Question 1

Buffer overflow attacks have become less prevalent with the growth of the Internet.

Accepted Answer

Buffer overflow attacks remain a significant security threat and have not diminished in prevalence with the growth of the Internet. Despite advances in security, the complexity and interconnectedness of modern systems provide ample opportunities for such attacks.

Question 2

A computer cannot be completely safeguarded from DoS attacks.

Accepted Answer

Despite various security measures, it's impossible to guarantee complete protection against DoS (Denial of Service) attacks because attackers constantly develop new methods to exploit vulnerabilities in systems and networks.

Question 3

Basing access control on IP addresses rather than hostnames makes authentication faster because you don't have to resolve hostnames.

Accepted Answer

Using IP addresses for access control eliminates the need for DNS resolution, which can speed up the authentication process since the system doesn't have to translate hostnames into IP addresses.

Question 4

The htpasswd command is installed by default.

Accepted Answer

The `htpasswd` command is not installed by default on all systems; it is part of the Apache HTTP Server package and needs to be installed along with it or separately depending on the distribution.

Question 5

Files and file system security are the most important aspects of data security.

Accepted Answer

Files and file system security are essential for protecting data from unauthorized access, modification, or destruction.

Question 6

When security vulnerabilities are detected in Linux, it's up to ____ to find a solution.&#10;A) IBM&#10;B) Microsoft&#10;C) McAfee Security&#10;D) development and user communities

Accepted Answer

The development and user communities are responsible for finding solutions to security vulnerabilities detected in Linux, as Linux is an open-source operating system and relies on its community for development, support, and security patches.

Question 7

____ attacks involve overloading a server with an overwhelming amount of network traffic so that it can't handle legitimate requests for network services.&#10;A) Brute-force&#10;B) Session hijacking&#10;C) Address spoofing&#10;D) Denial-of-service (DoS)

Accepted Answer

Denial-of-Service (DoS) attacks specifically aim to disrupt the normal traffic of a targeted server, service, or network by overwhelming the target or its surrounding infrastructure with a flood of Internet traffic, making it unavailable to its intended users.

Question 8

A ____ attack is a simple attack in which ICMP Echo Request packets are sent to a victim, who continues to send packets in response, effectively choking available bandwidth.&#10;A) ping flood&#10;B) teardrop&#10;C) session hijacking&#10;D) buffer overflow

Accepted Answer

A ping flood attack involves sending a large number of ICMP Echo Request packets to a target, overwhelming its ability to respond and consuming its bandwidth, which matches the description given.

Question 9

Address spoofing is most often used on ____ firewalls.&#10;A) stateless&#10;B) packet-filter&#10;C) application proxy gateway&#10;D) circuit level relay

Accepted Answer

The answer of Address spoofing is most often used on...

Question 10

____ programs are hidden scripts embedded in seemingly legitimate programs that are authorized by the unsuspecting victims.&#10;A) Session hijacking&#10;B) Address spoofing&#10;C) CGI script&#10;D) Trojan

Accepted Answer

Trojan programs are malicious software that disguise themselves as legitimate programs, tricking users into installing them, thereby granting unauthorized access or causing harm to the user's system.

Question 11

Session hijacking is a specialized form of ____ in which a hijacker gets unauthorized control of a network session.&#10;A) ping flooding&#10;B) address spoofing&#10;C) denial-of-service (DoS)&#10;D) CGI scripting

Accepted Answer

The answer of Session hijacking is a specialized form of...

Question 12

____ attacks take place by guessing passwords and keys.&#10;A) Session hijacking&#10;B) Address spoofing&#10;C) Denial-of-service (DoS)&#10;D) Brute-force

Accepted Answer

The answer of ____ attacks take place by guessing passwords...

Question 13

To enable or disable services, you can use the ____ module.&#10;A) TCP Wrapper&#10;B) YaST System Services (Runlevel)&#10;C) xinetd daemon&#10;D) umask

Accepted Answer

The answer of To enable or disable services, you can...

Question 14

Every computer contains a(n) ____ to send and receive data from other computers over a network.&#10;A) network interface card (NIC)&#10;B) firewall&#10;C) TCP Wrapper&#10;D) NIS module

Accepted Answer

The answer of Every computer contains a(n) ____ to send...

Question 15

When put in ____ mode, a NIC receives all packets on a network, including packets destined for other computers.&#10;A) open&#10;B) active&#10;C) promiscuous&#10;D) clear

Accepted Answer

The answer of When put in ____ mode, a NIC...

Question 16

All processes running on a computer must be monitored periodically with the ____ command to check for rogue or malfunctioning processes.&#10;A) mn&#10;B) pr&#10;C) ps&#10;D) show

Accepted Answer

The answer of All processes running on a computer must...

Question 17

Packet sniffers are ____ and don't generate much traffic.&#10;A) passive&#10;B) promiscuous&#10;C) closed&#10;D) static

Accepted Answer

The answer of Packet sniffers are ____ and don't generate...

Question 18

____ is a protocol used to ensure that data transmitted to and from a remote computer is encrypted and secure.&#10;A) Secure Shell (SSH)&#10;B) RPC&#10;C) SMTP&#10;D) FTP

Accepted Answer

The answer of ____ is a protocol used to ensure...

Question 19

Which value in the /etc/pam.d/sshd file causes the entire stack to fail if the module's demands aren't met, but only after the entire stack has been processed?&#10;A) Required&#10;B) Requisite&#10;C) Sufficient&#10;D) Optional

Accepted Answer

The answer of Which value in the /etc/pam.d/sshd file causes...

