Midterm review Chapters 1-5

Question

Which of the following is the best definition for war-driving?

Answer 1

Driving and seeking rival hackers

Answer 2

Driving while hacking and seeking a computer job

Answer 3

Driving looking for wireless networks to hack

Answer 4

Driving while using a wireless connection to hack

Answer 5

security information

Answer 6

private information

Answer 7

unauthorized access

Answer 8

sensitive information

Answer 9

High security, medium security, and low security

Answer 10

Perimeter, layered, and hybrid

Answer 11

Internal, external, and hybrid

Answer 12

Perimeter, complete, and none

Answer 13

war-dialing

Answer 14

denial of service

Answer 15

social engineering

Answer 16

Harvard University

Answer 17

Carnegie-Mellon University

Answer 18

authenticating

Answer 19

There is no difference

Answer 20

The sneaker tends to be less skilled

Answer 21

The sneaker tends to use more unconventional methods

Answer 22

The auditor tends to be less skilled

Answer 23

Any privacy law applicable to your organization

Answer 24

Any privacy law

Answer 25

Any federal privacy law

Answer 26

Any state privacy law

Answer 27

Proactive security

Answer 28

Perimeter security

Answer 29

Good security practices

Answer 30

Hybrid security

Answer 31

Any information that is worth more than $1,000

Answer 32

Any information that has monetary value and is protected by any privacy laws

Answer 33

Any information that, if accessed by unauthorized personnel, could damage your organization in any way

Answer 34

Military or defense related information

Answer 35

F-Secure Corporation

Answer 36

SANS Institute

Answer 37

Microsoft Security Advisor

Answer 38

Social engineering

Answer 39

Telco-hacking

Answer 40

Preventing or blocking access to a system

Answer 41

Gaining unauthorized access into a system

Answer 42

Malicious software

Answer 43

Disclosing contents of private networks

Answer 44

No, there is no reason not to take such an extreme view.

Answer 45

Yes, if you are going to err, assume there are few if any realistic threats.

Answer 46

Yes, that can lead to wasting resources on threats that are not likely.

Answer 47

Yes, that can require that you increase your security skills in order to implement more rigorous defenses.

Answer 48

Trojan horse

Answer 49

script kiddy

Answer 50

key logger

Answer 51

Installing a firewall

Answer 52

Controlling access to resources

Answer 53

Authenticating users

Answer 54

Using a virus scanner

Answer 55

Network interface card

Answer 56

Proxy server

Answer 57

authorization

Answer 58

authentication

Answer 59

Layered security approach

Answer 60

Passive security approach

Answer 61

Dynamic security approach

Answer 62

Hybrid security approach

Answer 63

gray hat hackers

Answer 64

black hat hackers

Answer 65

white hat hackers

Answer 66

red hat hackers

Answer 67

Connection points

Answer 68

Proxy servers

Answer 69

An amateur hacker

Answer 70

A person who hacks a system to test its vulnerabilities

Answer 71

A person who hacks a system by faking a legitimate password

Answer 72

An amateur who hacks a system without being caught

Answer 73

Online auction fraud

Answer 74

Denial of Service attacks

Answer 75

A computer virus or worm

Answer 76

Actually intruding on a system

Answer 77

Disclosing contents of private networks

Answer 78

Malicious software

Answer 79

Preventing or blocking access to a system

Answer 80

Gaining unauthorized access into a system

Answer 81

Any program that can change your Windows registry.

Answer 82

Any program that self replicates

Answer 83

Any program that causes harm to your system

Answer 84

Any program that is downloaded to your system without your permission

Answer 85

How much traffic the system gets, the security budget, and the skill level of the security team

Answer 86

The system’s attractiveness, the information contained on the system, and how much traffic the system gets

Answer 87

The skill level of the security team, the system’s attractiveness, and how much traffic the system gets

Answer 88

The system’s attractiveness, the information contained on the system, and the security budget

Answer 89

Using your business computer to conduct your own (non-company) business

Answer 90

Getting an occasional personal email

Answer 91

Looking up information on a competitor using the Web

Answer 92

Shopping on the web during lunch

Answer 93

Non-repudiation

Answer 94

Access Control Authorization

Answer 95

Perimeter security approach

Answer 96

Layered security approach

Answer 97

Hybrid aecurity approach

Answer 98

Dynamic security approach

Answer 99

Any software that monitors which Web sites you visit

Answer 100

Any software or hardware that monitors your system

Answer 101

Any software that logs keystrokes

Answer 102

Any software used to gather intelligence

Answer 103

It is another term for user authentication

Answer 104

Processes that verify which user performs what action

Answer 105

Security that does not allow the potential intruder to deny his attack

Answer 106

Access control

Answer 107

Prevent legitimate users from accessing a system

Answer 108

Breaking into a target system

Answer 109

Shut down security measures

Answer 110

Install a virus on the target machine

Answer 111

Social engineering

Answer 112

Layered and dynamic

Answer 113

Perimeter and static

Answer 114

Layered and static

Answer 115

Perimeter and dynamic

Answer 116

Prevent employees from downloading and installing any programs

Answer 117

Download and install Windows updates and patches monthly

Answer 118

Only open e-mail attachments from friends or co-workers

Answer 119

Only download jokes, animated Flash files, or utility programs from popular sites

Answer 120

Micro blocks

Answer 121

SYN cookies

Answer 122

RST cookies

Answer 123

Stack tweaking

Answer 124

A DoS attack against Microsoft.com

Answer 125

A DoS attack targeting Microsoft Windows IIS servers

Answer 126

An e-mail attack targeting Bill Gates

Answer 127

A DDoS attack targeting Santa Cruz Operations

Answer 128

Susceptibility to a buffer overflow is entirely contingent on software flaws.

Answer 129

A hacker does not need a good working knowledge of some programming language to create a buffer overflow.

Answer 130

A buffer overflow can load malicious data into memory and run it on a target machine.

Answer 131

A careful programmer will write applications so the buffer will truncate or reject data that exceeds the buffer length.

Answer 132

Server reflection

Answer 133

RST cookie

Answer 134

Stack tweaking

Answer 135

SYN cookie

Answer 136

Stopping all ICMP traffic

Answer 137

Using a robust firewall

Answer 138

Keeping all software patched and updated

Answer 139

Blocking TCP packets at the router

Answer 140

using a code word with friends to determine if attachments are legitimate

Answer 141

using a virus scanner

Answer 142

immediately following instructions in security alerts e-mailed to you from Microsoft

Answer 143

never opening attachments you are unsure of

Answer 144

Ping of Death

Answer 145

Smurf attack

Answer 146

Stack tweaking

Answer 147

Sending packets that are misconfigured

Answer 148

Sending a packet that appears to come from a trusted IP

Answer 149

Setting up a fake Web site that appears to be a different site

Answer 150

Rerouting packets to a different IP

Answer 151

Smurf attack

Answer 152

Tribal flood

Answer 153

ICMP flood

Answer 154

ICMP flood

Answer 155

Ping of death

Answer 156

Stack tweaking

Answer 157

Buffer overflow

Answer 158

IP spoofing

Answer 159

Session hacking

Answer 160

Denial of service

Answer 161

Routers that filter packets with source addresses in the local domain

Answer 162

Proxy firewalls where the proxy applications use the source IP address for authentication

Answer 163

Routers to external networks that support multiple internal interfaces

Answer 164

Routers with two interfaces that support subnetting on the internal network

Answer 165

It only decreases time out but does not actually stop DoS attacks

Answer 166

It is complicated and requires very skilled technicians to implement

Answer 167

It is resource intensive and can degrade server performance.

