Exam labs

Question 1

Which attack listens to network traffic of a computer resource?

A. Resource gathering
B. Denial of service
C. ARP poisoning
D. Eavesdropping
E. Logic bomb

Answer 1

D. Eavesdropping

Question 2

The default password length for a Windows Server domain controller is:

A. 0
B. 5
C. 7
D. 14

Answer 2

C. 7

Question 3

What does NAT do?

A. It encrypts and authenticates IP packets.
B. It provides caching and reduces network traffic.
C. It translates public IP addresses to private addresses and vice versa.
D. It analyzes incoming and outgoing traffic packets.

Answer 3

C. It translates public IP addresses to private addresses and vice versa.

Question 4

Role separation improves server security by:

A. Enforcing principle of least privilege.
B. Installing applications on separate hard disks.
C. Physically separating high security servers from other servers.
D. Placing servers on separate VLANs.

Answer 4

A. Enforcing principle of least privilege.

Question 5

The Graphic Design Institute hires you to help them set up a server for their 20-person
team.
As a general practice of hardening the server, you start by performing which two tasks?
(Choose two.)

A. Disable the guest account.
B. Rename the admin account.
C. Remove the account lockout policy.
D. Format partitions with FAT32.

Answer 5

A. Disable the guest account.

B. Rename the admin account.

Question 6

A network sniffer is software or hardware that:

A. Records user activity and transmits it to the server
B. Captures and analyzes network communication
C. Protects workstations from intrusions
D. Catalogs network data to create a secure index

Answer 6

B. Captures and analyzes network communication

Question 7

Your password is 1Vu*cI!8sT.
Which attack method is your password vulnerable to?

A. Rainbow table
B. Brute force
C. Spidering
D. Dictionary

Answer 7

A. Rainbow table

Question 8

A group of users has access to Folder A and all of its contents. You need to prevent some
of the users from accessing a subfolder inside Folder A.
What should you do first?

A. Disable folder sharing
B. Hide the folder
C. Change the owner
D. Block inheritance

Answer 8

D. Block inheritance

Question 9

Many Internet sites that you visit require a user name and password.
How should you secure these passwords?

A. Save them to a text file
B. Enable session caching
C. Configure the browser to save passwords
D. Save them to an encrypted file
E. Reuse the same password

Answer 9

D. Save them to an encrypted file

Question 10

Bridging is a process of sending packets from source to destination on OSI layer 3.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Routing
B. Switching
C. Repeating
D. No change is needed.

Answer 10

A. Routing

Question 11

You need to install a domain controller in a branch office. You also need to secure the
information on the domain controller. You will be unable to physically secure the server.
Which should you implement?

A. Read-Only Domain Controller
B. Point-to-Point Tunneling Protocol (PPTP)
C. Layer 2 Tunneling Protocol (L2TP)
D. Server Core Domain Controller

Answer 11

A. Read-Only Domain Controller

Question 12

What are two attributes that an email message may contain that should cause a user to
question whether the message is a phishing attempt? (Choose two.)

A. An image contained in the message
B. Spelling and grammar errors
C. Threats of losing service
D. Use of bold and italics

Answer 12

B. Spelling and grammar errors

C. Threats of losing service

Question 13

The WPA2 PreShared Key (PSK) is created by using a passphrase (password) and salting
it with the WPS PIN.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Service Set Identifier (SSID)
B. Admin password
C. WEP key
D. No change is needed

Answer 13

A. Service Set Identifier (SSID)

Question 14

To implement WPA2 Enterprise, you would need a/an:

A. RADIUS server
B. SSL server
C. WEP server
D. VPN server

Answer 14

A. RADIUS server

Question 15

You are volunteering at an organization that gets a brand new web server. To make the
server more secure, you should add a second administrator account.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Disable unused services
B. Enable LM authentication
C. Enable NTLM authentication
D. No change is needed.

Answer 15

A. Disable unused services

Question 16

Which two characteristics should you recommend for a user’s domain password? (Choose
two.)

A. Hard to guess
B. Includes Unicode characters
C. Easy to remember
D. Easy to increment

Answer 16

A. Hard to guess

B. Includes Unicode characters

Question 17

What is a service set identifier (SSID)?

A. A wireless encryption standard
B. The wireless LAN transmission type
C. The broadcast name of an access point
D. A wireless security protocol

Answer 17

C. The broadcast name of an access point

Question 18

Which is the minimum requirement to create BitLocker-To-Go media on a client computer?

