CET_TARDE - Security Fundamentals 2017 - Part 2

Question

A flood of packets with invalid source-IP addresses requests a connection on the network. The server busily tries to respond, resulting in valid requests being ignored. What type of attack occurred?

Answer 1

Trojan horse

Answer 2

Brute force

Answer 3

Ping of death

Answer 4

SYN flooding

Answer 5

large corporate environment

Answer 6

A home environment with 10 or fewer hosts

Answer 7

A home environment that needs VPN access

Answer 8

A smaller, less congested business environment

Answer 9

Trojan horse

Answer 10

Denial of service

Answer 11

Anti-spam software can be loaded on either the end-user PC or the ISP server, but not both.

Answer 12

When anti-spam software is loaded, legitimate e-mail may be classified as spam by mistake.

Answer 13

Installing anti-spam software should be a low priority on the network.

Answer 14

Even with anti-spam software installed, users should be careful when opening e-mail attachments.

Answer 15

Virus warning e-mails that are not identified as spam via antispam software should be forwarded to other users immediately.

Answer 16

Tracking cookies

Answer 17

Dentification and authentication

Answer 18

Remote access

Answer 19

Acceptable use

Answer 20

Incident handling

Answer 21

A network other than the wired network

Answer 22

Pretexting

Answer 23

Junk mailing

Answer 24

Brute force

Answer 25

Tracking cookies

Answer 26

Through another person

Answer 27

Malicious software that copies itself into other executable programs

Answer 28

Tricks users into running the infected software

Answer 29

A set of computer instructions that lies dormant until triggered by a specific event

Answer 30

Exploits vulnerabilities with the intent of propagating itself across a network

Answer 31

Server-based

Answer 32

Integrated

Answer 33

Appliance-based

Answer 34

Activation of a popup stopper

Answer 35

A change of the default IP address

Answer 36

An update in the antivirus software definitions

Answer 37

Physically securing the cable between the access point and client

Answer 38

Only external traffic that is destined for specific internal ports is permitted. All other traffic is denied.

Answer 39

Only external traffic that is destined for specific internal ports is denied. All other traffic is permitted.

Answer 40

Only internal traffic that is destined for specific external ports is permitted. All other traffic is denied.

Answer 41

Only internal traffic that is destined for specific external ports is denied. All other traffic is permitted.

Answer 42

A DMZ is not supported.

Answer 43

The router is an example of a server-based firewall.

Answer 44

The router is an example of an application-based firewall.

Answer 45

Internet access can be denied for specific days and times.

Answer 46

It provides various views of possible attack paths.

Answer 47

It identifies missing security updates on a computer.

Answer 48

It identifies wireless weak points such as rogue access points.

Answer 49

It identifies all network devices on the network that do not have a firewall installed.

Answer 50

It identifies MAC and IP addresses that have not been authenticated on the network.

Answer 51

Only e-mail programs need to be protected.

Answer 52

Only hard drives can be protected.

Answer 53

Only after a virus is known can an anti-virus update be created for it.

Answer 54

Only computers with a direct Internet connection need it.

Answer 55

Periodically update anti-virus software.

Answer 56

Be aware of normal network traffic patterns.

Answer 57

Periodically update the host operating system.

Answer 58

Activate the firewall on a Linksys integrated router.

Answer 59

Configure login permissions on the integrated router.

Answer 60

Disable the wireless network when a vulnerability analysis is being performed.

Answer 61

It prevents packets based on the application that makes the request.

Answer 62

It allows packets based on approved internal MAC or IP addresses.

Answer 63

It requires that packets coming into the router be responses to internal host requests.

Answer 64

It translates an internal address or group of addresses into an outside, public address.

