Hardening

Question 1

Process of configuring workstation or server to only provide essential applications and services

Answer 1

Least Functionality

Question 2

Only applications that are on the list are allowed to be run by the operating system while all other application are blocked

Answer 2

Application Whitelist

Question 3

Any application placed on the list will be prevented from running while all other applications are permitted to run.

Answer 3

Application Blacklist

Question 4

An operating system that meets the requirements set forthby government and has multi level security

Answer 4

Trusted Operating System

Question 5

A single problem fixing piece of software for an operating system or application

It requires a system reboot.

Answer 5

Patches

Question 6

Software code for a specific problem addressing a critical, non security bug in the software.

Answer 6

Critical update

Question 7

A tested accumulative grouping of patches, hotfixes, security updates, critical update and possibly some feature or design changes.

Answer 7

Service pack

Question 8

Software code that is issued for a product-specific security related vulnerabilty

Answer 8

Security Update

Question 9

Recommends update to fix a non critical problem that users have found as well as to provde additional features or compatibilities.

Answer 9

Windows update

Question 10

Updated device driver to fix a security issue or add a feature to a supported piece of hardware

Answer 10

Driver update

Question 11

A process of planning testing implementing and auditing of software patches.

Answer 11

Patch management

Question 12

This tool can help identify security misconfigurations within your network’s workstations.

Answer 12

Microsoft baseline security analyser

Question 13

Step of patching

To verify it is compatible with your system and plan for how you will test and deploy it

Answer 13

Planning

Question 14

Step of patching

Always test your patch prior to automating its deployment

Answer 14

Testing

Question 15

Step of patching

Manually or automatically deploy the patch to all your clients to implement it

Answer 15

Deploy

Question 16

A tool to use to deploy the patch. Large organization centrally manage updates through an update server.

Answer 16

Microsoft system center configuration manager

Question 17

Step of patching

Is use to ensure the patch was installed properly and there is unexpected failures that have occured because of our installation.

Answer 17

Auditing

Question 18

A set of rules of policies that can be applied to a set of users or computer accounts within operating system.

Answer 18

Group Policies

Question 19

Process of measuring changes in the network, hardware software environment.

Helps establish what normal is for your organization you can then identify what abnormal or a deviation looks like.

Answer 19

Baselining

Question 20

Level of security of a system is affected by its file system type

Answer 20

File system and hard drives

Question 21

The default file system format for windows and is more secure.

Answer 21

NTFS New Technology File System

Question 22

Refers to a TCP or UDP number that is configured to accept packets

Answer 22

Open ports

Question 23

Protects the entire volume and all files on the drive against unauthorized access.

Answer 23

Full Disk Encryption FDE

Question 24

Is an encryption method, which takes place on the file system level, enabling the encryption of data in individual files and directories.

Answer 24

File-Level Encryption

Question 25

It is a hard disk drive (hdd) or solid state drive (sdd) with an encryption circuit built into the drive. It transparently encrypts all data written to the media and when unlocked, transparently decrypts all data read from the media.

Answer 25

Self Encrypting Drive SED