Question 1

What is a type of malware that is so difficult to detect and remove that most experts agree that it is better to backup your critical data and reinstall the OS?&#10;A) rootkit&#10;B) Trojan&#10;C) hoax virus&#10;D) spyware

Accepted Answer

A rootkit is a type of malware that is designed to hide its existence and activities from detection by antivirus software and other security tools. It is deeply embedded in the operating system and can be very difficult to detect and remove. In some cases, it is recommended to backup important data and reinstall the operating system to ensure that the rootkit has been completely removed.

Question 2

If the minimum password length on a Windows system is set to zero, what does that mean?&#10;A) The user never has to change the password.&#10;B) The user can use a blank password.&#10;C) The user has to change the password every day.&#10;D) The user account is disabled.

Accepted Answer

If the minimum password length on a Windows system is set to zero, it means that the user can use a blank password. This is a security risk and should be avoided. It is recommended to set a minimum password length of at least eight characters with a combination of uppercase and lowercase letters, numbers, and symbols.

Question 3

The ultimate goal of network security is to protect which of the following?&#10;A) the customers who use the system&#10;B) the organization and its employees&#10;C) business partners who access the network&#10;D) all of the above

Accepted Answer

The ultimate goal of network security is to protect all entities that use or interact with the network, including customers, employees, and business partners. Therefore, the best choice is D, which includes all of the above.

Question 4

What process, available on most routers, will help improve security by masking the internal IP address of the transmitting device?&#10;A) IPSec&#10;B) NAT&#10;C) EFS&#10;D) VPN

Accepted Answer

NAT (Network Address Translation) will help improve security by masking the internal IP address of the transmitting device. This is because NAT allows a single public IP address to be shared by multiple devices on the internal network, and the external traffic is sent to the public IP address instead of the individual internal IP addresses. This helps to hide the specific devices on the network from external sources. IPSec and VPN both provide additional security measures but do not directly mask the internal IP address. EFS (Encrypting File System) is a feature for encrypting files on Windows operating systems and is not related to networking or router security.

Question 5

What is a policy that defines the methods involved when a user logs on to the network called?&#10;A) audit&#10;B) security&#10;C) authentication&#10;D) acceptable use

Accepted Answer

The policy that defines the methods involved when a user logs on to the network is called an authentication policy. Authentication is the process of verifying the identity of a user or system. An authentication policy defines the methods for verifying the identity of users and systems that access network resources. It can include requirements for passwords, biometric authentication, multi-factor authentication, and other methods to ensure that users are who they claim to be before being granted access to the network.

Question 6

Which protocol is used to encrypt data as it travels a network?&#10;A) EFS&#10;B) Kerberos&#10;C) IPSec&#10;D) SMB

Accepted Answer

IPSec is a protocol used to secure communication over IP networks. It provides end-to-end encryption of data as it travels across the network, ensuring that only the intended recipient can access it. EFS is a file encryption technology used to encrypt files on a local computer or shared folder, while Kerberos is an authentication protocol used for network login. SMB (Server Message Block) is a protocol used for file sharing on a local network but does not provide encryption.

Question 7

In Windows 7, what is the maximum length that a password can be?&#10;A) 8&#10;B) 16&#10;C) 64&#10;D) 128

Accepted Answer

Windows 7 allows for passwords up to 128 characters in length, providing enhanced security for users. Choosing a longer password can make it more difficult for attackers to crack or guess, reducing the risk of unauthorized access to your computer or network.

Question 8

In a file system that uses FAT or FAT32, the only file security option that is available is the sharing permissions.

Accepted Answer

In a file system that uses FAT or FAT32, the only file security option available is the sharing permissions. There are no options for setting individual user permissions, only for setting read and write access for all users who have access to the shared folder.

Question 9

A security policy should clearly state the desired rules, even if they cannot be enforced..

Accepted Answer

The answer of A security policy should clearly state the...

Question 10

A DoS attack ties up network bandwidth or services, rendering resources useless to legitimate users.

Accepted Answer

A DoS attack aims to overwhelm a network or service with a flood of traffic, which can tie up bandwidth and render resources unavailable to legitimate users.

Question 11

Which of the following should not be a concern when discerning the level of security that is required in a network?&#10;A) how difficult it would be to enforce a password policy&#10;B) the costs to implement a security system&#10;C) whether the data is important enough to safeguard&#10;D) from whom the data needs to be protected

Accepted Answer

The answer of Which of the following should not be...

Question 12

When using BitLocker to encrypt your entire disk, which mode must you use if your system is not configured for TPM support?&#10;A) transport mode&#10;B) USB key mode&#10;C) user authentication mode&#10;D) encryption mode

Accepted Answer

The answer of When using BitLocker to encrypt your entire...

Question 13

If you need to implement a VPN on a Windows Server 2008 system, what server role must be installed to access routing and remote access services?&#10;A) network policy and access services&#10;B) Active Directory services&#10;C) domain name services&#10;D) remote network services

Accepted Answer

The answer of If you need to implement a VPN...

