chapter 3 | tf

Question 1

In a computerized environment, the audit trail log must be printed onto paper documents.

Answer 1

False

Question 2

Disguising message packets to look as if they came from another user and to gain access to the host’s network is called spooling.

Answer 2

False

Question 3

A formal log-on procedure is the operating system’s last line of defense against unauthorized access.

Answer 3

False

Question 4

Computer viruses usually spread throughout the system before being detected.

Answer 4

True

Question 5

A worm is software program that replicates itself in areas of idle memory until the system fails.

Answer 5

True

Question 6

Viruses rarely attach themselves to executable files.

Answer 6

False

Question 7

Operating system controls are of interest to system professionals but should not
concern accountants and auditors.

Answer 7

False

Question 8

The most frequent victims of program viruses are microcomputers.

Answer 8

True

Question 9

Operating system integrity is not of concern to accountants because only hardware risks are involved.

Answer 9

False

Question 10

Audit trails in computerized systems are comprised of two types of audit logs: detailed logs of individual keystrokes and event-oriented logs.

Answer 10

True

Question 11

In a telecommunications environment, line errors can be detected by using an echo check.

Answer 11

True

Question 12

Firewalls are special materials used to insulate computer facilities

Answer 12

False

Question 13

The message authentication code is calculated by the sender and the receiver of a data transmission.

Answer 13

True

Question 14

The request-response technique should detect if a data communication transmission has been diverted.

Answer 14

True

Question 15

Electronic data interchange translation software interfaces with the sending firm and the value added network.

Answer 15

False

Question 16

A value added network can detect and reject transactions by unauthorized trading partners.

Answer 16

True

Question 17

Electronic data interchange customers may be given access to the vendor’s data files.

Answer 17

True

Question 18

The audit trail for electronic data interchange transactions is stored on magnetic media.

Answer 18

True

Question 19

A firewall is a hardware partition designed to protect networks from power surges.

Answer 19

False

Question 20

To preserve audit trails in a computerized environment, transaction logs are permanent records of transaction.

Answer 20

True

Question 21

Examining programmer authority tables for information about who has access to Data Definition Language commands will provide evidence about who is responsible for creating sub-schemas.

Answer 21

True

Question 22

The standard format for an e-mail address is DOMAIN NAME@USER NAME.

Answer 22

False

Question 23

The network paradox is that networks exist to provide user access to shared resources while one of its most important objectives is to control access.

Answer 23

True

Question 24

IP spoofing is a form of masquerading to gain unauthorized access to a Web server.

Answer 24

True

Question 25

The rules that make it possible for users of networks to communicate are called protocols.

Answer 25

True

Question 26

A factor that contributes to computer crime is the reluctance of many organizations to prosecute criminals for fear of negative publicity.

Answer 26

True

Question 27

Cookies are files created by user computers and stored on Web servers.

Answer 27

False

Question 28

Because of network protocols, users of networks built by different manufacturers are able to communicate and share data.

Answer 28

True

Question 29

The client-server model can only be applied to ring and star topologies.

Answer 29

False

Question 30

Only two types of motivation drive DoS attacks: 1) to punish an organization with which the perpetrator had a grievance; and 2) to gain bragging rights for being able to do it.

Answer 30

False

Question 31

A distributed denial of service (DDoS) attack may take the form of a SYN flood but not a smurf attack.

Answer 31

False

Question 32

The bus topology connects the nodes in parallel.

Answer 32

True

Question 33

A network topology is the physical arrangement of the components of the network.

Answer 33

True

Question 34

A digital signature is a digital copy of the sender’s actual signature that cannot be forged.

Answer 34

False

Question 35

A bus topology is less costly to install than a ring topology.

Answer 35

True

Question 36

A smurf attack involves three participants: a zombie, an intermediary, and the victim.

Answer 36

False

Question 37

In a hierarchical topology, network nodes communicate with each other via a central host computer.

Answer 37

True

Question 38

Polling is one technique used to control data collisions.

Answer 38

True

Question 39

The more individuals that need to exchange encrypted data, the greater the chance that the key will become known to an intruder. To overcome this problem, private key encryption was devised.

Answer 39

False

Question 40

The intermediary in a smurf attack is also a victim.

Answer 40

True

Question 41

A ping is used to test the state of network congestion and determine whether a particular host computer is connected and available on the network.

Answer 41

True

Question 42

HTML tags are customized to delimit attributes, the content of which can be read and processed by computer applications.

Answer 42

False

Question 43

A ping is an Internet maintenance tool that is used to test the state of network congestion and determine whether a particular host computer is connected and available on the network.

Answer 43

True