Answer 168

It is ineffective against DoS attacks

Answer 169

W32.Storm.Worm

Answer 170

Smurf attack

Answer 171

Distributed Denial of Service

Answer 172

Ping of Death

Answer 173

Stack tweaking

Answer 174

A firewall

Answer 175

SYN cookies

Answer 176

RST cookies

Answer 177

It deleted system files

Answer 178

It corrupted the Windows registry

Answer 179

It was difficult to detect

Answer 180

It shut down antivirus software

Answer 181

Replaces cookies left by virus/worm programs.

Answer 182

Causes server to send wrong SYNACK to the client.

Answer 183

Prevents memory allocation until third part of SYN ACK handshaking.

Answer 184

Enables encryption of outbound packets.

Answer 185

The attack does not cause actual damage

Answer 186

The attack must be sustained.

Answer 187

The attack is difficult to execute

Answer 188

The attack is easily thwarted

Answer 189

Trojan horses

Answer 190

ICMP flood

Answer 191

Tribal Flood Network

Answer 192

Distributed Reflection Denial of Service

Answer 193

Tribal flood

Answer 194

Smurf attack

Answer 195

ICMP flood

Answer 196

Smurf Attack

Answer 197

Ping of Death

Answer 198

Distributed Denial of Service

Answer 199

Installing a router/firewall that blocks packets that appear to be originating within the network

Answer 200

Blocking all incoming TCP traffic

Answer 201

Blocking all incoming ICMP traffic

Answer 202

Installing a router/firewall that blocks packets that appear to be originating from outside the network

Answer 203

Taking over a target machine via a Trojan horse

Answer 204

Taking control of the login session

Answer 205

Taking control of a target machine remotely

Answer 206

Taking control of the communication link between two machines

Answer 207

Block TCP packets that originate outside your network

Answer 208

Block all incoming packets

Answer 209

Block ICMP packets that originate outside your network

Answer 210

Block all ICMP packets

Answer 211

An attack that attempts to put misconfigured data into a memory buffer

Answer 212

An attack that attempts to send oversized TCP packets

Answer 213

An attack that attempts to put too much data in a memory buffer

Answer 214

An attack that overflows the target with too many TCP packets

Answer 215

Software that deletes system files then infects other machines

Answer 216

Software that self replicates

Answer 217

Software that causes harm to your system

Answer 218

Software that appears to be benign but really has some malicious purpose

Answer 219

ICMP flood

Answer 220

Tribal flood

Answer 221

Many of these attacks open the door for other attacks

Answer 222

Many firewalls don’t examine packets that seem to come from within the network.

Answer 223

They can be difficult to stop

Answer 224

They are very damaging to target systems

Answer 225

Increased network traffic

Answer 226

Changing system settings

Answer 227

Increased network functionality and responsiveness

Answer 228

Deletion of files

Answer 229

Packet filtering/application gateway hybrid

Answer 230

SPI/application gateway hybrid

Answer 231

Circuit level gateway

Answer 232

Application gateway

Answer 233

Switch based

Answer 234

Host based

Answer 235

Network based

Answer 236

Router based

Answer 237

Check Point

Answer 238

She should not because it would prevent her from using Web Pages

Answer 239

She should not because that will prevent her from getting updates and patches

Answer 240

She should unless she is running a Web server on her machine.

Answer 241

She should because port 80 is a common attack point for hackers

Answer 242

It requires user authentication

Answer 243

It examines each packet in the context of previous packets

Answer 244

It automatically blocks large traffic from a single IP

Answer 245

It examines the destination IP of all packets

Answer 246

Client-based

Answer 247

Router-based

Answer 248

Host-based

Answer 249

Client-based

Answer 250

Router-based

Answer 251

Host-based

Answer 252

Diverse user groups

Answer 253

Web vulnerabilities

Answer 254

Multiple operating systems

Answer 255

Users running different applications

Answer 256

Anomaly detection

Answer 257

Intrusion deterrence

Answer 258

Intrusion deflection

Answer 259

Anomaly deterrence

Answer 260

Physically inspect the firewall

Answer 261

Review firewall logs

Answer 262

Reboot the firewall

Answer 263

Test the firewall by attempting a ping flood

Answer 264

router-based

Answer 265

dual-homed host

Answer 266

network host-based

Answer 267

screened host

Answer 268

Skilled technical personnel available

Answer 269

Multiple operating systems to deal with

Answer 270

IDS systems not needed

Answer 271

Lower security needs

Answer 272

They work on Linux, Unix, Solaris, and Windows platforms.

