Question 1

Which of the following is a type of script that automates repetitive tasks in an application such as a word processor but can also be programmed to be a virus?&#10;A) worm&#10;B) macro&#10;C) back door&#10;D) Trojan

Accepted Answer

A macro is a type of script that automates repetitive tasks in an application such as a word processor. However, if programmed maliciously, it can also act as a virus. A worm is a self-replicating program that spreads through networks, while a back door is a vulnerability intentionally left in software for remote access. A Trojan is a type of malware disguised as a useful program that can harm a computer system.

Question 2

Which security layer verifies the identity of a user,service,or computer?&#10;A) authentication&#10;B) repudiation&#10;C) physical security&#10;D) authorization

Accepted Answer

Authentication is the security layer that verifies the identity of a user, service, or computer by validating the credentials provided during the login process. It helps to ensure that only authorized individuals or systems are allowed access to sensitive data or resources. Repudiation refers to the ability to disavow or deny an action, physical security is a different layer that involves physical measures to protect resources, and authorization refers to the process of determining what a user is allowed to do once their identity has been authenticated.

Question 3

A worm creates files that copy themselves repeatedly and consume disk space.

Accepted Answer

This is true, as a worm's main purpose is to replicate itself and spread to other devices. This can result in the creation of multiple copies of the worm's file, which can consume significant amounts of disk space on infected devices.

Question 4

Which type of attack works by an attacker operating between two computers in a network and impersonating one computer to intercept communications?&#10;A) malicious port scanning&#10;B) man-in-the-middle&#10;C) denial of service&#10;D) remote procedure call

Accepted Answer

The description provided matches the characteristics of a man-in-the-middle attack. The attacker intercepts the communication between two computers and impersonates one of them to intercept or modify data being transmitted. Malicious port scanning is used to identify open ports on a system to exploit vulnerabilities. Denial of service is a type of attack that floods a system with traffic to make it unavailable. Remote procedure call is a protocol used for communication between different computers in a network.

Question 5

Which of the following is NOT one of the three primary goals of information security?&#10;A) confidentiality&#10;B) integrity&#10;C) impartiality&#10;D) availability

Accepted Answer

The three primary goals of information security are confidentiality, integrity, and availability. Impartiality is not one of the primary goals.

Question 6

What is a VPN typically used for?&#10;A) secure remote access&#10;B) detection of security threats&#10;C) block open ports&#10;D) filter harmful scripts

Accepted Answer

A VPN (Virtual Private Network) is typically used for secure remote access to a network, allowing users to connect to a network from an external location and securely access resources or data. It creates a secure and encrypted tunnel between the user and the network, protecting sensitive data and ensuring privacy. While VPNs can offer some level of protection against security threats, their primary purpose is to provide secure remote access. They do not typically involve blocking open ports or filtering harmful scripts.

Question 7

Which type of attack causes the operating system to crash because it is unable to handle arbitrary data sent to a port?&#10;A) RPC attacks&#10;B) ICMP message abuse&#10;C) malicious port scanning&#10;D) SYN flood

Accepted Answer

RPC (Remote Procedure Call) attacks can cause an operating system to crash by sending arbitrary data to a port that the system cannot handle, leading to a denial of service.

Question 8

In which form of authentication does the authenticating device generate a random code and send it to the user who wants to be authenticated?&#10;A) basic&#10;B) challenge/response&#10;C) biometrics&#10;D) signature

Accepted Answer

The form of authentication in which the authenticating device generates a random code and sends it to the user who wants to be authenticated is called challenge/response. This method provides better security than basic authentication as it requires a unique response from the user for each authentication attempt. Biometrics and signature authentication do not involve the use of random codes.

Question 9

What is the name of a storage area where viruses are placed by antivirus software so they cannot replicate or do harm to other files?&#10;A) firewall&#10;B) recycle bin&#10;C) quarantine&#10;D) demilitarized zone

Accepted Answer

The storage area where viruses are placed by antivirus software so they cannot replicate or do harm to other files is called quarantine. The other options (firewall, recycle bin, demilitarized zone) do not specifically refer to a storage area for viruses.

