Copiar y Editar

SY0-301 Part 4

Descripción

Questions 151 - 200
Brooks Thornhill
Test por Brooks Thornhill, actualizado hace más de 1 año
Brooks Thornhill
Creado por Brooks Thornhill hace casi 8 años
32
0
0

Resumen del Recurso

Pregunta 1

Pregunta
An administrator wants to setup their network with only one public IP address even thou there are 10 users internally who needs access. Which of the following would allow for this?
Respuesta
  • DMZ
  • VLAN
  • NIDS
  • NAT

Pregunta 2

Pregunta
Which of the following would be the MOST secure choice to implement for authenticating remote connections?
Respuesta
  • LDAP
  • 802.1x
  • RAS
  • RADIUS

Pregunta 3

Pregunta
Which of the following is the BEST way to reduce the number of passwords a user must remember and maintain?
Respuesta
  • Kerberos
  • CHAP
  • SSO
  • MD5

Pregunta 4

Pregunta
Which of the following can be used as a means for dual-factor authentication?
Respuesta
  • RAS and username/password
  • RADIUS and L2TP
  • LDAP and WPA
  • Iris scan and proximity card

Pregunta 5

Pregunta
Which of the following type of attacks requires an attacker to sniff the network?
Respuesta
  • Man-in-the-Middle
  • DDoS attack
  • MAC flooding
  • DNS poisoning

Pregunta 6

Pregunta
Which of the following redundancy solutions contains hardware systems similar to the affected organization, but does not provide all of the equipment needed for redundancy?
Respuesta
  • Hot site
  • Uninterruptible Power Supply (UPS)
  • Warm site
  • Cold site

Pregunta 7

Pregunta
Which of the following security policies is BEST to use when trying to mitigate the risks involved with allowing a user to access company email via their cell phone?
Respuesta
  • The cell phone should require a password after a set period of inactivity
  • The cell phone should only be used for company related emails
  • The cell phone data should be encrypted according to NIST standards
  • The cell phone should have data connection abilities disabled

Pregunta 8

Pregunta
Which of the following algorithms is the LEAST secure?
Respuesta
  • NTLM
  • MD5
  • LANMAN
  • SHA-1

Pregunta 9

Pregunta
A technician needs to detect staff members that are connecting to an unauthorized website. Which of the following could be used?
Respuesta
  • Protocol analyzer
  • Bluesnarfing
  • Host routing table
  • HIDS

Pregunta 10

Pregunta
Which of the following is an example of security personnel that administer access control functions, but do not administer audit functions?
Respuesta
  • Access enforcement
  • Separation of duties
  • Least privilege
  • Account management

Pregunta 11

Pregunta
Which of the following is used to perform denial of service (DoS) attacks?
Respuesta
  • Privilege escalation
  • Botnet
  • Adware
  • Spyware

Pregunta 12

Pregunta
Which of the following is an exploit against a device where only the hardware model and manufacturer are known?
Respuesta
  • Replay attack
  • Denial of service (DoS)
  • Privilege escalation
  • Default passwords

Pregunta 13

Pregunta
Which of the following tools will allow the technician to find all open ports on the network?
Respuesta
  • Performance monitor
  • Protocol analyzer
  • Router ACL
  • Network scanner

Pregunta 14

Pregunta
Which of the following should a technician recommend to prevent physical access to individual office areas? (Select TWO).
Respuesta
  • Video surveillance
  • Blockade
  • Key card readers
  • Mantrap
  • Perimeter fence

Pregunta 15

Pregunta
After issuance a technician becomes aware that some asymmetric keys were issued to individuals who are not authorized to use them. Which of the following should the technician use to revoke the keys and informs others they are no longer trusted?
Respuesta
  • Recovery agent
  • Certificate revocation list
  • Key escrow
  • Public key recovery

Pregunta 16

Pregunta
Which of following can BEST be used to determine the topology of a network and discover unknown devices?
Respuesta
  • Vulnerability scanner
  • NIPS
  • Protocol analyzer
  • Network mapper

Pregunta 17

Pregunta
Which of the following BEST describes the term war driving?
Respuesta
  • Driving from point to point with a laptop and an antenna to find unsecured wireless access points
  • Driving from point to point with a wireless scanner to read other user emails through the access point
  • Driving from point to point with a wireless network card and hacking into unsecured wireless access points
  • Driving from point to point with a wireless scanner to use unsecured access points

Pregunta 18

Pregunta
When is the BEST time to update antivirus definitions?
Respuesta
  • At least once a week as part of system maintenance
  • As the definitions become available from the vendor
  • When a new virus is discovered on the system
  • When an attack occurs on the network

