CET_TARDE - Security Fundamentals 2017 - Part 2

Descrição

Security Fundamentals Quizzes
Hawerth Castro
Quiz por Hawerth Castro, atualizado more than 1 year ago
Hawerth Castro
Criado por Hawerth Castro mais de 7 anos atrás
742
0

Resumo de Recurso

Questão 1

Questão
A flood of packets with invalid source-IP addresses requests a connection on the network. The server busily tries to respond, resulting in valid requests being ignored. What type of attack occurred?
Responda
  • Trojan horse
  • Brute force
  • Ping of death
  • SYN flooding

Questão 2

Questão
What environment would be best suited for a two-firewall network design?
Responda
  • large corporate environment
  • A home environment with 10 or fewer hosts
  • A home environment that needs VPN access
  • A smaller, less congested business environment

Questão 3

Questão
While surfing the Internet, a user notices a box claiming a prize has been won. The user opens the box unaware that a program is being installed. An intruder now accesses the computer and retrieves personal information. What type of attack occurred?
Responda
  • Worm
  • Virus
  • Trojan horse
  • Denial of service

Questão 4

Questão
Which two statements are true concerning anti-spam software? (Choose two.)
Responda
  • Anti-spam software can be loaded on either the end-user PC or the ISP server, but not both.
  • When anti-spam software is loaded, legitimate e-mail may be classified as spam by mistake.
  • Installing anti-spam software should be a low priority on the network.
  • Even with anti-spam software installed, users should be careful when opening e-mail attachments.
  • Virus warning e-mails that are not identified as spam via antispam software should be forwarded to other users immediately.

Questão 5

Questão
What type of advertising is typically annoying and associated with a specific website that is being visited?
Responda
  • Adware
  • Popups
  • Spyware
  • Tracking cookies

Questão 6

Questão
What part of the security policy states what applications and usages are permitted or denied?
Responda
  • Dentification and authentication
  • Remote access
  • Acceptable use
  • Incident handling

Questão 7

Questão
To which part of the network does the wireless access point part of a Linksys integrated router connect?
Responda
  • DMZ
  • External
  • Internal
  • A network other than the wired network

Questão 8

Questão
Identify three techniques used in social engineering. (Choose three.)
Responda
  • Fishing
  • Vishing
  • Phishing
  • Spamming
  • Pretexting
  • Junk mailing

Questão 9

Questão
What is a widely distributed approach to marketing on the Internet that advertises to as many individual users as possible via IM or e-mail?
Responda
  • Brute force
  • Spam
  • Spyware
  • Tracking cookies

Questão 10

Questão
Which acronym refers to an area of the network that is accessible by both internal, or trusted, as well as external, or untrusted, host devices?
Responda
  • SPI
  • DMZ
  • ISR
  • ISP

Questão 11

Questão
During a pretexting event, how is a target typically contacted?
Responda
  • By e-mail
  • By phone
  • In person
  • Through another person

Questão 12

Questão
What is a major characteristic of a Worm?
Responda
  • Malicious software that copies itself into other executable programs
  • Tricks users into running the infected software
  • A set of computer instructions that lies dormant until triggered by a specific event
  • Exploits vulnerabilities with the intent of propagating itself across a network

Questão 13

Questão
What term is used to describe a dedicated hardware device that provides firewall services?
Responda
  • Server-based
  • Integrated
  • Personal
  • Appliance-based

Questão 14

Questão
What best practice relates to wireless access point security?
Responda
  • Activation of a popup stopper
  • A change of the default IP address
  • An update in the antivirus software definitions
  • Physically securing the cable between the access point and client

Questão 15

Questão
Which statement is true about port forwarding within a Linksys integrated router?
Responda
  • Only external traffic that is destined for specific internal ports is permitted. All other traffic is denied.
  • Only external traffic that is destined for specific internal ports is denied. All other traffic is permitted.
  • Only internal traffic that is destined for specific external ports is permitted. All other traffic is denied.
  • Only internal traffic that is destined for specific external ports is denied. All other traffic is permitted.

