22722046
Description
Quiz by Requiemdust Sheena, updated more than 1 year ago
|
Created by Requiemdust Sheena
almost 4 years ago
|
|
Question 1
Question
What important factor differentiates Frame Relay from X.25?
Answer
-
A. Frame Relay supports multiple PVCs over a single WAN carrier connection.
-
B. Frame Relay is a cell-switching technology instead of a packetswitching technology like X.25.
-
C. Frame Relay does not provide a committed information rate (CIR).
-
D. Frame Relay only requires a DTE on the provider side.
Question 2
Question
During a security assessment of a wireless network, Jim discovers that
LEAP is in use on a network using WPA. What recommendation
should Jim make?
Answer
-
A. Continue to use LEAP. It provides better security than TKIP for WPA networks.
-
B. Use an alternate protocol like PEAP or EAP-TLS and implement WPA2 if supported.
-
C. Continue to use LEAP to avoid authentication issues, but move to WPA2.
-
D. Use an alternate protocol like PEAP or EAP-TLS, and implement Wired Equivalent Privacy to avoid wireless security issues.
Question 3
Question
Ben has connected his laptop to his tablet PC using an 802.11g
connection. What wireless network mode has he used to connect these
devices?
Answer
-
A. Infrastructure mode
-
B. Wired extension mode
-
C. Ad hoc mode
-
D. Stand-alone mode
Question 4
Question
Lauren’s and Nick’s PCs simultaneously send traffic by transmitting at
the same time. What network term describes the range of systems on a
network that could be affected by this same issue?
Answer
-
A. The subnet
-
B. The supernet
-
C. A collision domain
-
D. A broadcast domain
Question 5
Question
Sarah is manually reviewing a packet capture of TCP traffic and finds
that a system is setting the RST flag in the TCP packets it sends
repeatedly during a short period of time. What does this flag mean in
the TCP packet header?
Answer
-
A. RST flags mean “Rest.” The server needs traffic to briefly pause.
-
B. RST flags mean “Relay-set.” The packets will be forwarded to the address set in the packet.
-
C. RST flags mean “Resume Standard.” Communications will resume in their normal format.
-
D. RST means “Reset.” The TCP session will be disconnected.
Question 6
Question
Gary is deploying a wireless network and wants to deploy the fastest
possible wireless technology. Due to technical constraints, he is
limited to using a 2.4 GHz option. Which one of the following wireless
networking standards should he use?
Answer
-
A. 802.11a
-
B. 802.11g
-
C. 802.11n
-
D. 802.11ac
Question 7
Question
Chris is configuring an IDS to monitor for unencrypted FTP traffic.
What ports should Chris use in his configuration?
Answer
-
A. TCP 20 and 21
-
B. TCP 21 only
-
C. UDP port 69
-
D. TCP port 21 and UDP port 21
Question 8
Question
Which OSI layer includes electrical specifications, protocols, and
interface standards?
Answer
-
A. The Transport layer
-
B. The Device layer
-
C. The Physical layer
-
D. The Data Link layer
Question 9
Question
FHSS, DSSS, and OFDM all use what wireless communication method
that occurs over multiple frequencies simultaneously?
Answer
-
A. WiFi
-
B. Spread Spectrum
-
C. Multiplexing
-
D. Orthogonal modulation
Question 10
Question
Brian is selecting an authentication protocol for a PPP connection. He
would like to select an option that encrypts both usernames and
passwords and protects against replay using a challenge/response
dialog. He would also like to reauthenticate remote systems
periodically. Which protocol should he use?
Answer
-
A. PAP
-
B. CHAP
-
C. EAP
-
D. LEAP
Question 11
Question
Which one of the following protocols is commonly used to provide
backend authentication services for a VPN?
