CH 9

Question 1

Which of the following passwords is
best to use on a system containing highly
sensitive information?
a. BillySmith
b. 0OxqH}ml2-wO
c. H@ckAt!ack23
d. MySecretPassword

Answer 1

C

Question 2

How do VPNs accomplish the
“private” part of a virtual private
network?
a. Tunneling
b. Concentrating
c. Encapsulating
d. Authenticating

Answer 2

A

Question 3

Which of the following terms refers
to attacking a Web server by forcing it to
respond to a flood of ping packets so
that the server can’t respond to normal
traffic?
a. DDR
b. ICMP
c. DoS
d. Worm

Answer 3

C

Question 4

Which of the following is a guideline
for creating a security policy?
a. A security policy should be cryptic so
that attackers can’t understand it.
b. A security policy should be general
enough so that rules can be added as
needed.
c. A security policy should be
enforceable.
d. A security policy should have
different provisions depending on the
user.

Answer 4

C

Question 5

Which of the following questions
must be answered before determining
what level of security a network
requires? (Choose all that apply.)
a. What tools are used to attack the
network?
b. What’s being protected?
c. From whom should data be
protected?
d. How much data is on the network?

Answer 5

B, C

Question 6

Which of the following should be a
common element in any level of security
policy? (Choose all that apply.)
a. Complex passwords
b. Backup procedures
c. Data encryption
d. Virus protection

Answer 6

B, C

Question 7

Which phrase from the following list
best completes this sentence? If there’s
access to the equipment, there’s no
\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_.
a. physical security
b. network monitoring
c. data integrity
d. security policy

Answer 7

A

Question 8

Which of the following is a
requirement for rooms housing network
servers?
a. Separate heating system
b. Adequate cooling
c. False ceilings
d. Shared electrical circuit

Answer 8

B

Question 9

Which procedure specifies what
resources users can access and the tasks
they can perform on a network?
a. Authentication
b. Auditing
c. Authorization
d. Logon

Answer 9

C

Question 10

If you want to allow a blank password
on a Windows computer, which of the
following do you set the password
minimum length to?
a. Blank
b. 0
c. -1
d. Nothing

Answer 10

B

Question 11

.If you want to prevent password
guessing to foil intruders, you should
enable which of the following?
a. Account lockout
b. Password expiration
c. Password disabling
d. Account policies

Answer 11

A

Question 12

Which authentication protocol is
used in a Windows domain
environment?
a. AES
b. Kerberos
c. EAP
d. MS-CHAP v2

Answer 12

B

Question 13

To encrypt data stored on a hard
drive on a Windows Server computer,
you should use which of the following?
a. EFS
b. AES
c. NTFS
d. PAP

Answer 13

A

Question 14

If network administrators want to be
informed when an attempt has been
made to compromise the network, what
should they use?
a. VPN
b. AES
c. IDS
d. EFS

Answer 14

C

Question 15

Which VPN mode should you use if
you want to establish a secure tunnel
between a main office and a branch
office?
a. Client-to-gateway
b. Site-to-site
c. Site to gateway
d. Host to site

Answer 15

B

Question 16

What device should you consider
installing if you want countermeasures
to take place when an attack is
detected?
a. Content filter
b. IPS
c. Antivirus software
d. HIDS

Answer 16

B