Questão 16

Questão
What statement is true about security configuration on a Linksys integrated router?
Responda
  • A DMZ is not supported.
  • The router is an example of a server-based firewall.
  • The router is an example of an application-based firewall.
  • Internet access can be denied for specific days and times.

Questão 17

Questão
What is one function that is provided by a vulnerability analysis tool?
Responda
  • It provides various views of possible attack paths.
  • It identifies missing security updates on a computer.
  • It identifies wireless weak points such as rogue access points.
  • It identifies all network devices on the network that do not have a firewall installed.
  • It identifies MAC and IP addresses that have not been authenticated on the network.

Questão 18

Questão
Which statement is true regarding anti-virus software?
Responda
  • Only e-mail programs need to be protected.
  • Only hard drives can be protected.
  • Only after a virus is known can an anti-virus update be created for it.
  • Only computers with a direct Internet connection need it.

Questão 19

Questão
Many best practices exist for wired and wireless network security. The list below has one item that is not a best practice. Identify the recommendation that is not a best practice for wired and wireless security.
Responda
  • Periodically update anti-virus software.
  • Be aware of normal network traffic patterns.
  • Periodically update the host operating system.
  • Activate the firewall on a Linksys integrated router.
  • Configure login permissions on the integrated router.
  • Disable the wireless network when a vulnerability analysis is being performed.

Questão 20

Questão
Refer to the graphic. In the Linksys Security menu, what does the SPI Firewall Protection option Enabled provide?
Responda
  • It prevents packets based on the application that makes the request.
  • It allows packets based on approved internal MAC or IP addresses.
  • It requires that packets coming into the router be responses to internal host requests.
  • It translates an internal address or group of addresses into an outside, public address.

Questão 21

Questão
Passwords that contain recognizable words are vulnerable to a:
Responda
  • replay attack
  • dictionary attack
  • hashing attack
  • Denial of service attack

Questão 22

Questão
A digitally signed e-mail message:
Responda
  • is encrypted
  • validates the sender
  • is virus-free
  • validates the recipient

Questão 23

Questão
Which password attack uses all possible alpha numeric combinations?
Responda
  • dictionary attack
  • social engineering
  • brute force attack
  • rainbow table attack

Questão 24

Questão
What is the minimum OS to configure BitLocker?
Responda
  • Windows Vista Enterprise
  • Windows 7 Enterprise
  • Windows XP Pro
  • Windows 2000

Questão 25

Questão
Account lockout policies are used to prevent which type of security attack?
Responda
  • passwords being reused immediately
  • users sharing passwords
  • brute force attacks
  • social engineering

Questão 26

Questão
A group of users has access to Folder A and all of its contents. You need to prevent some users from accessing a subfolder inside folder A. What should you do first?
Responda
  • Change the owner
  • Hide the folder
  • Block inheritance
  • Disable folder sharing

Questão 27

Questão
Which enables you to change the permissions on a folder?
Responda
  • Auditing
  • Take ownership
  • Extended attributes
  • Modify

Questão 28

Questão
You want to make your computer resistant to online hackers and malicious software. What should you do?
Responda
  • Turn on Windows Firewall
  • Configure a forward proxy
  • Enable spam filtering
  • Install anti-virus software

Questão 29

Questão
The primary purpose of Network Access Protection (NAP) is to prevent:
Responda
  • loss of data from client computers on a network
  • users on a network from installing software
  • unauthorized users from accessing a network
  • non-compliant systems from connection to a network

Questão 30

Questão
Many Internet sites that you visit require a username and password. How should you secure these passwords?
Responda
  • Enable session caching
  • Save them to a text file
  • Save them to an encrypted file
  • Reuse the same password
  • Configure the browser to save passwords

Questão 31

Questão
The purpose of a digital certificate is to verify that a:
Responda
  • digital document is complete
  • computer is virus-free
  • private key belongs to a sender
  • public key belongs to a sender

