13.2

Question 1

Baseline Configuration Purpose

Answer 1

Maintain consistent level of security; Help mitigate flaws and security risks.

Question 2

Causes of Privilege Escalation

Answer 2

Error by administrator; weak passwords; bad coding in software.

Question 3

Baseline Accounts

Answer 3

Minimum 2 accounts; administrator and user.

Question 4

4 Security Baseline Settings

Answer 4

1. Minimum Password Length
2. Account lockout duration
3. Disabling unnecessary services
4. “Allow administration by” option

Question 5

Remote Access Trojan

Answer 5

A remote access Trojan provides full or partial access to the victim’s system

Question 6

Data Sending Trojan

Answer 6

This type sends data such as key strokes, passwords, or cookies to the attacker via email or a back door

Question 7

Destructive Trojan

Answer 7

These types cause havoc like deleting files, corrupting the OS, or crashing the entire system. Usually the purpose is to disable an antivirus or firewall

Question 8

Proxy Trojans

Answer 8

This sort of Trojan is used as a jumping point for an attack on another system in order to mask the attacker’s identity.

Question 9

Goal of Denial of Service

Answer 9

Deny legitimate users from accessing information or services.

Question 10

Signs of DoS

Answer 10

unusually slow network
unavailability of particular website
dramatic increase of spam mail

Question 11

Session Hijacking

Answer 11

Exploits the session between devices; must be on the same network.

Question 12

Session Hijacking Prevention

Answer 12

Encryption, Secure Protocols, Limit Incoming Connections, Minimize Remote Access, Strong Authentication, Using Switches instead of Hubs, User Training