Question 20

The OpenSSH daemon is ____.&#10;A) tcpd&#10;B) xinetd&#10;C) sshd&#10;D) httpd

Accepted Answer

The answer of The OpenSSH daemon is ____.&#10;A) tcpd&#10;B) xinetd&#10;C)...

Question 21

What is the daemon for running Apache Web Server?&#10;A) Tcpd&#10;B) Xinetd&#10;C) Sshd&#10;D) Httpd

Accepted Answer

The answer of What is the daemon for running Apache...

Question 22

Intranets are private ____ for transmitting data only inside the internal network.&#10;A) local area networks (LANs)&#10;B) wide area networks (WANs)&#10;C) metropolitan area networks (MANs)&#10;D) system area networks (SANs)

Accepted Answer

The answer of Intranets are private ____ for transmitting data...

Question 23

Broadcast packets are ____ packets sent to every computer on a network.&#10;A) UDP&#10;B) IP&#10;C) TCP&#10;D) SMPT

Accepted Answer

The answer of Broadcast packets are ____ packets sent to...

Question 24

You use the ____ command to specify default file and directory permissions, which can have a major impact on a server's security when files are created.&#10;A) ps&#10;B) dir&#10;C) umask&#10;D) mask

Accepted Answer

The answer of You use the ____ command to specify...

Question 25

Permissions are granted or removed based on three types of users, ____.&#10;A) users, groups and others&#10;B) clients, servers, managers&#10;C) administrators, users, others&#10;D) administrators, users, managers

Accepted Answer

The answer of Permissions are granted or removed based on...

Question 26

Given the sample file permission mask, AAABBBCCCDDD, which bits represents read, write, and execute permissions for a group, with the same octal values as for user permissions?&#10;A) AAA&#10;B) BBB&#10;C) CCC&#10;D) DDD

Accepted Answer

The answer of Given the sample file permission mask, AAABBBCCCDDD,...

Question 27

____________________ (CGI) scripts are used to generate a dynamic Web page's contents and can be written in a number of programming languages, such as Java, C, and Perl.

Accepted Answer

The answer of ____________________ (CGI) scripts are used to generate...

Question 28

In a(n) ____________________, data that has exceeded a buffer's storage capacity overflows into another buffer.

Accepted Answer

The answer of In a(n) ____________________, data that has exceeded...

Question 29

____________________ developed by Wietse Venema, is a widely used tool that logs connections and is used to allow or deny access to network services.

Accepted Answer

The answer of ____________________ developed by Wietse Venema, is a...

Question 30

A(n) ____________________ is a program that captures and views packets as they're transmitted over a network.

Accepted Answer

The answer of A(n) ____________________ is a program that captures...

Question 31

____________________ (PAM) provides a centralized mechanism for authenticating services.

Accepted Answer

The answer of ____________________ (PAM) provides a centralized mechanism for...

Question 32

Match each statement with an item&#10;&#10;-Allows users to log in to remote computers and interact with them over a secure network connection.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Allows users...

Question 33

Match each statement with an item&#10;&#10;-Allows users to transfer files across a network with FTP.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Allows users...

Question 34

Match each statement with an item&#10;&#10;-Allows Windows systems to share files and printers with Linux systems.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Allows Windows...

Question 35

Match each statement with an item&#10;&#10;-Allows users to print jobs on a print server.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Allows users...

Question 36

Match each statement with an item&#10;&#10;-Allows users to share file system or directory structures over a network.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Allows users...

Question 37

Match each statement with an item&#10;&#10;-Sends identical received characters back to the sender.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Sends identical...

Question 38

Match each statement with an item&#10;&#10;-Allows users to access a remote computer's command shell without entering a login password.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Allows users...

Question 39

Match each statement with an item&#10;&#10;-Allows users to log in to remote computers and interact with them via a terminal window.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Allows users...

Question 40

Match each statement with an item&#10;&#10;-Gives information about local computers or users to remote computers.&#10;A) ftp&#10;B) telnet&#10;C) lpd&#10;D) finger&#10;E) nfs&#10;F) sshd&#10;G) smb&#10;H) echo&#10;I) rlogin

Accepted Answer

The answer of Match each statement with an item&#10;&#10;-Gives information...

Question 41

How are Common Gateway Interface (CGI) script intrusions implemented and prevented?

Accepted Answer

The answer of How are Common Gateway Interface (CGI) script...

Question 42

Describe how session hijacking works and how it is prevented.

Accepted Answer

The answer of Describe how session hijacking works and how...

Question 43

Compare brute-force attacks and dictionary attacks.

Accepted Answer

The answer of Compare brute-force attacks and dictionary attacks....

Question 44

Explain how packet sniffers can be used for both good and bad.

Accepted Answer

The answer of Explain how packet sniffers can be used...

Question 45

Explain why you would use the ps -aux command.

Accepted Answer

The answer of Explain why you would use the ps...

Question 46

Why was the free derivative of Secure Shell (SSH) created?

Accepted Answer

The answer of Why was the free derivative of Secure...

Question 47

Describe the two steps an NFS client can use to access files on a remote NFS server.

Accepted Answer

The answer of Describe the two steps an NFS client...

Question 48

Describe one method to secure NFS.

Accepted Answer

The answer of Describe one method to secure NFS....

Question 49

How can you change the order of authentication in Apache Web Server?

Accepted Answer

The answer of How can you change the order of...

Question 50

What is the purpose of the Masquerading section of the YaST Firewall module?

Accepted Answer

The answer of What is the purpose of the Masquerading...

Deck 19: Securing Linux