Question 10

Defense in depth can best be described as which of the following?&#10;A) a firewall that protects the network and the servers&#10;B) a layered approach to security&#10;C) antivirus software and firewalls&#10;D) authentication and encryption

Accepted Answer

Defense in depth is a layered approach to security where multiple layers of defense are implemented to protect against cyber threats. This can include measures such as firewalls, antivirus software, authentication protocols, and encryption techniques. By using multiple layers of defense, if one layer is compromised, there are still other layers in place to prevent a successful cyber attack.

Question 11

A hactivist can best be described as which of the following?&#10;A) an unskilled programmer that spreads malicious scripts&#10;B) consider themselves seekers of knowledge&#10;C) use DoS attacks on Web sites with which they disagree&#10;D) deface Web sites by leaving messages for their friends to read

Accepted Answer

The answer of A hactivist can best be described as...

Question 12

What can an attacker use a port scanner to test for on a target computer?&#10;A) invalid IP addresses&#10;B) SYN flags&#10;C) open sockets&#10;D) ping floods

Accepted Answer

The answer of What can an attacker use a port...

Question 13

Reviewing log files is a time-consuming task and therefore should only be done when an attack on the network has occurred.

Accepted Answer

The answer of Reviewing log files is a time-consuming task...

Question 14

With discretionary access control,network users can share information with other users,making it more risky than MAC.

Accepted Answer

The answer of With discretionary access control,network users can share...

Question 15

What is a program that appears to do something useful but is actually malware?&#10;A) virus&#10;B) logic bomb&#10;C) Trojan&#10;D) back door

Accepted Answer

The answer of What is a program that appears to...

Question 16

Physical security protects a system from theft,fire,or environmental disaster.

Accepted Answer

The answer of Physical security protects a system from theft,fire,or...

Question 17

Why might you want your security system to provide nonrepudiation?&#10;A) to prevent a user from capturing packets and viewing sensitive information&#10;B) to prevent an unauthorized user from logging into the system&#10;C) to trace the origin of a worm spread through email&#10;D) so a user can't deny sending or receiving a communication

Accepted Answer

The answer of Why might you want your security system...

Question 18

Which term is best described as an attack that relies on the gullibility of people?&#10;A) malicious code&#10;B) script kiddie&#10;C) back door&#10;D) social engineering

Accepted Answer

The answer of Which term is best described as an...

Question 19

A packet monkey is an unskilled programmer who spreads viruses and other malicious scripts to exploit computer weaknesses.

Accepted Answer

The answer of A packet monkey is an unskilled programmer...

Question 20

Malware that creates networks of infected computers that can be controlled from a central station is referred to as which of the following?&#10;A) botnet&#10;B) Trojan&#10;C) logic bomb&#10;D) packet monkey

Accepted Answer

The answer of Malware that creates networks of infected computers...

Question 21

________________ events usually track the operations of the firewall or IDPS,making a log entry whenever it starts or shuts down.

Accepted Answer

The answer of ________________ events usually track the operations of...

Question 22

Which type of firewall policy calls for a firewall to deny all traffic by default?&#10;A) permissive policy&#10;B) perimeter policy&#10;C) restrictive policy&#10;D) demilitarized policy

Accepted Answer

The answer of Which type of firewall policy calls for...

Question 23

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;An attack in which many computers are hijacked and used to flood the target with so many false requests that the server cannot process them all,and normal traffic is blocked

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;An attack in which many...

Question 24

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;The process of recording which computers are accessing a network and what resources are being accessed,and then recording the information in a log file

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;The process of recording which...

Question 25

Which of the following is NOT information that a packet filter uses to determine whether to block a packet?&#10;A) checksum&#10;B) port&#10;C) IP address&#10;D) protocol

Accepted Answer

The answer of Which of the following is NOT information...

