Chapter 8 Flashcards
Which of the following is considered to be the most critical SQL vulnerability?
null SA password
Which standardized remote file system protocol replaced SMB in Windows 2000 Server and later?
Common Internet File System
Which of the following programs includes several buffer overflow exploit plug-ins?
Metasploit
Which of the following is an OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users?
Mandatory Access Control
When using the Common Internet File System (CIFS), which security model will require network users to have a user name and password to access a specific resource?
User-level security
In Windows Server 2016, the administrator must enable IIS manually to use it. True or False?
True
Which of the following is a well-known SMB hacking tool? (Choose all that apply.)
SMBRelay
L0phtcrack’s SMB Packet Capture utility
An interprocess communication mechanism that allows a program running on one host to run code on a remote host is known as which of the following?
remote procedure call (RPC)
NetBios is not available in Windows Vista, Server 2008, and later versions of Windows. However, NetBios should be understood by a security professional because it is used for which of the following?
backward compatibility
Which of the following is the most efficient way to determine which OS a company is using?
Call the company and ask.
SMB is used to share files and usually runs on top of NetBIOS, NetBEUI, or which of the following?
TCP/IP
What is the current file system that Windows utilizes that has strong security features?
NTFS
MBSA performs which of the following security checks? (Choose all that apply.)
Security update checks
IIS checks
NetBIOS over TCP/IP is called which of the following in Windows Server 2003?
NetBT
Windows 10, Windows 8, Windows Server 2016, and Windows Server 2012 have most services and features enabled by default.
False
Which of the following are more difficult to detect today because programmers develop them to make legitimate calls on outbound ports that an IDS or firewall wouldn’t detect?
Trojan programs
Which of the following commands would you enter from the directory you want to analyze to display any alternate data streams?
dir /r
Which program can detect rootkits on *nix systems?
chkrootkit
A good password policy should include which of the following? (Choose all that apply.)
Mandates password complexity
Specifies a minimum password length
Ubuntu and Debian Linux use what command to update and manage their RPM packages?
apt-get
Which of the following is an SELinux OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users?
Mandatory Access Control
Which of the following is an interprocess communication mechanism that allows a program running on one host to run code on a remote host?
RPC
SMB2 was released with which version of Windows?
Windows Vista
Which organization offers free benchmark tools for Windows and Linux?
Center for Internet Security
Which of the following is a Window’s client/server technology designed to manage patching and updating systems software from the network?
WSUS
When using the Common Internet File System (CIFS), which security model does not require a password to be set for the file share?
Share-level security
Red Hat and Fedora Linux use what command to update and manage their RPM packages?
yum
The MSBA tool can quickly identify missing patches and misconfigurations.
True
Which of the following is a common Linux rootkit?
Linux Rootkit 5
Which of the following is an open-source implementation of CIFS?
Samba