Questão 32

Questão
In IE8, InPrivate Browsing feature prevents:
Responda
  • unauthorized private data input
  • unencrypted communication between the client computer and the server
  • any session data from being stored on the computer
  • user credentials from being sent over the Internet

Questão 33

Questão
Physically securing servers prevents:
Responda
  • DOS attacks
  • man-in-the-middle attacks
  • compromise os the certificate chain
  • theft

Questão 34

Questão
The Windows Firewall protects computers from:
Responda
  • email virus
  • phishing scams
  • unencrypted network access
  • unauthorized network connections

Questão 35

Questão
Role separation improve server security by:
Responda
  • placing servers on separate VLAN’s
  • enforcing principle of least privilege
  • installing applications on separate hard disk
  • physically separating high security servers from others server

Questão 36

Questão
Which one of the following describes spam?
Responda
  • Gathering information about a person or organisation without their knowledge.
  • Performing an unauthorised, usually malicious, action such as erasing files.
  • Putting unnecessary load on the network by making copies of files.
  • Sending unwanted bulk messages.

Questão 37

Questão
Which one of the following can protect a computer from the risk of unwanted emails?
Responda
  • Anti-spam software.
  • Anti-virus software.
  • Anti-spyware software.
  • PC diagnostic software.

Questão 38

Questão
Which one of the following could lead to the spread of a malicious program?
Responda
  • Using only software that has been checked for viruses.
  • Maintaining regularly updated anti-virus software.
  • Opening only virus-checked file attachments from known sources.
  • Using a USB Flash Drive from an unknown source to exchange data.

Questão 39

Questão
Which one of the following describes why it is important to update antivirussoftware regularly?
Responda
  • To protect your computer from all known viruses.
  • To ensure the software identifies old viruses.
  • To protect your computer from unwanted bulk messages.
  • To prevent the spread of malicious programs on the Internet.

Questão 40

Questão
Which one of the following describes what you should do if you receive a chain letter email?
Responda
  • Forward the email.
  • Download it onto your system.
  • Delete the email.
  • Send a read receipt.

Questão 41

Questão
Which one of the following describes a computer hacker?
Responda
  • A skilled programmer who uses authorised access to exploit information available on a computer.
  • A skilled programmer who secretly invades computers without authorisation.
  • A skilled programmer who writes programs to train new employees.
  • A skilled programmer who helps in the installation of new software for an organisation.

Questão 42

Questão
Which one of the following describes why firewalls are used?
Responda
  • To prevent unauthorised access by incoming transmissions.
  • To prevent destruction of a computer in the event of a fire.
  • To enable easy downloading of data from web sites.
  • To detect and disable viruses already on a computer.

Questão 43

Questão
Which one of the following is MOST likely to be a hoax?
Responda
  • An email from a friend you have not seen recently.
  • An email with an attachment sent by a colleague using their personal email address.
  • An email asking you to go to a website for a free computer scan.
  • An email advertisement from a local shop you subscribe to.

Questão 44

Questão
Which one of the following is the reason that users should log on with ausername and password?
Responda
  • To be aware of who is in the building.
  • To check up on the time-keeping of users.
  • To protect computers against unauthorised use.
  • To enable a personalised greeting for each user.

Questão 45

Questão
Which one of the following statements about a password is TRUE?
Responda
  • It must be changed only if it is compromised.
  • It cannot contain special character symbols.
  • It must be registered with the system administrator.
  • It should be changed regularly.

Questão 46

Questão
Which one of the following should be used to change your password?
Responda
  • Control Panel.
  • Anti-virus software.
  • Windows Firewall.
  • Internet Explorer.

Questão 47

Questão
Which one of the following shows respect for confidentiality of information?
Responda
  • Discussing confidential information over the telephone.
  • Disclosing confidential information only to authorised individuals.
  • Uploading confidential information to a shared web site.
  • Emailing confidential information to a colleague.