Question 26

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;A method of authenticating a user using physical information,such as retinal scans,fingerprints,or voiceprints

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;A method of authenticating a...

Question 27

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;Signs of possible attacks that include an IP address,a port number,and the frequency of access attempts; an IDPS uses signatures to detect possible attacks

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;Signs of possible attacks that...

Question 28

__________________ are spread by several methods,including running executable code,sharing disks or memory sticks,opening e-mail attachments,and viewing infected or malicious Web pages.

Accepted Answer

The answer of __________________ are spread by several methods,including running...

Question 29

With which access control method do system administrators establish what information users can share?&#10;A) discretionary access control&#10;B) mandatory access control&#10;C) administrative access control&#10;D) role-based access control

Accepted Answer

The answer of With which access control method do system...

Question 30

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;Hardware or software tools that allow or deny packets based on specified criteria,such as port,IP address,or protocol.

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;Hardware or software tools that...

Question 31

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;Computer files that copy themselves repeatedly and consume disk space or other resources

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;Computer files that copy themselves...

Question 32

Which security tool works by recognizing signs of a possible attack and sending notification to an administrator?&#10;A) DiD&#10;B) DMZ&#10;C) VPN&#10;D) IDPS

Accepted Answer

The answer of Which security tool works by recognizing signs...

Question 33

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;An access control method that establishes organizational roles to control access to information

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;An access control method that...

Question 34

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;An area in random access memory (RAM)reserved for the use of a program that &#34;listens&#34; for requests for the service it provides

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;An area in random access...

Question 35

______________________ is the capability to prevent a participant in an electronic transaction from denying that it performed an action.

Accepted Answer

The answer of ______________________ is the capability to prevent a...

Question 36

______________ do not require user intervention to be launched; they are self-propagating.

Accepted Answer

The answer of ______________ do not require user intervention to...

Question 37

A ______________ is reserved for a program that runs in the background to listen for requests for the service it offers.

Accepted Answer

The answer of A ______________ is reserved for a program...

Question 38

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;A semitrusted subnet that lies outside the trusted internal network but is connected to the firewall to make services publicly available while still protecting the internal LAN

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;A semitrusted subnet that lies...

Question 39

What tool do you use to secure remote access by users who utilize the Internet?&#10;A) VPN&#10;B) IDS&#10;C) DMZ&#10;D) DiD

Accepted Answer

The answer of What tool do you use to secure...

Question 40

MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;A network connection consisting of a port number combined with a computer's IP address

Accepted Answer

The answer of MATCHING&#10;a.auditing&#10;b.biometrics&#10;c.DMZ&#10;d.DDoS attack&#10;e.packet filters&#10;f.port&#10;g.RBAC&#10;h.signatures&#10;i.socket&#10;j.worm&#10;A network connection consisting of...

Question 41

What is virus scanning and how does it work?

Accepted Answer

The answer of What is virus scanning and how does...

Question 42

What is a script kiddie?

Accepted Answer

The answer of What is a script kiddie?...

Question 43

Discuss permissive versus restrictive firewall policies.

Accepted Answer

The answer of Discuss permissive versus restrictive firewall policies....

Question 44

Discuss defense in depth.

Accepted Answer

The answer of Discuss defense in depth....

Question 45

What is malicious port scanning and how can you defend against it?

Accepted Answer

The answer of What is malicious port scanning and how...

Question 46

List and describe two motivations attackers have to attack a network.

Accepted Answer

The answer of List and describe two motivations attackers have...

Question 47

Discuss scripting and how it relates to network security.

Accepted Answer

The answer of Discuss scripting and how it relates to...

Question 48

Compare and contrast virus and worm.

Accepted Answer

The answer of Compare and contrast virus and worm....

Question 49

What is social engineering?

Accepted Answer

The answer of What is social engineering?...

Question 50

What are the three primary goals of information security? Describe them.

Accepted Answer

The answer of What are the three primary goals of...

Deck 1: Network Security Fundamentals