Chapter 17 - Security

Question 1

4 basic security elements

17-799

Answer 1

physical security
digital security
user education
principle of least privelage

Question 2

what is the objective of a physical barrier?

17-800

Answer 2

to prevent access to computers and network systems

Question 3

you have a mantrap and a key fob. which one is middle barrier and which one is inner barrier?

17-800

Answer 3

mantrap - middle

key fob - inner

Question 4

are mantraps actually a great way to stop tailgating?

17-800

Answer 4

yes

Question 5

what is a key fob?

17-801

Answer 5

security devices you carry with you and they display a randomly generated code that you use for authentication (code usually changes every 60 seconds)

Question 6

tell me a well known vendor of key fobs

17-801

Answer 6

RSA

Question 7

give me an example of RSA token

17-802

Answer 7

SecurID

Question 8

you are using the layered approach for your antivirus software. since this is the case, tell me three areas in your network where you will have the antivirus software.

17-803

Answer 8

the gateways
the servers
the desktops

Question 9

what categorizes something as an appliance?

17-803

Answer 9

it should be a freestanding device that operates in a largely self-contained manner.

Question 10

tell me three of the most common functions that firewalls perform

17-804,805

Answer 10

packet filter
proxy
stateful inspection

Question 11

tell me two types of proxy firewalls

17-805

Answer 11

application level proxy

circuit level proxy

Question 12

give me another name for a proxy firewall

17-805

Answer 12

dual homed firewall, because of the two NICs

Question 13

tell me what these two acronyms stand for:
UDP and ICMP

17-806

Answer 13

user datagram protocol

internet control message protocol

Question 14

what governs the permission on a directory?

17-807

Answer 14

the NTFS permissions and share permissions

Question 15

according to the book, what is the most effective method of preventing viruses, spyware, and harm to data?

17-808

Answer 15

education

Question 16

what is a rootkit?

17-810

Answer 16

software programs that have the ability to hide certain things from the operating system by obtaining administrative level access

Question 17

phishing is a simple form of social engineering, but what about spear phishing and whaling?

17-811

Answer 17

spear phishing - when the attacker phishes for you by posing as someone that you know or something that you trust.

whaling - phishing for a BIG user

Question 18

what’s the difference between spyware and adware?

17-811

Answer 18

spyware is a type of malware

adware is a subcategory of spyware

Question 19

8 kinds of viruses

17-812

Answer 19

1. polymorphic - change form to avoid detection
2. stealth - avoids detection by masking itself from applications
3. retrovirus - attacks or bypasses the antivirus software installed on a computer
4. multipartite - infects boot sector, executable files, and application files all at once
5. armored - covered with protective code
6. companion - attaches to legitimate program, creates a copy of that program but with a different file extension
7. phage - alters programs and databases
8. macro - exploits enhancements made to applications

Question 20

what’s a trojan horse?

17-818

Answer 20

program that enters a system under the guise of another program

Question 21

true/false: disabling the guest account, disabling autorun, and putting a password on the screensaver are ALL good practices for security.

17-820

Answer 21

true

Question 22

what is more effective: a standard format or a low-level format performed on a drive?

17-821

Answer 22

low level

Question 23

what’s a command you can run to erase your SATA drive?

17-822

Answer 23

HDDERASE

Question 24

what command do you use to find out your MAC address?

17-827

Answer 24

IPCONFIG /ALL

Question 25

FAT 32 has two types of protection. what are they?

17-828

Answer 25

share level access privelages

user level access privelages