Answer
-
A. HTTPS
-
B. RADIUS
-
C. ESP
-
D. AH
Question 12
Answer
-
A. A ring
-
B. A bus
-
C. A star
-
D. A mesh
Question 13
Answer
-
A. A single-tier firewall
-
B. A two-tier firewall
-
C. A three-tier firewall
-
D. A four-tier firewall
Question 14
Question
If the VPN grants remote users the same access to network and system
resources as local workstations have, what security issue should Chris
raise?
Image:
17 (binary/octet-stream)
Answer
-
A. VPN users will not be able to access the web server.
-
B. There is no additional security issue; the VPN concentrator’s logical network location matches the logical network location of the workstations.
-
C. Web server traffic is not subjected to stateful inspection.
-
D. VPN users should only connect from managed PCs.
Question 15
Question
If Chris wants to stop cross-site scripting attacks against the web
server, what is the best device for this purpose, and where should he
put it?
Image:
17 (binary/octet-stream)
Answer
-
A. A firewall, location A
-
B. An IDS, location A
-
C. An IPS, location B
-
D. A WAF, location C
Question 16
Question
Susan is deploying a routing protocol that maintains a list of
destination networks with metrics that include the distance in hops to
them and the direction traffic should be sent to them. What type of
protocol is she using?
Answer
-
A. A link-state protocol
-
B. A link-distance protocol
-
C. A destination metric protocol
-
D. A distance-vector protocol
Question 17
Question
Ben has configured his network to not broadcast an SSID. Why might
Ben disable SSID broadcast, and how could his SSID be discovered?
Answer
-
A. Disabling SSID broadcast prevents attackers from discovering the encryption key. The SSID can be recovered from decrypted packets.
-
B. Disabling SSID broadcast hides networks from unauthorized personnel. The SSID can be discovered using a wireless sniffer.
-
C. Disabling SSID broadcast prevents issues with beacon frames. The SSID can be recovered by reconstructing the BSSID.
-
D. Disabling SSID broadcast helps avoid SSID conflicts. The SSID can be discovered by attempting to connect to the network.
Question 18
Question
What network tool can be used to protect the identity of clients while
providing Internet access by accepting client requests, altering the
source addresses of the requests, mapping requests to clients, and
sending the modified requests out to their destination?
Answer
-
A. A gateway
-
B. A proxy
-
C. A router
-
D. A firewall
Question 19
Question
During troubleshooting, Chris uses the nslookup command to check
the IP address of a host he is attempting to connect to. The IP he sees
in the response is not the IP that should resolve when the lookup is
done. What type of attack has likely been conducted?
Answer
-
A. DNS spoofing
-
B. DNS poisoning
-
C. ARP spoofing
-
D. A Cain attack
Question 20
Question
A remote access tool that copies what is displayed on a desktop PC to a
remote computer is an example of what type of technology?
Answer
-
A. Remote node operation
-
B. Screen scraping
-
C. Remote control
-
D. RDP
Question 21
Question
Which email security solution provides two major usage modes: (1)
signed messages that provide integrity, sender authentication, and
nonrepudiation; and (2) an enveloped message mode that provides
integrity, sender authentication, and confidentiality?
Answer
-
A. S/MIME
-
B. MOSS
-
C. PEM
-
D. DKIM
Question 22
Question
During a security assessment, Jim discovers that the organization he is
working with uses a multilayer protocol to handle SCADA systems and
recently connected the SCADA network to the rest of the
organization’s production network. What concern should he raise
about serial data transfers carried via TCP/IP?
Answer
-
A. SCADA devices that are now connected to the network can now be attacked over the network.
-
B. Serial data over TCP/IP cannot be encrypted.
-
C. Serial data cannot be carried in TCP packets.
-
D. TCP/IP’s throughput can allow for easy denial of service attacks against serial devices.
Question 23
Question
What type of key does WEP use to encrypt wireless communications?
Answer
-
A. An asymmetric key
-
B. Unique key sets for each host
-
C. A predefined shared static key
-
D. Unique asymmetric keys for each host
Question 24
Question
Arnold is receiving reports from end users that their internet
connections are extremely slow. He looks at the firewall and
determines that there are thousands of unexpected inbound
connections per second arriving from all over the world. What type of
attack is most likely occurring?