Questão 48

Questão
Which one of the following would be considered the BEST way to store a PIN number?
Responda
  • Keep a written note of it with you bank cards.
  • Store it on your computer.
  • Memorise it.
  • Keep a written note of it in your office drawer.

Questão 49

Questão
Which one of the following describes why users should lock their computer when leaving their desk?
Responda
  • To prevent unauthorised access to data.
  • To prevent a waste of electricity.
  • To prevent data from getting corrupted.
  • To prevent the computer from malfunctioning.

Questão 50

Questão
Which one of the following is an example of phishing?
Responda
  • An email warning the recipient of a computer virus threat.
  • An email directing the recipient to forward the email to friends.
  • An email directing the recipient to enter personal details on a fake website.
  • An email directing the recipient to download an attachment.

Questão 51

Questão
Which one of the following is unsafe online activity?
Responda
  • Using a screen name or nick name that cannot identify you.
  • Meeting someone you met online face-to-face in the company of your parents.
  • Keeping your social network profile private.
  • Giving your home address to someone you met in a chat room.

Questão 52

Questão
Which one of the following describes a public network?
Responda
  • A network where devices outside the network cannot see or communicate directly with computers on the network.
  • A network where devices outside the network can see but cannot communicate directly with computers on the network.
  • A network where devices outside the network can see and communicate directly with computers on the network.
  • A network where devices outside the network cannot see but can communicate directly with computers on the network.

Questão 53

Questão
Which one of the following describes how confidential information should be sent using an unsecured network?
Responda
  • In an unsigned email.
  • In an encrypted format.
  • In a compressed format.
  • In an attachment.

Questão 54

Questão
Which one of the following statements about wireless networks is TRUE?
Responda
  • They cannot be intercepted by unknown users.
  • They limit accessibility to other users.
  • They limit visibility to other users.
  • They can be accessible to other users.

Questão 55

Questão
Which one of the following is the recommended action to prevent the risk of access to a network by other users?
Responda
  • Disconnect the computer from the network.
  • Complain to the System Administrator.
  • Change the default WEP or WPA access key to one that only you know.
  • Adjust the Internet security settings.

Questão 56

Questão
Which one of the following describes Bluetooth?
Responda
  • Short-range wired protocol for exchanging data.
  • Short-range wireless protocol for exchanging data.
  • Long-range wireless protocol for exchanging data.
  • Long-range wired protocol for exchanging data.

Questão 57

Questão
Which one of the following describes why Bluetooth device settings should be adjusted?
Responda
  • To increase the range of the device.
  • To improve the quality of reception.
  • To prevent the risk of unauthorised access.
  • To reduce interference from other devices.

Questão 58

Questão
Which one of the following would result in the loss of contact details if it were stolen?
Responda
  • Printer
  • Mobile Phone.
  • Modem
  • MP3

Questão 59

Questão
Which one of the following should you do to ensure that your USB storage device is kept safe and secure?
Responda
  • Only use it in private surroundings.
  • Do not access it using a Bluetooth device.
  • Use firewall software.
  • Never leave it unattended.

Questão 60

Questão
Which one of the following departments would usually hold guidelines and procedures for the secure use of IT within an organisation?
Responda
  • The IT Department.
  • The Marketing Department.
  • The Sales Department.
  • The Finance Department.

Questão 61

Questão
Which one of the following describes why you should follow guidelines and procedures while using IT resources in an organisation?
Responda
  • To ensure easy access to information on your computer.
  • To ensure the secure use of IT resources.
  • To ensure the IT Department is able to monitor all activity.
  • To ensure the Finance Department is able to monitor the costs of IT resources.

Questão 62

Questão
Which one of the following should you approach if you are unsure of the IT security procedure to follow when uninstalling an application on your computer?
Responda
  • A technically well-informed team member.
  • A senior colleague in the Finance Department.
  • The Maintenance Department.
  • The Systems Administrator.

