Chapter 2

Question 1

What type of firewall is best against a SYN flood attack?

Answer 1

Stateful Packet Inspection SPI

Question 2

What does NAC do?

Answer 2

A network management solution and that enables only those devices that accept the policy to the network

Question 3

What does IPsec transport do?

Answer 3

Only encrypts data of packet

Question 4

What wireless access point has minimal functionality?

Answer 4

Controller-based

Question 5

What does S/MIME do?

Answer 5

It encrypts emails and digitally signs them.

Question 6

What is the benefit of SNMP V3?

Answer 6

All data is encrypted

Question 7

What is good about ANT?

Answer 7

Low power, sleep long time low power

Question 8

What windows software helps prevent malware by requiring user authorization to run executables?

Answer 8

DEP - Data Execution Prevention

Question 9

What is Heuristic scanning?

Answer 9

Scans for anomalous behavior

Question 10

What is enumeration?

Answer 10

the process of extracting user names, machine names, network resources, shares and services from a system.

Question 11

What is LDAP?

Answer 11

a directory of the network

Question 12

What is FTPS?

Answer 12

File transfer protocol with SSL/TLS and uses digital certificates to secure file transfer

Question 13

What is the protocol for transmitting VoIP?

Answer 13

SRTP Secure Real Time Transport Protocol

Question 14

What is Affinity?

Answer 14

Load balancer will always use the same server for a particular user or a particular application instance.

Question 15

What is an application proxy?

Answer 15

When the client and the server are incompatible for direct connection to obtain the requested service you use an application proxy

Question 16

What does the -n command do?

Answer 16

Sets number of ping packets to send

Question 17

What does the -l command do?

Answer 17

Sets the size of the packets

Question 18

What is (FRR) False Rejection Rate?

Answer 18

The rate at which authentication attempts are rejected when they should have succeeded.

Question 19

What is (FAR) False Acceptance Rate?

Answer 19

The rate at people who should not be authenticated are.

Question 20

What is (CER) crossover error rate?

Answer 20

The rate at which FAR and FRR are equal.

Question 21

What is ERR equal error rate?

Answer 21

Another name for CER.

Question 22

What is WORM storage?

Answer 22

Write Once Ream Many. High Capacity, cannot be edited.

Question 23

What is a credential scan?

Answer 23

Giving testers logins. Also know as privileged scan.

Question 24

What does Data Execution Prevention do?

Answer 24

Specifically monitors programs from accessing system memory and prevents that.

Question 25

What does netstat -a do?

Answer 25

Shows listening ports

Question 26

What does nmap -0 do?

Answer 26

to guess the operating system

Question 27

What does -PT do?

Answer 27

do a ping with TCP

Question 28

What does -T1 do?

Answer 28

a very slow scan

Question 29

How many times should you wipe a hard drive?

Answer 29

7 times

Question 30

What does Network Address Allocation do?

Answer 30

Can limit how many IP addresses are requested from a single network segment.

Question 31

What does SIP stand for?

Answer 31

Session Initiation Protocol

Question 32

What is the equation to determine the size of a subnet based CIDR?

Answer 32

[2^(32-N)]-2

Question 33

What port is L2TP?

Answer 33

1707

Question 34

What port is PPTP?

Answer 34

1727

Question 35

What port is for media gateway?

Answer 35

2427

Question 36

What does -T5 do?

Answer 36

Very fast scan

Question 37

What does -sT mean?

Answer 37

TCP Full connect scan

Question 38

What does -sW mean?

Answer 38

Windows scan

Question 39

What does -s0 mean?

Answer 39

Protocol scan that will check all protocols?