Answer 65

replay attack

Answer 66

dictionary attack

Answer 67

hashing attack

Answer 68

Denial of service attack

Answer 69

is encrypted

Answer 70

validates the sender

Answer 71

is virus-free

Answer 72

validates the recipient

Answer 73

dictionary attack

Answer 74

social engineering

Answer 75

brute force attack

Answer 76

rainbow table attack

Answer 77

Windows Vista Enterprise

Answer 78

Windows 7 Enterprise

Answer 79

Windows XP Pro

Answer 80

Windows 2000

Answer 81

passwords being reused immediately

Answer 82

users sharing passwords

Answer 83

brute force attacks

Answer 84

social engineering

Answer 85

Change the owner

Answer 86

Hide the folder

Answer 87

Block inheritance

Answer 88

Disable folder sharing

Answer 89

Take ownership

Answer 90

Extended attributes

Answer 91

Turn on Windows Firewall

Answer 92

Configure a forward proxy

Answer 93

Enable spam filtering

Answer 94

Install anti-virus software

Answer 95

loss of data from client computers on a network

Answer 96

users on a network from installing software

Answer 97

unauthorized users from accessing a network

Answer 98

non-compliant systems from connection to a network

Answer 99

Enable session caching

Answer 100

Save them to a text file

Answer 101

Save them to an encrypted file

Answer 102

Reuse the same password

Answer 103

Configure the browser to save passwords

Answer 104

digital document is complete

Answer 105

computer is virus-free

Answer 106

private key belongs to a sender

Answer 107

public key belongs to a sender

Answer 108

unauthorized private data input

Answer 109

unencrypted communication between the client computer and the server

Answer 110

any session data from being stored on the computer

Answer 111

user credentials from being sent over the Internet

Answer 112

DOS attacks

Answer 113

man-in-the-middle attacks

Answer 114

compromise os the certificate chain

Answer 115

email virus

Answer 116

phishing scams

Answer 117

unencrypted network access

Answer 118

unauthorized network connections

Answer 119

placing servers on separate VLAN’s

Answer 120

enforcing principle of least privilege

Answer 121

installing applications on separate hard disk

Answer 122

physically separating high security servers from others server

Answer 123

Gathering information about a person or organisation without their knowledge.

Answer 124

Performing an unauthorised, usually malicious, action such as erasing files.

Answer 125

Putting unnecessary load on the network by making copies of files.

Answer 126

Sending unwanted bulk messages.

Answer 127

Anti-spam software.

Answer 128

Anti-virus software.

Answer 129

Anti-spyware software.

Answer 130

PC diagnostic software.

Answer 131

Using only software that has been checked for viruses.

Answer 132

Maintaining regularly updated anti-virus software.

Answer 133

Opening only virus-checked file attachments from known sources.

Answer 134

Using a USB Flash Drive from an unknown source to exchange data.

Answer 135

To protect your computer from all known viruses.

Answer 136

To ensure the software identifies old viruses.

Answer 137

To protect your computer from unwanted bulk messages.

Answer 138

To prevent the spread of malicious programs on the Internet.

Answer 139

Forward the email.

Answer 140

Download it onto your system.

Answer 141

Delete the email.

Answer 142

Send a read receipt.

Answer 143

A skilled programmer who uses authorised access to exploit information available on a computer.

Answer 144

A skilled programmer who secretly invades computers without authorisation.

Answer 145

A skilled programmer who writes programs to train new employees.

Answer 146

A skilled programmer who helps in the installation of new software for an organisation.

Answer 147

To prevent unauthorised access by incoming transmissions.

Answer 148

To prevent destruction of a computer in the event of a fire.

Answer 149

To enable easy downloading of data from web sites.

Answer 150

To detect and disable viruses already on a computer.

Answer 151

An email from a friend you have not seen recently.

Answer 152

An email with an attachment sent by a colleague using their personal email address.

Answer 153

An email asking you to go to a website for a free computer scan.

Answer 154

An email advertisement from a local shop you subscribe to.

Answer 155

To be aware of who is in the building.

Answer 156

To check up on the time-keeping of users.

Answer 157

To protect computers against unauthorised use.

Answer 158

To enable a personalised greeting for each user.