Question 14

Which form of authentication involves the exchange of a password-like key that must be entered on both devices?&#10;A) Kerberos authentication&#10;B) digital certificate&#10;C) GNU privacy guard&#10;D) preshared key

Accepted Answer

The answer of Which form of authentication involves the exchange...

Question 15

You don't need to physically secure your servers as long as you use a good strong password for your accounts.

Accepted Answer

The answer of You don't need to physically secure your...

Question 16

Which VPN implementation needs no additional configuration to be allowed access through a firewall?&#10;A) SSTP&#10;B) IPSec&#10;C) PPTP&#10;D) L2TP

Accepted Answer

The answer of Which VPN implementation needs no additional configuration...

Question 17

What is the generic term used to describe programs that are designed to cause harm or disruption to a computer system?&#10;A) spyware&#10;B) malware&#10;C) virus&#10;D) Trojan

Accepted Answer

The answer of What is the generic term used to...

Question 18

Which of the following is a type of malware that isn't self-replicating and is usually installed by the user without his knowledge. It's primary goal is to invade your privacy by monitoring your system and reporting your activities to advertisers and spammers.

A) rootkit
B) Trojan
C) hoax virus
D) spyware

Accepted Answer

The answer of Which of the following is a type...

Question 19

Which one of the following passwords meets Windows password complexity requirement?&#10;A) NetWoRKing&#10;B) NetworkingIsFun&#10;C) N3tworking1O1&#10;D) netw@rk!ngb@s!cs

Accepted Answer

The answer of Which one of the following passwords meets...

Question 20

A Trojan is a self-replicating program that masks itself as a useful program but is actually a type of malware.

Accepted Answer

The answer of A Trojan is a self-replicating program that...

Question 21

MATCHING:&#10;

Accepted Answer

The answer of MATCHING:&#10;  ...

Question 22

How the network resources are to be used should be clearly defined in a (an) ____________ policy.

Accepted Answer

The answer of How the network resources are to be...

Question 23

What are the complexity requirements for a Windows password? List the four characteristics.

Accepted Answer

The answer of What are the complexity requirements for a...

Question 24

A firewall can be implemented in two different ways. What are they?

Accepted Answer

The answer of A firewall can be implemented in two...

Question 25

____________ is a free open-source product that can be used to encrypt the contents of an entire drive.

Accepted Answer

The answer of ____________ is a free open-source product that...

Question 26

Which of the following is a type of denial-of-service attack that involves flooding the network with broadcast messages that contain a spoofed source address of an intended victim?&#10;A) packet storm&#10;B) broadcast flood&#10;C) smurf attack&#10;D) half-open SYN attack

Accepted Answer

The answer of Which of the following is a type...

Question 27

Which of the following can be used to secure data on disk drives? (Choose all that apply.)&#10;A) EFS&#10;B) VPN&#10;C) IPSec&#10;D) BitLocker&#10;E) TrueCrypt

Accepted Answer

The answer of Which of the following can be used...

Question 28

What is a penetration tester?

Accepted Answer

The answer of What is a penetration tester?...

Question 29

Firewall rules can be based on which of the following properties? (Choose all that apply.)&#10;A) source IP address&#10;B) destination MAC address&#10;C) protocol&#10;D) context&#10;E) operating system

Accepted Answer

The answer of Firewall rules can be based on which...

Question 30

The 802.11i standard is the newest version of wireless security that uses more advanced encryption methods than the previous versions. What is it more commonly referred to as?&#10;A) WEP&#10;B) WAP&#10;C) WPA&#10;D) WPA2

Accepted Answer

The answer of The 802.11i standard is the newest version...

Question 31

Which of the following is a scanner used as a tool to determine what possible points of entry exist that are open and vulnerable on your system?&#10;A) Port&#10;B) Protocol&#10;C) Ping&#10;D) Finger

Accepted Answer

The answer of Which of the following is a scanner...

Question 32

A(an) ____________ is a type of Trojan program that hides in the operating system files and is extremely difficult to detect.

Accepted Answer

The answer of A(an) ____________ is a type of Trojan...

Question 33

____________ authentication uses keys that are generated by the OS instead of being manually entered by an administrator.

Accepted Answer

The answer of ____________ authentication uses keys that are generated...

Question 34

What is an IDS?

Accepted Answer

The answer of What is an IDS?...

Question 35

What is a VPN?

Accepted Answer

The answer of What is a VPN?...

Question 36

What is the difference between a virus and a worm?

Accepted Answer

The answer of What is the difference between a virus...

Question 37

How should a room that is going to house your servers be equipped?

Accepted Answer

The answer of How should a room that is going...

Question 38

In Linux, passwords are stored in an encrypted format in the ____________ file, which is located in the /etc directory.

Accepted Answer

The answer of In Linux, passwords are stored in an...

Question 39

What is a network security policy?

Accepted Answer

The answer of What is a network security policy?...

Question 40

Briefly describe the three levels of network security policies.

Accepted Answer

The answer of Briefly describe the three levels of network...

Question 41

Describe the purpose of a protocol analyzer and how an attacker could use one to compromise your network.

Accepted Answer

The answer of Describe the purpose of a protocol analyzer...

Deck 10: Introduction to Network Security