Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Security + Exam training > CompTIA Security+: Enterprise Security Capabilities > Flashcards

CompTIA Security+: Enterprise Security Capabilities Flashcards

1
Q

What port is Kerboros

A

88
network auth protocol that allows for communication over a non-secure network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What port is SNMP

A

161/162

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What port is DHCP

A

67/68

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What port is TACACS+

A

49

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What port is FTPS

A

989/990 Uses TLSS for encryption; can also run on ports 20/21

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What port is RADIUS

A

1812/1813

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What port is Diameter

A

3868 ; upgrade to RADIUS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is SRTP

A

5004

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What does DNSSEC do?

A

Provides an extra layer of trust on top of DNS by providing authentication; does not provide confidentiality.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What helps to facilitate signature validation within DNSSEC?

A

RRSIG - contains a cryptographic signature
DNSKEY- contains a public signing key
DS- contains the hash of a DNSKey record
NSEC and NSEC3- for explicit denial of existence of a DNS record
CDNSKEY and CDS - for a child requesting updates to DS record(s) in the parent zone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What prevents Sender address forgery?

A

SPF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What does SPFv1 do

A

Protects the envelope sender address, which is used for messages delivery

spfv1 permits domain owners to designate their mail sending policy(e.g. which mail servers they use to send mail from their domain)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is DKIM

A

DKIM is an email authentication method conducted between the outbound and inbound mail server or Message Transfer Agents.

With DKIM, the outbound mail server appends a digital signature to the mail then the inbound server verifies the signature by looking up the public key and then comparing it with the signature from the specified outgoing mail server.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is DMARC?

A

DMARC is an email authentication, policy, and reporting protocol. It builds on the widely deployed and previously discussed SPF and DKIM protocols, offering linkage to the sender or “From:” domain name, published policies for recipient handling of authentication failures, reporting from receivers to senders, to enhance and monitor protection of the domain from fraudulent email.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is FIM?

A

File Integrity Monitoring, or FIM, examines operating system files, configuration files, registries, application software, and Linux system files for changes and for indicators of compromise. Windows FIM provides alerts about suspicious activity such as file and registry key creation or deletion.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q
A

Security + Exam training (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions