been configured on a wireless router. Port 25 has been defined as the trigger port and port 113 as an open port. What effect does this have on network traffic?
Responda
  • Any traffic that is using port 25 going out of the internal network will also be allowed to transmit out port 113.
  • All traffic that is sent into port 25 to the internal network will also be allowed to use port 113.
  • All traffic that is sent out port 25 will open port 113 to allow inbound traffic into the internal network through port 113.
  • Any traffic that comes into port 25 allows outgoing port 113 to be used.

Questão 94

Questão
Which two characteristics of network traffic are being monitored if a network technician configures the company firewall to operate as a packet filter? (Choose two.)
Responda
  • packet size
  • physical addresses
  • protocols
  • packet speed
  • ports

Questão 95

Questão
What is the primary goal of a DoS attack?
Responda
  • to facilitate access to external networks
  • to prevent the target server from being able to handle additional requests
  • to scan the data on the target server
  • to obtain all addresses in the address book within the server

Questão 96

Questão
Which question would be an example of an open-ended question that a technician might ask when troubleshooting a security issue?
Responda
  • Have you scanned your computer recently for viruses?
  • What symptoms are you experiencing?
  • Did you open any attachments from a suspicious email message?
  • Is your security software up to date?

Questão 97

Questão
Which action would help a technician to determine if a denial of service attack is being caused by malware on a host?
Responda
  • Install rogue antivirus software on the host.
  • Log on to the host as a different user.
  • Disable ActiveX and Silverlight on the host.
  • Disconnect the host from the network.

Questão 98

Questão
A technician is troubleshooting a computer security issue. The computer was compromised by an attacker as a result of the user having a weak password. Which action should the technician take as a preventive measure against this type of attack happening in the future?
Responda
  • Ensure the security policy is being enforced.
  • Check the computer for the latest OS patches and updates.
  • Scan the computer with protection software.
  • Verify the physical security of all offices.

Questão 99

Questão
A user has reported that a computer web browser will not display the correct home page even if the default page is reset. What is the likely cause of this problem?
Responda
  • A virus has damaged the boot sector of the system disk.
  • The computer has been infected with spyware.
  • UAC has been disabled on the computer.
  • Folder permissions have been changed from Deny to Allow.

Semelhante

CET_TARDE - Security Fundamentals 2017 - Part 2
Hawerth Castro
CET_TARDE - MTA Software Development Fundamentals 3
Hawerth Castro
CET_TARDE - MTA Software Development Fundamentals 1
Hawerth Castro
CET_TARDE - MTA Software Development Fundamentals 4
Hawerth Castro
CET_TARDE - MTA Software Development Fundamentals 2
Hawerth Castro
CET_TARDE - Security Fundamentals 2017 - Preparing for the certified
Hawerth Castro
Microsoft Azure Fundamentals
Vitor Gerbase
Introdução ao Microsoft Word
Roberto Becker
SALESFORCE ADM-201 Certification Exam 1
Hawerth Castro
SALESFORCE ADM-201 Certification Exam 2
Hawerth Castro
Microsoft Word 2010 - Aulas 05 e 06
Jaqueline Oliveira