Answer 273

They are relatively inexpensive.

Answer 274

All models contain built-in encryption.

Answer 275

They include built-in proxy server capabilities.

Answer 276

Heuristic mode

Answer 277

Network intrusion-detection mode

Answer 278

Packet logger mode

Answer 279

Packet sniffer mode

Answer 280

LESS susceptible to ping and SYN floods but MORE susceptible to IP spoofing

Answer 281

LESS susceptible to ping and SYN floods and LESS susceptible to IP spoofing.

Answer 282

MORE susceptible to ping and SYN floods and MORE susceptible to IP spoofing

Answer 283

MORE susceptible to ping and SYN floods and LESS susceptible to IP spoofing

Answer 284

Screening, bastion, dual-homed, circuit level

Answer 285

Packet filtering, application gateway, circuit level, stateful packet inspection

Answer 286

Stateful packet inspection, gateway, bastion, screening

Answer 287

Application gateway, bastion, dual-homed, screening

Answer 288

internal corporate network

Answer 289

demilitarized zone

Answer 290

corporate intranet

Answer 291

external network

Answer 292

Built-in encryption

Answer 293

Built-in virus scanning

Answer 294

Content filtering

Answer 295

It should be blocked because such traffic is often used to transmit a virus

Answer 296

It should be blocked because such traffic is often used to do port scans and flood attacks

Answer 297

It should not be blocked because it is necessary for network operations

Answer 298

It should not be blocked because it is necessary for using the Web

Answer 299

It does not require user authentication

Answer 300

It allows multiple simultaneous connections

Answer 301

It does not properly filter packets

Answer 302

Its authentication method takes more time and resources

Answer 303

Banishment vigilance

Answer 304

Intruder blocking

Answer 305

Intrusion deflection

Answer 306

User deflection

Answer 307

Bastion host

Answer 308

Screened host

Answer 309

Dual-homed host

Answer 310

anomaly detection

Answer 311

intrusion deterrence

Answer 312

preemptive blocking

Answer 313

intrusion deflection

Answer 314

Proxy server

Answer 315

Antivirus software

Answer 316

McAfee Personal Firewall

Answer 317

Symantec Norton Firewall

Answer 318

It has a logging feature enabled by default.

Answer 319

It works best in conjunction with a perimeter firewall.

Answer 320

It blocks incoming and outgoing packets.

Answer 321

It is a screened host firewall.