A. Windows XP Professional Service Pack 3
B. Windows Vista Enterprise Edition
C. Windows 7 Enterprise Edition
D. Windows 2000 Professional Service Pack 4

Answer 18

A. Windows XP Professional Service Pack 3

Question 19

The Active Directory controls, enforces, and assigns security policies and access rights for
all users.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. NTFS permissions
B. User Account Control
C. Registry
D. No change is needed

Answer 19

D. No change is needed

Question 20

Which two security settings can be controlled by using group policy? (Choose two.)

A. Password complexity
B. Access to the Run… command
C. Automatic file locking
D. Encrypted access from a smart phone

Answer 20

A. Password complexity

B. Access to the Run… command

Question 21

Coho Winery wants to increase their web presence and hires you to set up a new web
server. Coho already has servers for their business and would like to avoid purchasing a
new one.
Which server is best to use as a web server, considering the security and performance
concerns?

A. SQL Server
B. File Server
C. Domain Controller
D. Application Server

Answer 21

D. Application Server

Question 22

Cookies impact security by enabling: (Choose two.)

A. Storage of Web site passwords.
B. Higher security Web site protections.
C. Secure Sockets Layer (SSL).
D. Web sites to track browsing habits.

Answer 22

A. Storage of Web site passwords.

D. Web sites to track browsing habits.

Question 23

To protect systems from buffer overflow errors, you can use:

A. Antivirus software
B. Data Execution Prevention
C. A proxy server
D. An Intruder Prevention System

Answer 23

B. Data Execution Prevention

Question 24

Account lockout policies are used to prevent which type of security attack?

A. Brute force attacks
B. Users sharing passwords
C. Social engineering
D. Passwords being reused immediately

Answer 24

A. Brute force attacks

Question 25

A user who receives a large number of emails selling prescription medicine is probably
receiving pharming mail.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Malware
B. Spoofed mail
C. Spam
D. No change is needed.

Answer 25

C. Spam

Question 26

You want to make your computer resistant to online hackers and malicious software.
What should you do?

A. Configure a forward proxy.
B. Install anti-virus software.
C. Enable spam filtering.
D. Turn on Windows Firewall.

Answer 26

B. Install anti-virus software.

Question 27

The certificate of a secure public Web server on the Internet should be:

A. Issued by a public certificate authority (CA)
B. Signed by using a 4096-bit key
C. Signed by using a 1024-bit key
D. Issued by an enterprise certificate authority (CA)

Answer 27

A. Issued by a public certificate authority (CA)

Question 28

The primary method of authentication in an SSL connection is passwords.
To answer, choose the option “No change is needed” if the underlined text is correct. If the
underlined text is not correct, choose the correct answer.

A. No change is needed
B. Certificates
C. IPsec
D. Biometrics

Answer 28

B. Certificates

Question 29

What is a common method for password collection?

A. Email attachments
B. Back door intrusions
C. SQL Injection
D. Network sniffers

Answer 29

D. Network sniffers

Question 30

You are an intern and are working remotely.
You need a solution that meets the following requirements:
✑ Allows you to access data on the company network securely
✑ Gives you the same privileges and access as if you were in the office
What are two connection methods you could use? (Choose two.)

A. Forward Proxy
B. Virtual Private Network (VPN)
C. Remote Access Service (RAS)
D. Roaming Profiles

Answer 30

B. Virtual Private Network (VPN)

C. Remote Access Service (RAS)

Question 31

A digitally signed e-mail message:

A. Validates the recipient
B. Validates the sender
C. Is encrypted
D. Is virus-free

Answer 31

B. Validates the sender

Question 32

To keep third-party content providers from tracking your movements on the web, enable
InPrivate Browsing.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed’’ if the underlined text makes the statement correct.

A. InPrivate Filtering
B. SmartScreen Filter
C. Compatibility Mode
D. No change is needed

Answer 32

A. InPrivate Filtering

Question 33

Keeping a server updated:

A. Maximizes network efficiency
B. Fixes security holes
C. Speeds up folder access
D. Synchronizes the server

Answer 33

B. Fixes security holes

Question 34

Humongous Insurance needs to set up a domain controller in a branch office.
Unfortunately, the server cannot be sufficiently secured from access by employees in that
office, so the company is installing a Primary Domain Controller.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Read-Only Domain Controller
B. Backup Domain Controller
C. Active Directory Server
D. No change is needed.