Questão 63

Questão
Which one of the following describes how a breach in IT security should be reported?
Responda
  • Using the telephone.
  • By emailing to the IT Manager.
  • Using any means of communication.
  • Using the method listed in the organisation’s security policy.

Questão 64

Questão
Which one of the following describes how to find out about an organisation’s privacy policy?
Responda
  • By reading the office newsletter.
  • By reading the policy in the organisation’s policy manual.
  • By speaking to the Finance Department.
  • By speaking to the Sales Department.

Questão 65

Questão
Which one of the following would prevent the theft of a laptop?
Responda
  • Anti-virus software.
  • Spyware
  • A security cable.
  • A webcam

Questão 66

Questão
Bridging is a process of sending packets from source to destination on OSI layer 3. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Responda
  • Routing
  • Switching
  • Repeating
  • No change is needed.

Questão 67

Questão
Windows Firewall is a built-in. host-based, stateless firewall. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Responda
  • Stateful
  • Network layer
  • Packet filter
  • No change is needed

Questão 68

Questão
The primary purpose of Network Access Protection (NAP) is to prevent:
Responda
  • Loss of data from client computers on a network.
  • Non-compliant systems from connecting to a network.
  • Users on a network from installing software.
  • Unauthorized users from accessing a network.

Questão 69

Questão
Your company maintains a Web server that is accessible to the public. It should be placed in a/an:
Responda
  • primary DNS zone.
  • enterprise domain.
  • perimeter network.
  • Virtual Private Network (VPN).

Questão 70

Questão
A network sniffer is software or hardware that:
Responda
  • captures and analyzes network communication.
  • records user activity and transmits it to the server
  • protects workstations from intrusions.
  • catalogs network data to create a secure index

Questão 71

Questão
Which enables an employee to connect securely to a corporate network by using the Internet?
Responda
  • Virtual Private Networking (VPN)
  • Remote Desktop Protocol (RDP)
  • Network Address Translation (NAT)
  • Network Access Protection (NAP)

Questão 72

Questão
You are trying to establish communications between a client computer and server. The server is not responding. You confirm that both the client and the server have network connectivity. Which should you check next?
Responda
  • Data Execution Prevention
  • Microsoft Update
  • Active Directory Domains and Trusts
  • Windows Firewall

Questão 73

Questão
You have an application that communicates by using plain text. You want to secure communications between the application and a server at the network layer. What should you implement?
Responda
  • IPSec
  • SFTP
  • TLS
  • SSH

Questão 74

Questão
Which technology enables you to filter communications between a program and the Internet?
Responda
  • Antivirus software
  • BitLocker To Go
  • RADIUS Server
  • Software firewall

Questão 75

Questão
The primary purpose of Network Access Protection (NAP) is to prevent:
Responda
  • loss of data from client computers on a network.
  • non-compliant systems from connecting to a network.
  • unauthorized users from accessing a network.
  • users on a network from installing software.

Questão 76

Questão
A malicious user who intercepts and modifies communications is known as a:
Responda
  • red hat hacker
  • man-in-the-middle
  • network sniffer.
  • white hate hacker.

Questão 77

Questão
Which three file system objects can you specify the NTFS permissions for? (Choose three.)
Responda
  • Parents
  • Folders
  • Extensions
  • Files
  • Subfolders

Questão 78

Questão
You need to prevent unauthorized users from reading a specific file on a portable computer if the portable computer is stolen. What should you implement?
Responda
  • Advanced Encryption Standard (AES)
  • Folder level permissions
  • File-level permissions
  • Distributed File System (DFS)
  • BitLocker

Questão 79

Questão
Basic security questions used to reset a password are susceptible to:
Responda
  • social engineering.
  • hashing
  • network sniffing.
  • Trojan horses.