Answer
-
A. A worm
-
B. A denial of service attack
-
C. A virus
-
D. A smurf attack
Question 25
Question
What speed and frequency range is used by 802.11n?
Answer
-
A. 54 Mbps, 5 GHz
-
B. 200+ Mbps, 5GHz
-
C. 200+ Mbps, 2.4 and 5 GHz
-
D. 1 Gbps, 5 GHz
Question 26
Question
The Address Resolution Protocol (ARP) and the Reverse Address
Resolution Protocol (RARP) operate at what layer of the OSI model?
Answer
-
A. Layer 1
-
B. Layer 2
-
C. Layer 3
-
D. Layer 4
Question 27
Question
Which of the following is a converged protocol that allows storage
mounts over TCP, and which is frequently used as a lower-cost
alternative to Fibre Channel?
Answer
-
A. MPLS
-
B. SDN
-
C. VoIP
-
D. iSCSI
Question 28
Question
Chris is building an Ethernet network and knows that he needs to span
a distance of more than 150 meters with his 1000BaseT network. What
network technology should he use to help with this?
Answer
-
A. Install a repeater or a concentrator before 100 meters.
-
B. Use Category 7 cable, which has better shielding for higher speeds.
-
C. Install a gateway to handle the distance.
-
D. Use STP cable to handle the longer distance at high speeds.
Question 29
Question
What protocol is the messaging traffic most likely to use based on the
diagram?
Image:
30 (binary/octet-stream)
Answer
-
A. SLACK
-
B. HTTP
-
C. SMTP
-
D. HTTPS
Question 30
Question
What security concern does sending internal communications from A
to B raise?
Image:
30 (binary/octet-stream)
Answer
-
A. The firewall does not protect system B.
-
B. System C can see the broadcast traffic from system A to B.
-
C. It is traveling via an unencrypted protocol.
-
D. Messaging does not provide nonrepudation.
Question 31
Question
How could Lauren’s company best address a desire for secure
messaging for users of internal systems A and C?
Image:
30 (binary/octet-stream)
Answer
-
A. Use a third-party messaging service.
-
B. Implement and use a locally hosted service.
-
C. Use HTTPS.
-
D. Discontinue use of messaging and instead use email, which is more secure.
Question 32
Question
Which of the following drawbacks is a concern when multilayer
protocols are allowed?
Answer
-
A. A range of protocols may be used at higher layers.
-
B. Covert channels are allowed.
-
C. Filters cannot be bypassed.
-
D. Encryption can’t be incorporated at multiple layers.
Question 33
Answer
-
A. A ring
-
B. A star
-
C. A bus
-
D. A mesh
Question 34
Question
Chris uses a cellular hot spot (modem) to provide internet access when
he is traveling. If he leaves the hot spot connected to his PC while his
PC is on his organization’s corporate network, what security issue
might he cause?
Answer
-
A. Traffic may not be routed properly, exposing sensitive data.
-
B. His system may act as a bridge from the internet to the local network.
-
C. His system may be a portal for a reflected DDoS attack.
-
D. Security administrators may not be able to determine his IP address if a security issue occurs.
Question 35
Question
In her role as an information security professional, Susan has been
asked to identify areas where her organization’s wireless network may
be accessible even though it isn’t intended to be. What should Susan
do to determine where her organization’s wireless network is
accessible?
Answer
-
A. A site survey
-
B. Warwalking
-
C. Wardriving
-
D. A design map
Question 36
Question
The DARPA TCP/IP model’s Application layer matches up to what
three OSI model layers?
Answer
-
A. Application, Presentation, and Transport.
-
B. Presentation, Session, and Transport.
-
C. Application, Presentation, and Session.
-
D. There is not a direct match. The TCP model was created before the OSI model.
Question 37
Question
One of Susan’s attacks during a penetration test involves inserting
false ARP data into a system’s ARP cache. When the system attempts
to send traffic to the address it believes belongs to a legitimate system,
it will instead send that traffic to a system she controls. What is this
attack called?