Pregunta 19

Pregunta
Why would a technician use a password cracker?
Respuesta
  • To look for weak passwords on the network
  • To change a user passwords when they leave the company
  • To enforce password complexity requirements
  • To change user passwords if they have forgotten them

Pregunta 20

Pregunta
What would be a requirement before a technician begin his penetration test?
Respuesta
  • When the technician suspects that weak passwords exist on the network
  • When the technician is trying to guess passwords on a network
  • When the technician has permission from the owner of the network
  • When the technician is war driving and trying to gain access

Pregunta 21

Pregunta
Which of the following is the MOST secure alternative for remote administrative access to a router?
Respuesta
  • SSH
  • Telnet
  • rlogin
  • HTTP

Pregunta 22

Pregunta
Users are utilizing thumb drives to connect to USB ports on company workstations. A technician is concerned that sensitive files can be copied to the USB drives. Which of the following mitigation techniques would address this concern? (Select TWO).
Respuesta
  • Disable the USB root hub within the OS
  • Install anti-virus software on the USB drives
  • Disable USB within the workstation BIOS
  • Apply the concept of least privilege to USB devices
  • Run spyware detection against all workstations

Pregunta 23

Pregunta
A technician is testing the security of a new database application with a website front-end. The technician notices that when certain characters are input into the application it will crash the server. Which of the following does the technician need to do?
Respuesta
  • Utilize SSL on the website
  • Implement an ACL
  • Lock-down the database
  • Input validation

Pregunta 24

Pregunta
An administrator in a small office environment has implemented an IDS on the network perimeter to detect malicious traffic patterns. The administrator still has a concern about traffic inside the network originating between client workstations. Which of the following could be implemented?
Respuesta
  • HIDS
  • A VLAN
  • A network router
  • An access list

Pregunta 25

Pregunta
Which of the following is the primary purpose of a CA?
Respuesta
  • LANMAN validation
  • Encrypt data
  • Kerberos authentication
  • Issue private/public keys

Pregunta 26

Pregunta
A user is attempting to receive digitally signed and encrypted email messages from a remote office. Which of the following protocols does the system need to support?
Respuesta
  • SMTP
  • S/MIME
  • ISAKMP
  • IPSec

Pregunta 27

Pregunta
Antivirus software products detect malware by comparing the characteristics of known instances against which of the following type of file sets?
Respuesta
  • Signature
  • Text
  • NIDS signature
  • Dynamic Library

Pregunta 28

Pregunta
Which of the following is a reason why a company should disable the SSID broadcast of the wireless access points?
Respuesta
  • Rogue access points
  • War driving
  • Weak encryption
  • Session hijacking

Pregunta 29

Pregunta
An administrator notices that former temporary employee's accounts are still active on a domain. Which of the following can be implemented to increase security and prevent this from happening?
Respuesta
  • Run a last logon script to look for inactive accounts
  • Implement an account expiration date for temporary employees
  • Implement a password expiration policy
  • Implement time of day restrictions for all temporary employees

Pregunta 30

Pregunta
Which of the following algorithms have the smallest key space?
Respuesta
  • IDEA
  • SHA-1
  • AES
  • DES

Pregunta 31

Pregunta
Which of the following is the MOST recent addition to cryptography as a standard for the US Government?
Respuesta
  • AES
  • DES
  • 3DES
  • PGP

Pregunta 32

Pregunta
Which of the following allows for notification when a hacking attempt is discovered?
Respuesta
  • NAT
  • NIDS
  • Netflow
  • Protocol analyzer

Pregunta 33

Pregunta
When dealing with a 10BASE5 network, which of the following is the MOST likely security risk?
Respuesta
  • An incorrect VLAN
  • SSID broadcasting
  • A repeater
  • A vampire tap

Pregunta 34

Pregunta
Which of the following allows a technician to scan for missing patches on a device without actually attempting to exploit the security problem?
Respuesta
  • A vulnerability scanner
  • Security baselines
  • A port scanner
  • Group policy

Pregunta 35

Pregunta
Which of the following uses a key ring?
Respuesta
  • AES
  • DES
  • PGP
  • RSA

Pregunta 36

Pregunta
Using an asymmetric key cryptography system, where can a technician get a third party to vouch for the identity of the key pairs generated?
Respuesta
  • A certificate authority
  • IETF
  • A key escrow service
  • A recovery agent

Pregunta 37

Pregunta
Which of the following allows a file to have different security permissions for users that have the same roles or user groups?
Respuesta
  • Mandatory Access Control (MAC)
  • Role-Based Access Control (RBAC)
  • Discretionary Access Control (DAC)
  • Rule-Based Access Control (RBAC)

Pregunta 38

Pregunta
Which of the following would be BEST to use to apply corporate security settings to a device?
Respuesta
  • A security patch
  • A security hotfix
  • An OS service pack
  • A security template

Pregunta 39

Pregunta
A technician suspects that one of the network cards on the internal LAN is causing a broadcast storm. Which of the following would BEST diagnose which NIC is causing this problem?
Respuesta
  • The NIDS log file
  • A protocol analyzer
  • The local security log file
  • The local firewall log file

Pregunta 40

Pregunta
A CEO is concerned about staff browsing inappropriate material on the Internet via HTTPS. It has been suggested that the company purchase a product which could decrypt the SSL session, scan the content and then repackage the SSL session without staff knowing. Which of the following type of attacks is similar to this product?
Respuesta
  • Replay
  • Spoofing
  • TCP/IP hijacking
  • Man-in-the-middle

Pregunta 41

Pregunta
After a system risk assessment was performed it was found that the cost to mitigate the risk was higher than the expected loss if the risk was actualized. In this instance, which of the following is the BEST course of action?
Respuesta
  • Accept the risk
  • Mitigate the risk
  • Reject the risk
  • Run a new risk assessment

Pregunta 42

Pregunta
A small call center business decided to install an email system to facilitate communications in the office. As part of the upgrade the vendor offered to supply anti-malware software for a cost of 5,000 per year. The IT manager read there was a 90% chance each year that workstations would be compromised if not adequately protected. If workstations are compromised it will take three hours to restore services for the 30 staff. Staff members in the call center are paid $90 per hour. If determining the risk, which of the following is the annual loss expectancy (ALE)?
Respuesta
  • $2,700
  • $4,500
  • $8,100
  • $7,290

Pregunta 43

Pregunta
A small call center business decided to install an email system to facilitate communications in the office. As part of the upgrade the vendor offered to supply anti-malware software for a cost of 5,000 per year. The IT manager read there was a 90% chance each year that workstations would be compromised if not adequately protected. If workstations are compromised it will take three hours to restore services for the 30 staff. Staff members in the call center are paid $90 per hour. If the anti-malware software is purchased, which of the following is the expected net savings?
Respuesta
  • 9000
  • 2,290
  • 2,700
  • 5,000

Pregunta 44

Pregunta
A flat or simple role-based access control (RBAC) embodies which of the following principles?
Respuesta
  • Users assigned to roles, permissions are assigned to groups, controls applied to groups and permissions acquired by controls
  • Users assigned permissions, roles assigned to groups and users acquire additional permissions by being a member of a group
  • Roles applied to groups, users assigned to groups and users acquire permissions by being a member of the group
  • Users assigned to roles, permissions are assigned to roles and users acquire permissions by being a member of the role?

Pregunta 45

Pregunta
Frequent signature updates are required by which of the following security applications? (Select TWO).
Respuesta
  • Antivirus
  • PGP
  • Firewall
  • PKI
  • IDS

Pregunta 46

Pregunta
Social engineering, password cracking and vulnerability exploitation are examples of which of the following?
Respuesta
  • Vulnerability assessment
  • Fingerprinting
  • Penetration testing
  • Fuzzing

Pregunta 47

Pregunta
Configuration baselines should be taken at which of the following stages in the deployment of a new system?
Respuesta
  • Before initial configuration
  • Before loading the OS
  • After a user logs in
  • After initial configuration

Pregunta 48

Pregunta
Which of the following describes the difference between a secure cipher and a secure hash?
Respuesta
  • A hash produces a variable output for any input size, a cipher does not
  • A cipher produces the same size output for any input size, a hash does not
  • A cipher can be reversed, a hash cannot
  • A hash can be reversed, a cipher cannot

Pregunta 49

Pregunta
To evaluate the security compliance of a group of servers against best practices, which of the following BEST applies?
Respuesta
  • Get a patch management report
  • Conduct a penetration test
  • Run a vulnerability assessment tool
  • Install a protocol analyzer

Pregunta 50

Pregunta
Which of the following is a problem MOST often associated with UTP cable?
Respuesta
  • Fuzzing
  • Vampire tap
  • Crosstalk
  • Refraction
Mostrar resumen completo Ocultar resumen completo

¿Quieres crear tus propios Tests gratis con GoConqr? Más información.

Similar

Clasificación, estructura y replicación de las bacterias
ana.karen94
Las Matemáticas
María Salinas
LA PRIMERA GUERRA MUNDIALO LA GRAN GUERRA
Erika Urban
Vocabulario unidad 13
Laura Maestro
El sistema nervioso
crisferroeldeluna
Inglés - Repaso de Preposiciones
maya velasquez
El Cerebro Humano
Ximena Olivera
Etapas de la Historia de España
Alba B
Compás de 4/4
mariajesus camino
Recursos Didácticos
capomo.tutuli
Tics
Miguel Donaldo Montiel Corona
Explorar la Librería