Questão 80

Questão
Which displays a user’s level of access to a particular file or folder on the server?
Responda
  • The Resultant Set of Policy
  • The object's Effective Permission
  • The client computer's registry
  • The object's Advanced Attributes

Questão 81

Questão
When conducting a security audit, the first step is to:
Responda
  • set up a virus quarantine area.
  • inventory the company's technology assets.
  • set up the system logs to audit security events.
  • install auditing software on your servers.

Questão 82

Questão
Biometrics are used to:
Responda
  • study hacking behavior.
  • perform security audits.
  • authenticate users.
  • measure the attack surface.

Questão 83

Questão
A group of users has access to Folder A and all of its contents. You need to prevent some of the users from accessing a sub-folder inside Folder A.
Responda
  • Disable folder sharing
  • Change the owner
  • Block inheritance
  • Hide the folder

Questão 84

Questão
How can you confirm whether a computer on your network is the target of a brute force attack?
Responda
  • Run the show all access command
  • Use antivirus software to scan the computer
  • Check your Windows folder for unsigned files
  • Check the security log for failed authentication attempts

Questão 85

Questão
The default password length for a Windows Server domain controller is:
Responda
  • 0
  • 5
  • 7
  • 14

Questão 86

Questão
Which is the minimum requirements to create BitLocker To Go media on a client computer?
Responda
  • Windows Vista Enterprise Edition
  • Windows 2000 Professional Service Pack 4
  • Windows 7 Enterprise Edition
  • Windows XP Professional Service Pack 3

Questão 87

Questão
Software designed to infiltrate or damage a computer without the user’s consent is referred to as:
Responda
  • Embedded
  • Freeware
  • Malware
  • Unsigned

Questão 88

Questão
You need to be able to track file access. Which type of auditing should you implement?
Responda
  • Object access
  • Process tracking
  • Directory services
  • Logon events

Questão 89

Questão
A solution designed to detect unauthorized user activities, attacks, and network compromises that can also take action to prevent a breach from occurring.
Responda
  • intrusion prevention systems (IPS)
  • intrusion detection systems (IDS)
  • DNS Security Extensions (DNSsec)
  • Unified Threat Management (UTM)

Questão 90

Questão
A conceptual model, created by the International Organization for Standardization (ISO) to describe a network architecture that allows the passage of data between computer systems. Although never fully utilized as model for a protocol, the OSI model is nonetheless the standard for discussing how networking works.
Responda
  • Secure Content Management (SCM)
  • DMZ (demilitarized zone)
  • stateful inspection
  • Open Systems Interconnect (OSI)

Questão 91

Questão
A system that is designed to protect a computer or a computer network from network-based attacks. A firewall does this by filtering the data packets that are traversing the network.
Responda
  • Firewall
  • host firewall
  • Honeypot
  • Honey net

Questão 92

Questão
An attack against the cached information on your DNS server.
Responda
  • Honeypot
  • DNS spoofing
  • DNS poisoning
  • Spoofing

Questão 93

Questão
The consistency, accuracy, and validity of data or information. One of the goals of a successful information security program is to ensure that data is protected against any unauthorized or accidental changes.
Responda
  • Risk
  • Availability
  • Threat
  • Integrity

Questão 94

Questão
Answer Area
Responda
  • Yes
  • No
  • Yes
  • No
  • Yes
  • No

Questão 95

Questão
Answer Area
Responda
  • Yes
  • No
  • Yes
  • No
  • Yes
  • No

Questão 96

Questão
You are preparing a local audit policy for your workstation. No auditing is enabled. The settings of your policy are shown in the following image:
Responda
  • Audit Account logon events
  • Audit logon events
  • Audit Object access
  • Audit system events
  • Audit process traking
  • Audit logon events

Questão 97

Questão
To keep third-party content providers from tracking your movements on the web, enable InPrivate Browsing. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Responda
  • InPrivate Filtering
  • SmartScreen Filter
  • Compatibility Mode
  • No change is needed

Questão 98

Questão
Humongous Insurance needs to set up a domain controller in a branch office. Unfortunately, the server cannot be sufficiently secured from access by employees in that office, so the company is installing a Primary Domain Controller. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Responda
  • Read-Only Domain Controller
  • Backup Domain Controller
  • Active Directory Server
  • No change is needed.