Answer 34

A. Read-Only Domain Controller

Question 35

Phishing is an attempt to:

A. Obtain information by posing as a trustworthy entity.
B. Limit access to e-mail systems by authorized users.
C. Steal data through the use of network intrusion.
D. Corrupt e-mail databases through the use of viruses.

Answer 35

A. Obtain information by posing as a trustworthy entity.

Question 36

What is an example of non-propagating malicious code?

A. A back door
B. A hoax
C. A Trojan horse
D. A worm

Answer 36

A. A back door

Question 37

You create a web server for your school. When users visit your site, they get a certificate
error that says your site is not trusted.
What should you do to fix this problem?

A. Install a certificate from a trusted Certificate Authority (CA).
B. Use a digital signature.
C. Generate a certificate request.
D. Enable Public Keys on your website.

Answer 37

A. Install a certificate from a trusted Certificate Authority (CA).

Question 38

Windows Server Update Services (WSUS) is a tool that:

A. Updates data stored in Windows servers
B. Manages the services that run on a server
C. Updates licensing for Windows servers
D. Manages updates for Microsoft software

Answer 38

D. Manages updates for Microsoft software

Question 39

The purpose of Microsoft Baseline Security Analyzer is to:

A. List system vulnerabilities.
B. Apply all current patches to a server.
C. Set permissions to a default level.
D. Correct a company’s security state.

Answer 39

A. List system vulnerabilities.

Question 40

In Internet Explorer 8, the InPrivate Browsing feature prevents:

A. Unauthorized private data input.
B. Unencrypted communication between the client computer and the server.
C. User credentials from being sent over the Internet.
D. Any session data from being stored on the computer.

Answer 40

D. Any session data from being stored on the computer.

Question 41

Which enables you to change the permissions on a folder?

A. Take ownership
B. Extended attributes
C. Auditing
D. Modify

Answer 41

D. Modify

Question 42

To prevent users from copying data to removable media, you should:

A. Lock the computer cases
B. Apply a group policy
C. Disable copy and paste
D. Store media in a locked room

Answer 42

B. Apply a group policy

Question 43

Which technology enables you to filter communications between a program and the
Internet?

A. RADIUS server
B. Antivirus software
C. Software firewall
D. BitLocker To Go

Answer 43

C. Software firewall

Question 44

This question requires that you evaluate the underlined text to determine if it is correct.
The first line of defense against attacks from the Internet is a software firewall.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed’’ if the underlined text makes the statement correct.

A. hardware firewall
B. virus software
C. radius server
D. No change is needed

Answer 44

A. hardware firewall

Question 45

Which type of firewall allows for inspection of all characteristics of a packet?

A. NAT
B. Stateful
C. Stateless
D. Windows Defender

Answer 45

B. Stateful

Question 46

You suspect a user’s computer is infected by a virus.
What should you do first?

A. Restart the computer in safe mode
B. Replace the computer’s hard disk drive
C. Disconnect the computer from the network
D. Install antivirus software on the computer

Answer 46

D. Install antivirus software on the computer

Question 47

You need to prevent unauthorized users from reading a specific file on a portable computer
if the portable computer is stolen.
What should you implement?

A. File-level permissions
B. Advanced Encryption Standard (AES)
C. Folder-level permissions
D. Distributed File System (DFS)
E. BitLocker

Answer 47

E. BitLocker

Question 48

Basic security questions used to reset a password are susceptible to:

A. Hashing
B. Social engineering
C. Network sniffing
D. Trojan horses

Answer 48

B. Social engineering

Question 49

Which is a special folder permission?

A. Read
B. Modify
C. Write
D. Delete

Answer 49

D. Delete

Question 50

Network Access Protection (NAP) enables administrators to control access to network
resources based on a computer’s:

A. Encryption level
B. Warranty
C. Physical location
D. Configuration

Answer 50

D. Configuration

Question 51

A mail system administrator scans for viruses in incoming emails to increase the speed of
mail processing.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Decrease the chances of a virus getting to a client machine
B. Verify that the senders of the messages are legitimate
C. Ensure that all links in the messages are trustworthy
D. No change is needed.

Answer 51

A. Decrease the chances of a virus getting to a client machine

Question 52

Before you deploy Network Access Protection (NAP), you must install:

A. Internet Information Server (IIS)
B. Network Policy Server (NPS)
C. Active Directory Federation Services
D. Windows Update Service

Answer 52

B. Network Policy Server (NPS)

Question 53

The company that you work for wants to set up a secure network, but they do not have any
servers.
Which three security methods require the use of a server? (Choose three.)

A. 802.1x
B. WPA2 Personal
C. WPA2 Enterprise
D. RADIUS
E. 802.11ac

Answer 53

A. 802.1x
C. WPA2 Enterprise
D. RADIUS

Question 54

What are three major attack vectors that a social engineering hacker may use? (Choose
three.)

A. Telephone
B. Reverse social engineering
C. Waste management
D. Honey pot systems
E. Firewall interface

Answer 54

A. Telephone
B. Reverse social engineering
C. Waste management

Question 55

Password history policies are used to prevent:

A. Brute force attacks
B. Users from sharing passwords
C. Social engineering
D. Passwords from being reused immediately

Answer 55

D. Passwords from being reused immediately

Question 56

E-mail bombing attacks a specific entity by:

A. Redirecting all e-mail to another entity
B. Sending high volumes of e-mail
C. Tracing e-mail to the destination address
D. Triggering high levels of security alerts

Answer 56

B. Sending high volumes of e-mail

Question 57

Which two are included in an enterprise antivirus program? (Choose two.)

A. Attack surface scanning
B. On-demand scanning
C. Packet scanning
D. Scheduled scanning

Answer 57

B. On-demand scanning

D. Scheduled scanning

Question 58

The Windows Firewall protects computers from unauthorized network connections.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed’’ if the underlined text makes the statement correct.

A. Email viruses
B. Phishing scams
C. Unencrypted network access
D. No change is needed

Answer 58

D. No change is needed

Question 59

When conducting a security audit the first step is to:

A. Inventory the company’s technology assets
B. Install auditing software on your servers
C. Set up the system logs to audit security events
D. Set up a virus quarantine area

Answer 59

A. Inventory the company’s technology assets

Question 60

Setting a minimum password age restricts when users can:

A. Request a password reset
B. Change their passwords
C. Log on by using their passwords
D. Set their own password expiration

Answer 60

B. Change their passwords

Question 61

The purpose of a digital certificate is to verify that a:

A. Public key belongs to a sender.
B. Computer is virus-free.
C. Private key belongs to a sender.
D. Digital document is complete.

Answer 61

A. Public key belongs to a sender.

Question 62

You create a new file in a folder that has inheritance enabled.
By default, the new file:

A. Takes the permissions of the parent folder
B. Does not take any permissions
C. Takes the permissions of other folders in the same directory
D. Takes the permissions of other files in the same directory

Answer 62

A. Takes the permissions of the parent folder

Question 63

Dumpster diving refers to a physical threat that a hacker might use to look for information
about a computer network.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Phishing
B. Malware
C. Reverse Social engineering
D. No change is needed

Answer 63

D. No change is needed

Question 64

You need to grant a set of users write access to a file on a network share. You should add
the users to:

A. A security group
B. The Authenticated Users group
C. The Everyone group
D. A distribution group

Answer 64

B. The Authenticated Users group

Question 65

Your company requires that users type a series of characters to access the wireless
network.
The series of characters must meet the following requirements:
✑ Contains more than 15 characters
✑ Contains at least one letter
✑ Contains at least one number
✑ Contains at least one symbol
Which security technology meets these requirements?

A. WEP
B. WPA2 PSK
C. WPA2 Enterprise
D. MAC filtering

Answer 65

B. WPA2 PSK

Question 66

The manager of a coffee shop hires you to securely set up WiFi in the shop.
To keep computer users from seeing each other, what should you use with an access
point?

A. Client bridge mode
B. Client isolation mode
C. MAC address filtering
D. Client mode

Answer 66

B. Client isolation mode

Question 67

You have two servers that run Windows Server. All drives on both servers are formatted by
using NTFS.
You move a file from one server to the other server. The file’s permissions in the new
location will:

A. Enable full access to the everyone group
B. Restrict access to the Administrators group
C. Inherit the destination folder’s permissions
D. Retain the original folder’s permissions

Answer 67

C. Inherit the destination folder’s permissions

Question 68

Which three elements does HTTPS encrypt? (Choose three.)

A. Browser cookies
B. Server IP address
C. Port numbers
D. Website URL
E. Login information

Answer 68

A. Browser cookies
D. Website URL
E. Login information

Question 69

Shredding documents helps prevent:

A. Man-in-the-middle attacks
B. Social engineering
C. File corruption
D. Remote code execution
E. Social networking

Answer 69

B. Social engineering

Question 70

What are three examples of two-factor authentication? (Choose three.)

