Chapt 10

Question 1

to harden a device, you can disable the communications features such as ________ and _______.

Answer 1

bluetooth and NFC

Question 2

the key combination of ________ lets a user lock their computer when they leave

Answer 2

win + L or ctrl alt del

Question 3

________ is the process of scrambling the data in user files so that others cannot read them

Answer 3

encryption

Question 4

to protect a computer against viruses and spyware, install _______.

Answer 4

anti malware

Question 5

the three types of accounts on a computer are what?

Answer 5

guest, admin, and standard user

Question 6

the ______ user account should be disabled for security purposes unless it is being used

Answer 6

guest

Question 7

passwords should not be ______ among different websites.

Answer 7

reused

Question 8

many companies will have passwords ______ periodically as part of a security policy.

Answer 8

expire

Question 9

the process of providing proper credentials to access a computer resource is called _________.

Answer 9

authentication

Question 10

risks of using public workstations include what three things?

Answer 10

shoulder surfing, keyloggers ( or other malware), unsecured wireless networks

Question 11

_________ wifi networks are unsecure and should not be used.

Answer 11

open

Question 12

what should be true about a web browser’s version before you use it?

Answer 12

should be the most current version

Question 13

what is the name of the feature that completes your name and address for you in web pages?

Answer 13

auto fill

Question 14

what is the name of a file a website downloads to your computer to identify you?

Answer 14

cookie

Question 15

what are two ways to identify a secure website?

Answer 15

https and the lock symbol

Question 16

what are three symptoms of adware?

Answer 16

pop ups, browser redirection, search engine redirection

Question 17

to protect your security, you should limit the use of _______ on the internet.

Answer 17

personally identifiable information (PII)

Question 18

you are using chrome, and you want to ensure that when you type in your first name to a web page, all of your other information fills in the fields for you. what should you do?

enable cache, enable incognito, enable autofill, enable cookies

Answer 18

enable autofill

Question 19

you have been asked to give training on network security. for your section on password management, which options should you recommend to users? choose two:

a) use the same password on multiple systems so that they are easy to remember
b) do not reuse the same password after you are required to change it.
c) do not use complex passwords because they are easy to forget.
d) change default passwords on systems

Answer 19

b) do not reuse the same password after you are required to change it.

d) change default passwords on systems

Question 20

what option can you configure on your workstation to increase security when you leave your desk?

screensaver password, file encryption, multifactor authentication, single sign on

Answer 20

screen saver password

Question 21

claire is browsing the internet and wants to know whether its safe to enter her credit card info into a website. what do you tell her to look for

SSL:// TLS:// HTTPS:// HTTP://

Answer 21

HTTPS://

Question 22

which of the following types of data should be considered confidential and handled appropriately? choose two.

financial info, social networking, customer info, contact info

Answer 22

financial info, customer info

Question 23

you have just landed at an airport and have an unexpected six hour layover. you want to use your smartphone to get some work done. what should you disable as a precautionary device hardening measure to help prevent potential attacks? choose two:

NFC, Bluetooth, Autofill, FFC

Answer 23

NFC, Bluetooth

Question 24

your coworker rachel has recently discovered that when she starts typing her name into a field in a web browser, her whole name appears as well as her address in the appropriate boxes. what is this due to?

autofill, adware infection, single sign on, suspicious hyperlinks

Answer 24

autofill

Question 25

which of the following actions are considered as web browsing best practices? choose three:

disabling autofill, limiting the use of PII, updating plugins and toolbars, closing untrusted source warnings

Answer 25

disabling autofill, limiting the use of PII, updating plugins and toolbars

Question 26

you have remotely logged into your corporate network. which of the following is used to ensure encryption of data in transit between your laptop and corporate servers?

email encryption
HTTPS
Host firewall
VPN

Answer 26

VPN

Question 27

due to a recent string of theft in your office, you need to harden your local system. what two actions are most appropriate for your situation?

enable encryption
install anti-malware
disable unused services
install a hardware lock

Answer 27

enable encryption, install a hardware lock

Question 28

you enabled file encryption on your local computer. while you were on vacation, one of your co-workers managed to get onto your computer and share your important files with other users. how did they do this?

a) they logged on with your username and password
b) all users logging into the system have access to encrypted files
c) they used the disk recovery tool to access the encrypted files.
d) they logged on and disabled encryption

Answer 28

a) they logged on with your username and password

Question 29

you just read an article about an internet worm recently causing problems. what type of software should you install to protect yourself from this worm?

antivirus, antispyware, software firewall, anti spam

Answer 29

antivirus

Question 30

your manager just got a new workstation and is not part of a domain. he wants to know which user accounts he should disable to increase security. what should you tell him to disable?

admin, guest, user, power user

Answer 30

guest

Question 31

which of the following statements is true regarding web browser plugins, toolbars and extensions?

a) they are dangerous and should be deleted
b) they should be updated to the newest versions
c) they only function in microsoft edge or internet explorer
d) they will be detected and removed by antivirus software

Answer 31

b) they should be updated to the newest versions

Question 32

you recieve an email in your inbox from your friend sara. the title of the email is “this is so cool!” and inside the email is an attachment with an .exe extension. what should you do?

click the attachment
run virus scan, then click the attachment
call sara to see if she sent you the email
delete the email

Answer 32

call sara to see if she sent you the email

Question 33

which type of software will help protect your computer from malicious network traffic?

software firewall, password complexity tool, anti spyware, antivirus

Answer 33

software firewall

Question 34

you are in a library that has free computers to use for internet browsing. which of the following should you possibly be concerned about? chose all that apply

software firewall
shoulder surfing
keyloggers
unsecured wireless network

Answer 34

shoulder surfing
keyloggers
unsecured wireless network

Question 35

which of the following are considered characteristics of a strong password? choose two:

uses patterns
uses symbols, numbers and letters
contains PII
long

Answer 35

uses symbols, numbers and letters

long

Question 36

you recently recieved a new workstation and need to secure it properly before browsing the internet. which actions should you take? choose two:

a) install antivirus
b) upgrade your browser
c) enable acceptance of cookies
d) enable autofill

Answer 36

a) install antivirus
b) upgrade your browser

Question 37

the managers at your company have decided to implement stricter security policies on the company’s local network. which of the following should they do? choose two:

a) enable HTTPS on the corporate web server
b) disable host firewalls
c) develop written policies and procedures
d) enforce password policies

Answer 37

c) develop written policies and procedures
d) enforce password policies

Question 38

which of the following is NOT a category of a device hardening technique?

A) protecting against network threats
B) updating devices and using system passwords
C) adding and enabling software and services
D) browsing the internet safely

Answer 38

C adding and enabling software and services

Device Hardening Techniques:
- updating devices and using system passwords
- protecting against network threats
- removing and disabling software and services
- browsing the internet safely

Question 39

which of the following actions can you take to increase the security of your web browser? choose all that apply.

A) disable autofill
B) enable SSL
C) enable cookies
D) upgrade browser to the newest version

Answer 39

A) Disable autofill
D) upgrade browser to the newest version

incorrect B) SSL is used by secure websites, but it is not something you enable on a client computer.

Question 40

which of the following statements are true of the user account? choose 2.

A) this account is used to prevent unauthorized changes to a computer
B) this type of account makes changes that will affect other operator
C) this account is created by default and it should be disabled
D) this account can essentially do anything on the computer

Answer 40

A, B