Questão 99

Questão
Dumpster diving refers to a physical threat that a hacker might use to look for information about a computer network. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Responda
  • Minimum password age
  • Maximum password duration
  • Password complexity
  • No change is needed.

Questão 100

Questão
Which attack listens to network traffic of a computer resource?
Responda
  • Resource gathering
  • Denial of service
  • ARP poisoning
  • Eavesdropping
  • Logic bomb

Questão 101

Questão
To implement WPA2 Enterprise, you would need a/an:
Responda
  • RADIUS server
  • SSL server
  • WEP server
  • VPN server

Questão 102

Questão
The company that you work for wants to set up a secure network, but they do not have any servers. Which three security methods require the use of a server? (Choose three.)
Responda
  • 802.1x
  • WPA2 Personal
  • WPA2 Enterprise
  • RADIUS
  • 802.11ac

Questão 103

Questão
You suspect a user’s computer is infected by a virus. What should you do first?
Responda
  • Restart the computer in safe mode
  • Replace the computer’s hard disk drive
  • Disconnect the computer from the network
  • Install antivirus software on the computer

Questão 104

Questão
Malware is any kind of unwanted software that is installed without your consent. Select the correct answer if the underlined text does not make the statement correct. Select “No change is needed” if the underlined text makes the statement correct.
Responda
  • Viruses are
  • Worms are
  • Trojans are
  • No change is needed.

Questão 105

Questão
You need to be able to track file access. Which type of auditing should you implement?
Responda
  • Object access
  • Directory services
  • Logon events
  • Process tracking

Questão 106

Questão
Which networking protocol provides centralized authentication, authorization and accounting?
Responda
  • SMTP
  • RADIUS
  • HTTPS
  • OpenID

Questão 107

Questão
A Virtual Private Network (VPN) is a/an:
Responda
  • Tunnel that prevents information that passes through it from being modified or stolen
  • Perimeter network that contains secure virtual servers
  • Virtual communication method that stores data transmitted in private environment
  • Intrusion Prevention System that filters unauthorized communications in the enterprise network

Questão 108

Questão
Kerberos prevents (Choose two):
Responda
  • File corruption
  • Spyware distribution
  • Replay attacks
  • Eavesdropping
  • Denial of Service attacks

Questão 109

Questão
You are network administrator. All computers run the Microsoft Internet Explorer browser. You need to prevent web cookies from being saved. What you should you enforce?
Responda
  • SmartScreen Filter (ajuda a identificar sites de phishing e de software maligno)
  • InPrivate Browsing
  • Antivirus protection
  • Cross-Site Scripting Filter (ficheiros HTML)

Questão 110

Questão
What are three ways you can reduce the number of opportunities that attackers have to exploit potential weaknesses or vulnerabilities? (Choose three)
Responda
  • Employ content filtering for web browsers
  • Restrict access to system services
  • Employ layered defenses
  • Apply the principle of least privilege
  • Elevate all accounts to administrator accounts

Questão 111

Questão
8. For each of the following statements, select Yes if the statement is true. Otherwise, select No. Each correct selection is worth one point. -A wireless MAC filter list allows only specified devices to receive packets sent from an access point [blank_start]NO[blank_end] -A wireless MAC filter list can be used to either allow or deny access to the wireless network [blank_start]YES[blank_end] -A wireless MAC filter list automatically applies encryption to a connection [blank_start]NO[blank_end]
Responda
  • YES
  • NO
  • YES
  • NO
  • YES
  • NO

Questão 112

Questão
Encrypting a hard disk is an example of ensuring:
Responda
  • Least privilege
  • Confidentiality
  • Integrity
  • Security by default

Questão 113

Questão
Installing uninterruptible power sources to your servers is an example of ensuring:
Responda
  • Integrity
  • Availability
  • Accessibility
  • A backup strategy