Answer 322

Executable profiling

Answer 323

Threshold monitoring

Answer 324

Resource profiling

Answer 325

System monitoring

Answer 326

Banishment vigilance

Answer 327

Intrusion deterrence

Answer 328

Infiltration

Answer 329

Anomaly detection

Answer 330

Stateful packet inspection

Answer 331

User authentication

Answer 332

Packet filter

Answer 333

Application proxy

Answer 334

Users running different applications

Answer 335

Multiple operating systems

Answer 336

Diverse user groups

Answer 337

Web vulnerabilities

Answer 338

Stateful packet inspection

Answer 339

Dual-homed

Answer 340

Application gateway

Answer 341

Screened gateway

Answer 342

Network intrusion-detection

Answer 343

Packet logger

Answer 344

Packet filtering

Answer 345

A visual tool to trace attacks

Answer 346

Strong encryption

Answer 347

Vulnerability scanning

Answer 348

Watchguard Technologies

Answer 349

Amrita Labs

Answer 350

Application gateway, bastion, dual-homed, screening

Answer 351

Packet filtering, application gateway, circuit level, stateful packet inspection

Answer 352

Stateful packet inspection, gateway, bastion, screening

Answer 353

Screening, bastion, dual-homed, circuit level

Answer 354

Circuit level gateway

Answer 355

Dual-homed

Answer 356

Application gateway

Answer 357

Circuit level gateway

Answer 358

Application gateway

Answer 359

Packet filter

Answer 360

Stateful packet inspection

Answer 361

bastion host

Answer 362

demilitarized zone

Answer 363

router-based

Answer 364

dual-homed host

Answer 365

Packet filtering

Answer 366

Software-based

Answer 367

Ease of use

Answer 368

Built-in NAT

Answer 369

Reboot the firewall

Answer 370

Physically inspect the firewall

Answer 371

Review firewall logs

Answer 372

Test the firewall by attempting a ping flood

Answer 373

screened host firewall

Answer 374

single machine firewall

Answer 375

simple hardware firewall

Answer 376

combination hardware/software firewall

Answer 377

Application gateway

Answer 378

Circuit-level gateway

Answer 379

Packet screening

Answer 380

Stateful Packet Inspection

Answer 381

It is resistant to IP spoofing

Answer 382

It has user authentication

Answer 383

It is inexpensive or free

Answer 384

It is more secure

Answer 385

Very low cost

Answer 386

Built-in virus scanning on all products

Answer 387

Built-in IDS on all products

Answer 388

Extensive training available on the product

Answer 389

the internal client and the external server

Answer 390

the external server and the proxy server

Answer 391

the external server and the firewall

Answer 392

the internal client and the proxy server

Answer 393

Physical layer

Answer 394

Transport layer

Answer 395

Network layer

Answer 396

Data link layer

Answer 397

Inspect all inbound and outbound port activity

Answer 398

Notify the system administrator of suspicious activity

Answer 399

Infiltrate the illicit system to acquire information

Answer 400

Look for patterns in port activity

Answer 401

Real resources with fake names

Answer 402

Fake resources with legitimate-sounding names

Answer 403

Blocking of legitimate users by mistake

Answer 404

Profiling of users, resources, groups, or applications

Answer 405

Hacker cage

Answer 406

Dual-homed host

Answer 407

Bastion firewall

Answer 408

Proxy server

Answer 409

A screened host

Answer 410

Low budgets

Answer 411

Diverse user group

Answer 412

Need to connect multiple LANs into a single WAN

Answer 413

Lack of skilled technical personnel

Answer 414

multi-homed

Answer 415

dual-homed

Answer 416

open source

Answer 417

Packets are continually checked during the connection

Answer 418

Vulnerability to flooding attacks with an application gateway cannot be mitigated

Answer 419

Authenticating users

Answer 420

External systems never see the gateway

Answer 421

screened host

Answer 422

bastion host

Answer 423

proxy server

Answer 424

scanning of the system for vulnerabilities prior to an attack

Answer 425

Trojan horse/virus infection sending information back home

Answer 426

a Distributed Denial of Service attack in progress

Answer 427

the system has been infiltrated by an outsider

Answer 428

It requires user authentication

Answer 429

It requires client application authentication

Answer 430

It automatically blocks spoofed packets

Answer 431

It examines the source IP of all packets

Answer 432

Windows XP Internet Connection Firewall

Answer 433

Windows 2000 Internet Connection Firewall

Answer 434

Windows 2000 Internet Control Firewall

Answer 435

Windows XP Internet Control Firewall

Answer 436

Check Point

Answer 437

It can be time consuming

Answer 438

It requires knowledge of the target group

Answer 439

It can be expensive

Answer 440

The group may retaliate

Answer 441

A packet sniffer

Answer 442

A port scan

Answer 443

A DoS attack

Answer 444

A ping flood

Answer 445

user/group profiling.