Answer
-
A. RARP flooding
-
B. ARP cache poisoning
-
C. A denial of ARP attack
-
D. ARP buffer blasting
Question 38
Question
Sue modifies her MAC address to one that is allowed on a network that
uses MAC filtering to provide security. What is the technique Sue
used, and what nonsecurity issue could her actions cause?
Answer
-
A. Broadcast domain exploit, address conflict
-
B. Spoofing, token loss
-
C. Spoofing, address conflict
-
D. Sham EUI creation, token loss
Question 39
Question
Jim’s audit of a large organization’s traditional PBX showed that
Direct Inward System Access (DISA) was being abused by third
parties. What issue is most likely to lead to this problem?
Answer
-
A. The PBX was not fully patched.
-
B. The dial-in modem lines use unpublished numbers.
-
C. DISA is set up to only allow local calls.
-
D. One or more users’ access codes have been compromised.
Question 40
Question
SMTP, HTTP, and SNMP all occur at what layer of the OSI model?
Answer
-
A. Layer 4
-
B. Layer 5
-
C. Layer 6
-
D. Layer 7
Question 41
Question
Lauren uses the ping utility to check whether a remote system is up as
part of a penetration testing exercise. If she does not want to see her
own ping packets, what protocol should she filter out from her packet
sniffer’s logs?
Answer
-
A. UDP
-
B. TCP
-
C. IP
-
D. ICMP
Question 42
Question
Lauren wants to provide port-based authentication on her network to
ensure that clients must authenticate before using the network. What
technology is an appropriate solution for this requirement?
Answer
-
A. 802.11a
-
B. 802.3
-
C. 802.15.1
-
D. 802.1x
Question 43
Question
Ben has deployed a 1000BaseT 1 gigabit network and needs to run a
cable to another building. If Ben is running his link directly from a
switch to another switch in that building, what is the maximum
distance Ben can cover according to the 1000BaseT specification?
Answer
-
A. 2 kilometers
-
B. 500 meters
-
C. 185 meters
-
D. 100 meters
Question 44
Question
Jim is building the network for a remote site that only has ISDN as an
option for connectivity. What type of ISDN should he look for to get
the maximum speed possible?
Answer
-
A. BRI
-
B. BPRI
-
C. PRI
-
D. D channel
Question 45
Question
SPIT attacks target what technology?
Answer
-
A. Virtualization platforms
-
B. Web services
-
C. VoIP systems
-
D. Secure Process Internal Transfers
Question 46
Question
What does a bluesnarfing attack target?
Answer
-
A. Data on IBM systems
-
B. An outbound phone call via Bluetooth
-
C. 802.11b networks
-
D. Data from a Bluetooth-enabled device
Question 47
Question
Which of the following options includes standards or protocols that
exist in layer 6 of the OSI model?
Answer
-
A. NFS, SQL, and RPC
-
B. TCP, UDP, and TLS
-
C. JPEG, ASCII, and MIDI
-
D. HTTP, FTP, and SMTP
Question 48
Answer
-
A. A ring
-
B. A bus
-
C. A star
-
D. A mesh
Question 49
Question
There are four common VPN protocols. Which group listed contains
all of the common VPN protocols?
Answer
-
A. PPTP, LTP, L2TP, IPsec
-
B. PPP, L2TP, IPsec, VNC
-
C. PPTP, L2F, L2TP, IPsec
-
D. PPTP, L2TP, IPsec, SPAP
Question 50
Question
What network technology is best described as a token-passing network
that uses a pair of rings with traffic flowing in opposite directions?
Answer
-
A. A ring topology
-
B. Token Ring
-
C. FDDI
-
D. SONET
Want to create your own Quizzes for free with GoConqr? Learn more.