Answer 159

It must be changed only if it is compromised.

Answer 160

It cannot contain special character symbols.

Answer 161

It must be registered with the system administrator.

Answer 162

It should be changed regularly.

Answer 163

Control Panel.

Answer 164

Anti-virus software.

Answer 165

Windows Firewall.

Answer 166

Internet Explorer.

Answer 167

Discussing confidential information over the telephone.

Answer 168

Disclosing confidential information only to authorised individuals.

Answer 169

Uploading confidential information to a shared web site.

Answer 170

Emailing confidential information to a colleague.

Answer 171

Keep a written note of it with you bank cards.

Answer 172

Store it on your computer.

Answer 173

Memorise it.

Answer 174

Keep a written note of it in your office drawer.

Answer 175

To prevent unauthorised access to data.

Answer 176

To prevent a waste of electricity.

Answer 177

To prevent data from getting corrupted.

Answer 178

To prevent the computer from malfunctioning.

Answer 179

An email warning the recipient of a computer virus threat.

Answer 180

An email directing the recipient to forward the email to friends.

Answer 181

An email directing the recipient to enter personal details on a fake website.

Answer 182

An email directing the recipient to download an attachment.

Answer 183

Using a screen name or nick name that cannot identify you.

Answer 184

Meeting someone you met online face-to-face in the company of your parents.

Answer 185

Keeping your social network profile private.

Answer 186

Giving your home address to someone you met in a chat room.

Answer 187

A network where devices outside the network cannot see or communicate directly with computers on the network.

Answer 188

A network where devices outside the network can see but cannot communicate directly with computers on the network.

Answer 189

A network where devices outside the network can see and communicate directly with computers on the network.

Answer 190

A network where devices outside the network cannot see but can communicate directly with computers on the network.

Answer 191

In an unsigned email.

Answer 192

In an encrypted format.

Answer 193

In a compressed format.

Answer 194

In an attachment.

Answer 195

They cannot be intercepted by unknown users.

Answer 196

They limit accessibility to other users.

Answer 197

They limit visibility to other users.

Answer 198

They can be accessible to other users.

Answer 199

Disconnect the computer from the network.

Answer 200

Complain to the System Administrator.

Answer 201

Change the default WEP or WPA access key to one that only you know.

Answer 202

Adjust the Internet security settings.

Answer 203

Short-range wired protocol for exchanging data.

Answer 204

Short-range wireless protocol for exchanging data.

Answer 205

Long-range wireless protocol for exchanging data.

Answer 206

Long-range wired protocol for exchanging data.

Answer 207

To increase the range of the device.

Answer 208

To improve the quality of reception.

Answer 209

To prevent the risk of unauthorised access.

Answer 210

To reduce interference from other devices.

Answer 211

Mobile Phone.

Answer 212

Only use it in private surroundings.

Answer 213

Do not access it using a Bluetooth device.

Answer 214

Use firewall software.

Answer 215

Never leave it unattended.

Answer 216

The IT Department.

Answer 217

The Marketing Department.

Answer 218

The Sales Department.

Answer 219

The Finance Department.

Answer 220

To ensure easy access to information on your computer.

Answer 221

To ensure the secure use of IT resources.

Answer 222

To ensure the IT Department is able to monitor all activity.

Answer 223

To ensure the Finance Department is able to monitor the costs of IT resources.

Answer 224

A technically well-informed team member.

Answer 225

A senior colleague in the Finance Department.

Answer 226

The Maintenance Department.

Answer 227

The Systems Administrator.

Answer 228

Using the telephone.

Answer 229

By emailing to the IT Manager.

Answer 230

Using any means of communication.

Answer 231

Using the method listed in the organisation’s security policy.

Answer 232

By reading the office newsletter.

Answer 233

By reading the policy in the organisation’s policy manual.

Answer 234

By speaking to the Finance Department.

Answer 235

By speaking to the Sales Department.

Answer 236

Anti-virus software.

Answer 237

A security cable.

Answer 238

No change is needed.

Answer 239

Network layer

Answer 240

Packet filter

Answer 241

No change is needed

Answer 242

Loss of data from client computers on a network.

Answer 243

Non-compliant systems from connecting to a network.

Answer 244

Users on a network from installing software.

Answer 245

Unauthorized users from accessing a network.

Answer 246

primary DNS zone.

Answer 247

enterprise domain.

Answer 248

perimeter network.

Answer 249

Virtual Private Network (VPN).

Answer 250

captures and analyzes network communication.

Answer 251

records user activity and transmits it to the server

Answer 252

protects workstations from intrusions.

Answer 253

catalogs network data to create a secure index

Answer 254

Virtual Private Networking (VPN)

Answer 255

Remote Desktop Protocol (RDP)

Answer 256

Network Address Translation (NAT)

Answer 257

Network Access Protection (NAP)

Answer 258

Data Execution Prevention

Answer 259

Microsoft Update

Answer 260

Active Directory Domains and Trusts

Answer 261

Windows Firewall

Answer 262

Antivirus software

Answer 263

BitLocker To Go

Answer 264

RADIUS Server

Answer 265

Software firewall

Answer 266

loss of data from client computers on a network.

Answer 267

non-compliant systems from connecting to a network.

Answer 268

unauthorized users from accessing a network.

Answer 269

users on a network from installing software.

Answer 270

red hat hacker

Answer 271

man-in-the-middle

Answer 272

network sniffer.

Answer 273

white hate hacker.

Answer 274

Extensions

Answer 275

Subfolders

Answer 276

Advanced Encryption Standard (AES)

Answer 277

Folder level permissions

Answer 278

File-level permissions

Answer 279

Distributed File System (DFS)

Answer 280

social engineering.

Answer 281

network sniffing.

Answer 282

Trojan horses.

Answer 283

The Resultant Set of Policy

Answer 284

The object's Effective Permission

Answer 285

The client computer's registry

Answer 286

The object's Advanced Attributes

Answer 287

set up a virus quarantine area.

Answer 288

inventory the company's technology assets.

Answer 289

set up the system logs to audit security events.

Answer 290

install auditing software on your servers.

Answer 291

study hacking behavior.

Answer 292

perform security audits.

Answer 293

authenticate users.

Answer 294

measure the attack surface.

Answer 295

Disable folder sharing

Answer 296

Change the owner

Answer 297

Block inheritance

Answer 298

Hide the folder

Answer 299

Run the show all access command

Answer 300

Use antivirus software to scan the computer

Answer 301

Check your Windows folder for unsigned files

Answer 302

Check the security log for failed authentication attempts

Answer 303

Windows Vista Enterprise Edition

Answer 304

Windows 2000 Professional Service Pack 4

Answer 305

Windows 7 Enterprise Edition

Answer 306

Windows XP Professional Service Pack 3

Answer 307

Object access

Answer 308

Process tracking

Answer 309

Directory services

Answer 310

Logon events

Answer 311

intrusion prevention systems (IPS)

Answer 312

intrusion detection systems (IDS)

Answer 313

DNS Security Extensions (DNSsec)

Answer 314

Unified Threat Management (UTM)

Answer 315

Secure Content Management (SCM)

Answer 316

DMZ (demilitarized zone)

Answer 317

stateful inspection

Answer 318

Open Systems Interconnect (OSI)

Answer 319

host firewall

Answer 320

DNS spoofing

Answer 321

DNS poisoning

Answer 322

Availability

Answer 323

Audit Account logon events

Answer 324

Audit logon events

Answer 325

Audit Object access

Answer 326

Audit system events

Answer 327

Audit process traking

Answer 328

Audit logon events

Answer 329

InPrivate Filtering

Answer 330

SmartScreen Filter

Answer 331

Compatibility Mode

Answer 332

No change is needed

Answer 333

Read-Only Domain Controller

Answer 334

Backup Domain Controller

Answer 335

Active Directory Server

Answer 336

No change is needed.

Answer 337

Minimum password age

Answer 338

Maximum password duration

Answer 339

Password complexity

Answer 340

No change is needed.

Answer 341

Resource gathering

Answer 342

Denial of service

Answer 343

ARP poisoning

Answer 344

Eavesdropping

Answer 345

Logic bomb

Answer 346

RADIUS server

Answer 347

SSL server

Answer 348

WEP server

Answer 349

VPN server

Answer 350

WPA2 Personal

Answer 351

WPA2 Enterprise

Answer 352

Restart the computer in safe mode

Answer 353

Replace the computer’s hard disk drive

Answer 354

Disconnect the computer from the network

Answer 355

Install antivirus software on the computer

Answer 356

Viruses are

Answer 357

Trojans are

Answer 358

No change is needed.

Answer 359

Object access

Answer 360

Directory services

Answer 361

Logon events

Answer 362

Process tracking

Answer 363

Tunnel that prevents information that passes through it from being modified or stolen

Answer 364

Perimeter network that contains secure virtual servers

Answer 365

Virtual communication method that stores data transmitted in private environment

Answer 366

Intrusion Prevention System that filters unauthorized communications in the enterprise network

Answer 367

File corruption

Answer 368

Spyware distribution

Answer 369

Replay attacks

Answer 370

Eavesdropping

Answer 371

Denial of Service attacks

Answer 372

SmartScreen Filter (ajuda a identificar sites de phishing e de software maligno)

Answer 373

InPrivate Browsing

Answer 374

Antivirus protection

Answer 375

Cross-Site Scripting Filter (ficheiros HTML)

Answer 376

Employ content filtering for web browsers

Answer 377

Restrict access to system services

Answer 378

Employ layered defenses

Answer 379

Apply the principle of least privilege

Answer 380

Elevate all accounts to administrator accounts

Answer 381

Least privilege

Answer 382

Confidentiality

Answer 383

Security by default

Answer 384

Availability

Answer 385

Accessibility

Answer 386

A backup strategy

Answer 387

Set access permission to a shared folder

Answer 388

Limit access to a network based on the client computer’s network adapter

Answer 389

Prevent communications between specific IP addresses

Answer 390

Restrict communications to specific website

Answer 391

Accessibility

Answer 392

Confidentiality

Answer 393

Availability

Answer 394

Password protecting the computer BIOS

Answer 395

Removing the user from the administrators group

Answer 396

Installing drive-level encryption

Answer 397

Disabling removable devices and drives

Answer 398

In a different Compatibility Mode

Answer 399

By using a smart card

Answer 400

In a separate memory space

Answer 401

By utilizing RunAs

Answer 402

Add the email address to the whitelist

Answer 403

Accept RSS feeds from their domain

Answer 404

List the sender’s email address in DNS

Answer 405

Reconfigure the SMS Gateway

Answer 406

Proxy server

Answer 407

Layer-3 switch

Answer 408

Server isolation

Answer 409

Domain isolation

Answer 410

Server filtering

Answer 411

Domain filtering

	Created by Hawerth Castro almost 7 years ago

Next up

CET_TARDE - Security Fundamentals 2017 - Part 2

Description

Resource summary

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

Question 25

Question 26

Question 27

Question 28

Question 29

Question 30

Question 31

Question 32

Question 33

Question 34

Question 35

Question 36

Question 37

Question 38

Question 39

Question 40

Question 41

Question 42

Question 43

Question 44

Question 45

Question 46

Question 47

Question 48

Question 49

Question 50

Question 51

Question 52

Question 53

Question 54

Question 55

Question 56

Question 57

Question 58

Question 59

Question 60

Question 61

Question 62

Question 63

Question 64

Question 65

Question 66

Question 67

Question 68

Question 69

Question 70

Question 71

Question 72

Question 73

Question 74

Question 75

Question 76