Question 1

Probing your network for security flaws should occur once a quarter,and a complete audit of your security should be completed ________ per year.&#10;A)Once&#10;B)Twice&#10;C)Three times&#10;D)None of the above

Accepted Answer

A complete audit of your security should be completed once per year to ensure comprehensive coverage and identification of potential vulnerabilities.

Question 2

You would set a ___________ to prevent users from immediately changing their password several times in one day to return to the current password.This is particularly important if your password policy has a history depth of five.

A)Minimum password age
B)Maximum password age
C)Minimum password length
D)Maximum password length

A

Accepted Answer

A Minimum password age policy prevents users from changing their password too frequently within a short period. This is important in scenarios where a password history policy is implemented (e.g., remembering the last five passwords) to prevent users from cycling through passwords quickly to reuse their current one.

Question 3

A good password has at least ______ characters.&#10;A)6&#10;B)8&#10;C)10&#10;D)15

Accepted Answer

Most security guidelines recommend that a good password should have at least 8 characters.

Question 4

The first rule of computer security is to check ___________.&#10;A)Patches&#10;B)Ports&#10;C)Policies&#10;D)None of the above

Accepted Answer

Patches are updates to software that fix security vulnerabilities, making it crucial to check and apply them regularly to maintain security.

Question 5

The process to make a system as secure as it can be without adding on specialized software or equipment is _______________&#10;A)Securitizing&#10;B)Hardening&#10;C)Routing&#10;D)None of the above

Accepted Answer

Hardening is the process of securing a system by reducing its surface of vulnerability, which is larger when a system performs more functions; in other words, a system's attack surface is the sum of the different points where an unauthorized user (the "attacker") can try to enter data to or extract data from an environment. Hardening involves the removal of unnecessary software, unnecessary usernames or logins, and the disabling or removal of unnecessary services.

Question 6

A password policy for a 90- or 180-day replacement schedule is called password ________.&#10;A)History&#10;B)Age&#10;C)Uniqueness&#10;D)None of the above

Accepted Answer

The answer of A password policy for a 90- or...

Question 7

Every open port on a router is a possible avenue of entry for a malware or intruder.

Accepted Answer

Open ports on a router can serve as potential entry points for malware or unauthorized users if they are not properly secured or monitored.

Question 8

Microsoft Baseline Security Analyzer (MBSA)checks one or more Windows machines to see if they have basic security in place.

Accepted Answer

MBSA is a tool developed by Microsoft that assesses the security state of Windows machines by checking for missing security updates and common security misconfigurations.

Question 9

A _________ involves setting up two firewalls: an outer and an inner firewall.&#10;A)DMZ (demilitarized zone)&#10;B)proxy server&#10;C)DNS server&#10;D)None of the above

Accepted Answer

A DMZ (demilitarized zone) involves setting up two firewalls to create a buffer zone between an internal network and the internet, enhancing security by isolating access to internal resources.

Question 10

CNE,MCITP,CISSP,and CCNA are examples of industry certifications.

Accepted Answer

CNE (Certified Novell Engineer), MCITP (Microsoft Certified IT Professional), CISSP (Certified Information Systems Security Professional), and CCNA (Cisco Certified Network Associate) are all examples of industry certifications that validate an individual's expertise in specific areas of IT and cybersecurity.

Question 11

For individual computers not running firewall software,you should directly close ports.

Accepted Answer

The answer of For individual computers not running firewall software,you...

Question 12

For an individual machine that is not running firewall software,you do not directly close ports.You shut down the _________ using that port.&#10;A)Patch&#10;B)Router&#10;C)Probe&#10;D)None of the above

Accepted Answer

The answer of For an individual machine that is not...

Question 13

A good rule of thumb for a password history policy is a history depth of five.

Accepted Answer

The answer of A good rule of thumb for a...

Question 14

On a server,you should create your own accounts with ________ that do not reflect their level of permission.&#10;A)Names&#10;B)Numbers&#10;C)Passwords&#10;D)None of the above

Accepted Answer

The answer of On a server,you should create your own...

Question 15

There should be a firewall between your network and the outside world.

Accepted Answer

The answer of There should be a firewall between your...

Question 16

Any _________ you do not explicitly need should be shut down.&#10;A)Patches&#10;B)Ports&#10;C)Policies&#10;D)Probes

Accepted Answer

The answer of Any _________ you do not explicitly need...

Question 17

Windows has a built in firewall,but Linux does not.

Accepted Answer

The answer of Windows has a built in firewall,but Linux...

Question 18

Experience is the most important factor when looking for a security professional.

Accepted Answer

The answer of Experience is the most important factor when...

Question 19

Nessus is the premiere network vulnerability scanner.

Accepted Answer

The answer of Nessus is the premiere network vulnerability scanner....

Question 20

A good password should contain only letters and numbers.

Accepted Answer

The answer of A good password should contain only letters...

Question 21

The rule that packets not originating from inside your LAN should not be forwarded relates to ___________.&#10;A)Servers&#10;B)Workstations&#10;C)Routers&#10;D)Web servers

Accepted Answer

The answer of The rule that packets not originating from...

Deck 11: Network Scanning and Vulnerability Scanning