Answer 446

resource profiling.

Answer 447

executable profiling.

Answer 448

threshold monitoring.

Answer 449

Installing honey pots to pose as important system

Answer 450

Monitoring connection attempts to identify IP addresses of attackers

Answer 451

Using fake names to camouflage important systems

Answer 452

Infiltrating online hacker groups

Answer 453

Threshold monitoring

Answer 454

Application profiling

Answer 455

Resource profiling

Answer 456

Infiltration profiling

Answer 457

SYN flood attacks

Answer 458

IP spoofing

Answer 459

Operating System Security flaws

Answer 460

Ping flood attacks

Answer 461

Circuit level gateway

Answer 462

Application gateway

Answer 463

Packet filter

Answer 464

Stateful packet inspection

Answer 465

fake targets

Answer 466

blocking software

Answer 467

warnings to intruders to leave

Answer 468

innocuous names for sensitive targets

Answer 469

Strong encryption

Answer 470

Vulnerability scanning

Answer 471

A visual tool to trace attacks

Answer 472

Unbiased information may be hard to find.

Answer 473

It is difficult to find information on the Web.

Answer 474

Information often emphasizes price rather than features.

Answer 475

Documentation is often incomplete

Answer 476

Router-based firewalls

Answer 477

Stateful packet inspection firewalls

Answer 478

Dual-homed firewalls

Answer 479

Network host-based firewalls

Answer 480

Negotiation

Answer 481

Connecting

Answer 482

Circuit level gateway

Answer 483

Stateful packet inspection

Answer 484

Application gateway

Answer 485

Packet filter

Answer 486

Threshold monitoring

Answer 487

Infiltration monitoring

Answer 488

Application monitoring

Answer 489

Resource profiling

Answer 490

It misses many attacks

Answer 491

It is resource intensive

Answer 492

It yields many false positives

Answer 493

It is difficult to configure

Answer 494

To scare off at least novice hackers

Answer 495

To keep your normal users honest

Answer 496

To deter highly skilled hackers

Answer 497

To track hackers back to their source IPs

Answer 498

It is particularly vulnerable to SYN floods.

Answer 499

It is a packet filtering, application gateway hybrid.

Answer 500

It uses Stateful Packet Inspection.

Answer 501

It automatically blocks and logs oversized packets.

Answer 502

Intrusion deterrence service

Answer 503

Intrusion-detection service

Answer 504

Intrusion deterrence system

Answer 505

Intrusion-detection system

Answer 506

It hides internal network addresses

Answer 507

By default it blocks all ICMP packets

Answer 508

It blocks incoming ICMP packets

Answer 509

By default it only allows outbound connections

Answer 510

It includes built-in VPN capabilities.

Answer 511

It works on Linux, Unix, Solaris, and Windows platforms.

Answer 512

Encryption can be added with a free Web download.

Answer 513

It is expensive.

Answer 514

Username, password, protocol type, destination IP

Answer 515

Source IP, destination IP, username, password

Answer 516

Protocol type, source port, destination port, source IP

Answer 517

Protocol version, destination IP, source port, username

Answer 518

Resource profiling

Answer 519

Executable profiling

Answer 520

System monitoring

Answer 521

Threshold monitoring

Answer 522

foot printing

Answer 523

infiltration

Answer 524

deflecting

Answer 525

Data recovery

Answer 526

Popup ad blocking

Answer 527

Blocking of outgoing traffic

Answer 528

Privacy protection

Answer 529

anomaly detection

Answer 530

intrusion deflection

Answer 531

intrusion deterrence

Answer 532

preemptive blocking

Answer 533

PGP and AES

Answer 534

WEP and DES

Answer 535

WEP and PGP

Answer 536

AES and DES

Answer 537

Blocking incoming traffic on selected ports

Answer 538

Online scanning of system for vulnerabilities

Answer 539

Performing traceroute to show the source of incoming packets

Answer 540

Recording a log of all attempts at incoming packets

Answer 541

It will be difficult to determine the system is a honey pot

Answer 542

It will deter novice hackers

Answer 543

It may fascinate hackers and keep them online long enough to catch them

Answer 544

It may confuse hackers and deter them from your systems

Answer 545

dual-homed host

Answer 546

screened host

Answer 547

router-based

Answer 548

network host-based

Answer 549

Its authentication method takes more time and resources

Answer 550

It does not properly filter packets

Answer 551

It allows multiple simultaneous connections

Answer 552

It does not require user authentication

Answer 553

Threshold monitoring

Answer 554

User/group work profiling

Answer 555

Executable profiling

Answer 556

Resource profiling

Answer 557

It blocks web traffic

Answer 558

It is simply too expensive

Answer 559

It has no user authentication

Answer 560

It requires client side configuration

Answer 561

They are likely to be supported by multiple network administrators.

Answer 562

They are usually made up of several interconnected networks.

Answer 563

They are usually easier to manage and secure.

Answer 564

They are likely to contain several different operating systems.

Answer 565

Intrusion deterrence

Answer 566

System deterrence

Answer 567

System camouflage

Answer 568

Intrusion deflection

Answer 569

Vulnerability scanning

Answer 570

Liberal licensing policy

Answer 571

WEP encryption

Answer 572

Built-in IDS

Answer 573

Check Point Firewall-1

Answer 574

Cisco PIX 515E

Answer 575

Fortigate 3600

Answer 576

Windows XP Internet Connection Firewall

Answer 577

It automatically blocks large traffic from a single IP

Answer 578

It requires user authentication

Answer 579

It examines each packet in the context of previous packets

Answer 580

It examines the destination IP of all packets

Answer 581

Application monitoring

Answer 582

Resource profiling

Answer 583

System monitoring

Answer 584

Executable profiling

Answer 585

simulate incoming mail server functions

Answer 586

record all traffic related to an intrusion attack

Answer 587

simulate outgoing mail server functions

Answer 588

track attacking packets to their source

Answer 589

Intrusion routin

Answer 590

Intrusion deterrence

Answer 591

Intrusion banishment

Answer 592

Intrusion deflection

Answer 593

Circuit-level gateway

Answer 594

Stateful packet inspection

Answer 595

Dual-homed

Answer 596

Packet screening

Answer 597

Network intrusion-detection mode

Answer 598

Packet logger mode

Answer 599

Sniffer mode

Answer 600

Command mode

Answer 601

screened host

Answer 602

network host-based

Answer 603

router-based

Answer 604

dual-homed host

Answer 605

Dual-homed firewalls

Answer 606

Router-based firewalls

Answer 607

Screened firewalls

Answer 608

Bastion host firewalls

Answer 609

Intruders will tend to go for easy targets with valuable data

Answer 610

Any traffic to the honey pot is suspicious

Answer 611

Security must allow attackers inside

Answer 612

Only legitimate users have a reason to connect to it

Answer 613

demilitarized zone

Answer 614

internal corporate network

Answer 615

corporate Intranet

Answer 616

external network

	Created by Mary Sunseri about 6 years ago

Next up

Midterm review Chapters 1-5

Description

Resource summary

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

Question 25

Question 26

Question 27

Question 28

Question 29

Question 30

Question 31

Question 32

Question 33

Question 34

Question 35

Question 36

Question 37

Question 38

Question 39

Question 40

Question 41

Question 42

Question 43

Question 44

Question 45

Question 46

Question 47

Question 48

Question 49

Question 50

Question 51

Question 52

Question 53

Question 54

Question 55

Question 56

Question 57

Question 58

Question 59

Question 60

Question 61

Question 62

Question 63

Question 64

Question 65

Question 66

Question 67

Question 68

Question 69

Question 70

Question 71

Question 72

Question 73

Question 74

Question 75

Question 76