Questão 114

Questão
Media Access Control (MAC) filtering enables you to:
Responda
  • Set access permission to a shared folder
  • Limit access to a network based on the client computer’s network adapter
  • Prevent communications between specific IP addresses
  • Restrict communications to specific website

Questão 115

Questão
Settings a database to run on a cluster of servers is an example of applying:
Responda
  • Accessibility
  • Confidentiality
  • Availability
  • Integrity

Questão 116

Questão
You have a new computer and want to restrict other people from replacing the operating system. Which action prevents a user from installing an alternate operating system by using physical media if the user has physical access to the computer.
Responda
  • Password protecting the computer BIOS
  • Removing the user from the administrators group
  • Installing drive-level encryption
  • Disabling removable devices and drives

Questão 117

Questão
You need to give a standard user permission to run a program as an administrator. How should you set up the program shortcut to accomplish this?
Responda
  • In a different Compatibility Mode
  • By using a smart card
  • In a separate memory space
  • By utilizing RunAs

Questão 118

Questão
Your anti-spam program is blocking emails from a particular sender. your company needs to receive emails from this sender. What should you do?
Responda
  • Add the email address to the whitelist
  • Accept RSS feeds from their domain
  • List the sender’s email address in DNS
  • Reconfigure the SMS Gateway

Questão 119

Questão
You want to prevent external users from acquiring information about your network. You should implement a:
Responda
  • Proxy server
  • Firewall
  • Layer-3 switch
  • Router

Questão 120

Questão
For each of the following statements, select Yes if the statement is true. Otherwise, select No. Each correct selection is worth one point. Securing network communication through IPSec packet signing ensures data integrity while in transit [blank_start]YES[blank_end] IPSec packet ensures that the data is invulnerable to eavesdropping attacks [blank_start]YES[blank_end] Most websites use IPSec to secure communications between their web servers and client web browsers. [blank_start]NO[blank_end]
Responda
  • YES
  • NO
  • YES
  • NO
  • YES
  • NO

Questão 121

Questão
You have an application that communicates by using plain text. You want to secure communications between the application and server at the network layer. What should you implement?
Responda
  • SFTP
  • SSH
  • IPSec
  • TLS

Questão 122

Questão
The process of creating a barrier between domain members and non-domain members by using IPSec policies is referred to as:
Responda
  • Server isolation
  • Domain isolation
  • Server filtering
  • Domain filtering

Questão 123

Questão
An authentication protocol used by Windows stand-alone systems is:
Responda
  • SMB
  • NTLM
  • NetBIOS
  • EAP
  • Kerberos

Questão 124

Questão
An authentication protocol widely used in 802.11 environments is:
Responda
  • SMB
  • NTLM
  • NetBIOS
  • EAP
  • Kerberos

Questão 125

Questão
A strong authentication protocol preferred by Windows Server 2012 R2 is:
Responda
  • SMB
  • NTLM
  • NetBIOS
  • EAP
  • Kerberos

Semelhante

CET_TARDE - Security Fundamentals 2017 - Part 1
Hawerth Castro
CET_TARDE - Security Fundamentals 2017 - Preparing for the certified
Hawerth Castro
Introdução ao Microsoft Word
Roberto Becker
CET_TARDE - Security Fundamentals 2017 - Part 1
Filipe Lopes
SALESFORCE ADM-201 Certification Exam 1
Hawerth Castro
SALESFORCE ADM-201 Certification Exam 2
Hawerth Castro
Microsoft Word 2010 - Aulas 05 e 06
Jaqueline Oliveira
SALESFORCE ADM-201 Certification Exam 7
Hawerth Castro
CET_TARDE - MTA HTML5 Application Development Fundamentals 2
Hawerth Castro
SALESFORCE DEV-401 Certification Evaluation 1
Hawerth Castro
Microsoft Word 2010 Aula 01 e 02
Jaqueline Oliveira