Chapter 23 ■ Securing Operating Systems

Question 1

1. Which policy would you create to define the minimum specification if an employee wanted
   to use their own device for email?
   A. MDM
   B. AUP
   C. BYOD
   D. NDA

Answer 1

C. BYOD

Question 2

2. Which term refers to copying data between a mobile device and a computer system in order
   to mirror such things as contacts, programs, pictures, and music?
   A. Calibration
   B. Remote wipe
   C. Pairing
   D. Synchronization

Answer 2

D. Synchronization

Question 3

3. You want to follow the rules of good security administration as set by CompTIA and vendors.
   To do so, which account should be disabled on most Windows operating systems for
   security reasons?
   A. Guest
   B. Print Operators
   C. Power Users
   D. Userone

Answer 3

A. Guest

Question 4

4. What kind of mobile app is being used when the owner’s phone displays a message on the
   screen and emits an extremely loud tone?
   A. Failed login restriction
   B. Antivirus
   C. Locator
   D. Remote wipe

Answer 4

C. Locator

Question 5

5. As a best practice, after a set period of inactivity on a Windows workstation, what should
   happen?
   A. The system should shut down.
   B. The system should restart.
   C. A password-enabled screensaver should automatically start.
   D. The system should log out the user.

Answer 5

C. A password-enabled screensaver should automatically start.

Question 6

6. A new app developed for the Android platform has which extension?
   A. .sdk
   B. .apk
   C. .ipa
   D. .exe

Answer 6

B. .apk

Question 7

7. Which of the following has the goal of allowing a username/password combination to be
   entered once, and then allowing claims to be used for consecutive logins? (Choose the best
   answer.)
   A. Tokens
   B. Kerberos
   C. Single sign-on
   D. Multifactor authentication

Answer 7

C. Single sign-on

Question 8

8. Which of the following passwords is a secure password? (Choose the best answer.)
   A. serverpassword0ne
   B. $erVer1
   C. *erverP%ssw#rd
   D. serverpassword1

Answer 8

C. *erverP%ssw#rd

Question 9

9. What should be implemented to mitigate the risk of a password from being shoulder surfed
   or keylogged?
   A. Antivirus
   B. Privacy screens
   C. Password complexity
   D. Password expiration

Answer 9

D. Password expiration

Question 10

10. What is a best practice for mitigating the risk of a contractor account that is forgotten
    about? (Choose the best answer.)
    A. Time restrictions
    B. Password complexity
    C. Account expiration
    D. Password expiration

Answer 10

C. Account expiration

Question 11

11. Your boss is concerned that USB drives could infect the workstation. What can you do to
    mitigate this risk?
    A. Install current updates to the operating system.
    B. Disable autorun for all media.
    C. Enable BitLocker.
    D. Enable BitLocker to Go.

Answer 11

B. Disable autorun for all media.

Question 12

12. What is normally performed when an employee is offboarded?
    A. Their user account is deleted.
    B. Their user account is unlocked.
    C. Their user account is created.
    D. Their user account’s password is reset.

Answer 12

A. Their user account is deleted.

Question 13

13. By default, when setting up an Android device, what is the relevance to the Google account
    required?
    A. The device requires email setup.
    B. The account is used for cloud synchronizations.
    C. The account is used for desktop backups.
    D. The device requires registration.

Answer 13

B. The account is used for cloud synchronizations.

Question 14

14. You need to secure your mobile device’s lock screen with the highest level of protection.
    Which of the following should you use? (Choose the best answer.)
    A. Fingerprint lock
    B. Face lock
    C. Passcode lock
    D. Swipe lock

Answer 14

A. Fingerprint lock

Question 15

15. You need to encrypt a single file on a Windows Desktop. Which technology should you use?
    A. EFS
    B. BitLocker
    C. NTFS
    D. BitLocker to Go

Answer 15

A. EFS

Question 16

16. A user is in both the Sales group and the Marketing group. The Sales group has full permission
    at the share level, and the Marketing group has read-only permissions. The files on
    NTFS are secured with the Modify permission for the Sales group and the Read & Execute
    permission for the Marketing group. Which permissions with the user have?
    A. Full
    B. Modify
    C. Read-only
    D. Read & Execute

Answer 16

B. Modify

Question 17

17. James just moved a folder on the same partition. What will happen with the permissions for
    the folder?
    A. The permissions will be the same as they were before the move.
    B. The permissions will be inherited from the new parent folder.
    C. The permissions will be configured as the root folder for the drive letter.
    D. The permissions will be blank until configured.

Answer 17

A. The permissions will be the same as they were before the move.

Question 18

18. A user is in the Sales group. The Sales group has no permissions at the share level. The files
    on NTFS are secured with the Modify permission for the Sales group. What permissions
    with the user have?
    A. The user will have the Modify permission when connecting from the network.
    B. The user will have the Modify permission when logged in locally to the computer.
    C. The user will have no access when logged in locally to the computer.
    D. The user will have read-only permissions when connecting from the network

Answer 18

B. The user will have the Modify permission when logged in locally to the computer.

Question 19

19. You are trying to delete a file on the local filesystem, but the operating system will not let
    you. What could be the problem? (Choose the best answer.)
    A. The NTFS Modify permission is applied to the file.
    B. The share permissions are not set to Full Control.
    C. The file attributes are set to Read-only.
    D. The file attributes are set to System.

Answer 19

C. The file attributes are set to Read-only.

Question 20

20. You need to enforce profile security requirements on mobile devices. Which should you use
    to achieve this goal?
    A. AUP
    B. NDA
    C. BYOD
    D. MDM

Answer 20

D. MDM