Domain 4 - Communications and Network Security

Question 1

What is a smurf attack?

Answer 1

A DDoS attack. Directs large volumes of spoofed ICMP packets to a computer network using an IP broadcast address.

Question 2

What is a fraggle attack?

Answer 2

A DDoS attack directing large volumes of traffic to UDP/7 (echo) and UDP/19 (CHARGEN)

Question 3

What is a LAND attack?

Answer 3

A spoofed TCP SYN packet directed to open port on victim IP address with spoofed source IP and destination. Causing the machine to reply to itself on end.

Question 4

What is Code Red?

Answer 4

A worm that exploited a buffer overflow vuln targeting Microsoft IIS web servers.

Question 5

What is a teardrop attack?

Answer 5

A DoS attack conducted by targeting TCP/IP fragmentation reassembly codes, causing fragmented packets to overlap one another on the host receiving them.

Question 6

How long is the typical mac address?

Answer 6

48 bits. Where the first 24 bits are the OUI and last 24 is the serial number called (EI).

Question 7

How longe are IPv6 MAC addresses?

Answer 7

They are now 64 bits. The first 24 is still the OUI and last 40 bits form the serial

Question 8

What is the difference between monitor mode and promiscuous mode?

Answer 8

Monitor mode allows for packet capture without first associating with the AP. Promicious mode requires an administrator to configure the NIC into promiscuous mode.

Question 9

What port is SQL?

Answer 9

Port 1433 TCP

Question 10

What port is DNS?

Answer 10

UDP 53

Question 11

What port is DHCP?

Answer 11

UDP 67 and 68

Question 12

What port is LPD?

Answer 12

TCP 515

Question 13

What port is Telnet?

Answer 13

TCP 23

Question 14

What port is FTP?

Answer 14

Port 20 and 21

Question 15

What port is SNMP?

Answer 15

UDP 161

Question 16

What is frequency hopping spread spectrum (FHSS)?

Answer 16

Uses whole band in small intervals

Question 17

What is direct sequence spread spectrum (DSSS)

Answer 17

Spread radio energy over a single channel, i.e. uses the whole hand at once

Question 18

What is Orthogonal Frequency-Division Multiplexing (OFDM)?

Answer 18

Uses multiple simultaneous transmissions over a single channel

Question 19

What is the IEEE for Bluetooth?

Answer 19

802.15

Question 20

What encryption does IEEE 802.15 v2.1 use?

Answer 20

E0 symmetric cipher. It uses 128bit key but is only as strong as 38 bits. This is a weak cipher.

Question 21

What cipher does IEEE 802.15 v4.1 use?

Answer 21

AES with CBC-MAC (AES-CCM)

Question 22

What is bluesnarfing?

Answer 22

an attacker gains unauthorised access to the bluetooth device

Question 23

What is bluekjacking?

Answer 23

sending unsolicited messages to a victim via hijacked bluetooth connection

Question 24

What is bluebug?

Answer 24

malicious user makes calls, eavesdrop, sends SMS, download and modify phone data.

Question 25

What is wireless access protocol?

Answer 25

WAP is designed to provide secure web services to handheld wireless devices such as smart phones and PDAs.

Question 26

How many collision domains does a bridge have?

Answer 26

2. One on each side.

Question 27

How many collision domains do repeaters and hubs have?

Answer 27

1

Question 28

What is port isolation?

Answer 28

Port isolation allows a network administrator to prevent traffic from being sent between specific ports

Question 29

What types of EAP should no longer be used?

Answer 29

EAP-MD5, LEAP, EAP-FAST

Question 30

What is a datagram?

Answer 30

This is a UDP data

Question 31

What is a segment?

Answer 31

A TCP Stream