A. A fingerprint and a pattern
B. A password and a smart card
C. A username and a password
D. A password and a pin number
E. A pin number and a debit card

Answer 70

A. A fingerprint and a pattern
B. A password and a smart card
E. A pin number and a debit card

Question 71

Passwords that contain recognizable words are vulnerable to a:

A. Denial of Service attack
B. Hashing attack
C. Dictionary attack
D. Replay attack

Answer 71

C. Dictionary attack

Question 72

A brute force attack:

A. Uses response filtering
B. Tries all possible password variations
C. Uses the strongest possible algorithms
D. Targets all the ports

Answer 72

B. Tries all possible password variations

Question 73

The purpose of User Account Control (UAC) is to:

A. Encrypt the user’s account
B. Limit the privileges of software
C. Secure your data from corruption
D. Facilitate Internet filtering

Answer 73

B. Limit the privileges of software

Question 74

You need to allow Remote Desktop to be able to get through your firewall for users on your
company’s network.
Which settings should you enable?

A. Remote Assistance: Home/Work (Private)
B. Remote Desktop: Public
C. Remote Desktop: Home/Work (Private)
D. Remote Assistance: Domain

Answer 74

A. Remote Assistance: Home/Work (Private)

Question 75

Windows Firewall is a built-in. host-based, stateless firewall.
Select the correct answer if the underlined text does not make the statement correct. Select
“No change is needed” if the underlined text makes the statement correct.

A. Stateful
B. Network layer
C. Packet filter
D. No change is needed

Answer 75

A. Stateful

Question 76

An attorney hires you to increase the wireless network security for the law firm’s office. The
office has a very basic network, with just a modem and a router.
Which of these security modes offers the highest security?

A. WPA-Personal
B. WEP
C. WPA2-Personal
D. WPA-Enterprise

Answer 76

C. WPA2-Personal

Question 77

What is the primary advantage of using Active Directory Integrated Zones?

A. Zone encryption
B. Password protection
C. Non-repudiation
D. Secure replication

Answer 77

D. Secure replication

Question 78

You sign up for an online bank account. Every 6 months, the bank requires you to change
your password. You have changed your password 5 times in the past. Instead of coming up
with a new password, you decide to use one of your past passwords, but the bank’s
password history prevents you on doing so.
Select the correct answer if the underlined text does not make the statement correct Select
“No change is needed” if the underlined text makes the statement correct.

A. Minimum password age
B. Maximum password duration
C. Password complexity
D. No change is needed.

Answer 78

D. No change is needed.

Question 79

You have a Windows 7 desktop computer, and you create a Standard User account for
your roommate so that he can use the desktop from time to time. Your roommate has
forgotten his password.
Which two actions can you take to reset the password? (Choose two.)

A. Use your password reset disk.
B. Use your administrator account.
C. Boot into Safe Mode with your roommate’s account.
D. From your roommate’s account press CTRL+ALT+DELETE, and then click Change a password.

Answer 79

A. Use your password reset disk.

B. Use your administrator account.

Question 80

Which password attack uses all possible alpha numeric combinations?

A. Social engineering
B. Brute force attack
C. Dictionary attack
D. Rainbow table attack

Answer 80

B. Brute force attack

Question 81

You need to limit the programs that can run on client computers to a specific list.
Which technology should you implement?

A. Windows Security Center
B. Security Accounts Manager
C. System Configuration Utility
D. AppLocker group policies

Answer 81

D. AppLocker group policies

Question 82

Creating MD5 hash for files is an example of ensuring what?

A. Confidentiality
B. Availability
C. Least privilege
D. Integrity

Answer 82

D. Integrity

Question 83

Physically securing servers prevents:

A. Theft
B. Compromise of the certificate chain
C. Man-in-the middle attacks
D. Denial of Service attacks

Answer 83

A. Theft

Question 84

Which of the following describes a VLAN?

A. It connects multiple networks and routes data packets.
B. It is a logical broadcast domain across physical subnets.
C. It is a subnetwork that reveals a company’s externally facing resources to the public network.
D. It allows different network protocols to communicate between different network segments.

Answer 84

B. It is a logical broadcast domain across physical subnets.

Question 85

E-mail spoofing:

A. Forwards e-mail messages to all contacts
B. Copies e-mail messages sent from a specific user
C. Obscures the true e-mail sender
D. Modifies e-mail routing logs

Answer 85

C. Obscures the true e-mail sender

Question 86

The client computers on your network are stable and do not need any new features.
Which is a benefit of applying operating system updates to these clients?

A. Keep the software licensed
B. Keep the server ports available
C. Update the hardware firewall
D. Close existing vulnerabilities

Answer 86

D. Close existing vulnerabilities

Question 87

What does implementing Windows Server Update Services (WSUS) allow a company to
manage?

A. Shared private encryption key updates
B. Updates to Group Policy Objects
C. Active Directory server replication
D. Windows updates for workstations and servers

Answer 87

D. Windows updates for workstations and servers

Question 88

The primary purpose of Network Access Protection (NAP) is to prevent:

A. Loss of data from client computers on a network.
B. Non-compliant systems from connecting to a network.
C. Users on a network from installing software.
D. Unauthorized users from accessing a network.

Answer 88

B. Non-compliant systems from connecting to a network.

Question 89

You are trying to establish communications between a client computer and a server. The
server is not responding.
You confirm that both the client and the server have network connectivity.
Which should you check next?

A. Microsoft Update
B. Data Execution Prevention
C. Windows Firewall
D. Active Directory Domains and Trusts

Answer 89

D. Active Directory Domains and Trusts

Question 90

You are an intern at Litware, Inc. Your manager asks you to make password guess
attempts harder by limiting login attempts on company computers.
What should you do?

A. Enforce password sniffing.
B. Enforce password history.
C. Make password complexity requirements higher.
D. Implement account lockout policy.

Answer 90

D. Implement account lockout policy.

Question 91

You would implement a wireless intrusion prevention system to:

A. Prevent wireless interference
B. Detect wireless packet theft
C. Prevent rogue wireless access points
D. Enforce SSID broadcasting

Answer 91

C. Prevent rogue wireless access points

Question 92

What is the standard or basic collection of NTFS permissions?

A. Read and execute, read, write, full control, modify, list folder contents
B. Change permissions, read permissions, write permissions
C. Read attributes, list folder/read data, traverse folder/execute file
D. Create files/write data, create folders/append data, take ownership

Answer 92

A. Read and execute, read, write, full control, modify, list folder contents

Question 93

You are an intern at Wide World Importers and help manage 1000 workstations. All the
workstations are members of an Active Domain.
You need to push out an internal certificate to Internet Explorer on all workstations.
What is the quickest method to do this?

A. Local policy
B. Logon script
C. Windows Update
D. Group policy

Answer 93

D. Group policy

Question 94

How does the sender policy framework (SPF) aim to reduce spoofed email?

A. It provides a list of IP address ranges for particular domains so senders can be verified.
B. It includes an XML policy file with each email that confirms the validity of the message.
C. It lists servers that may legitimately forward mail for a particular domain.
D. It provides an encryption key so that authenticity of an email message can be validated

Answer 94

C. It lists servers that may legitimately forward mail for a particular domain.

Question 95

You are trying to connect to an FTP server on the Internet from a computer in a school lab.
You cannot get a connection. You try on another computer with the same results. The
computers in the lab are able to browse the Internet.
You are able to connect to this FTP server from home.
What could be blocking the connection to the server?

A. A layer-2 switch
B. A wireless access point
C. A firewall
D. A layer-2 hub

Answer 95

C. A firewall

Question 96

Humongous Insurance is an online healthcare insurance company. During an annual
security audit a security firm tests the strength of the company’s password policy and
suggests that Humongous Insurance implement password history policy.
What is the likely reason that the security firm suggests this?

A. Past passwords were easily cracked by the brute force method.
B. Past passwords of users contained dictionary words.
C. Previous password breaches involved use of past passwords.
D. Past passwords lacked complexity and special characters.

Answer 96

C. Previous password breaches involved use of past passwords.

Question 97

Which enables access to all of the logged-in user’s capabilities on a computer?

A. Java applets
B. ActiveX controls
C. Active Server Pages (ASP)
D. Microsoft Silverlight

Answer 97

B. ActiveX controls

Question 98

Where should you lock up the backup tapes for your servers?

A. The server room
B. A filing cabinet
C. The tape library
D. An offsite fire safe

Answer 98

D. An offsite fire safe

Question 99

Which provides the highest level of security in a firewall?

A. Stateful inspection
B. Outbound packet filters
C. Stateless inspection
D. Inbound packet filters

Answer 99

A. Stateful inspection