Lesson 10 - Questions Flashcards

1
Q

True or False? As they protect data at the highest layer of the protocol stack, application-based firewalls have no basic packet filtering functionality.

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What distinguishes host-based personal software firewall from a network firewall appliance?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

True or false? When deploying a non-transparent proxy, you must configure clients with the proxy address and port.

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is usually the purpose of the default rule on a firewall?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

True or false? Static NAT means mapping a single public/external IP address to a single private/internal IP address.

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the best option for monitoring traffic passing from host-to-host on the same switch?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What sort of maintenance must be performed on signature-based monitoring software?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the principal risk of deploying an intrusion prevention system with behavior-based detection?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

If a Windows system file fails a file integrity check, should you suspect a malware infection?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is a WAF?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the purpose of SIEM?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the difference between a sensor and a collector, in the context of SIEM?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Does Syslog perform all the functions of a SIEM?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

You are writing a shell script to display the last 5 lines of a log file at /var/log/audit in a dashboard. What is the Linux command to do this?

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly