Lesson 7: Security

Question 1

Access Lists (ACLs)

Answer 1

A basic form of firewall protection

Question 2

AES

Answer 2

Advanced Encryption Standard

Question 3

AH

Answer 3

Authentication Header

Question 4

Brute Force Attack

Answer 4

Attacker uses every possible combination of characters for the password

Question 5

Buffer Overflow

Answer 5

Happens when a program tries to put more data into a buffer than it was configured to hold

Question 6

netstat -a -b

Answer 6

(a) Command used to display the ports currently open on a Windows operating system and (b) used to display the executable involved in creating the connection or listening port

Question 7

CCMP

Answer 7

Counter Mode with Cipher Block Chaining Message Authentication Code Protocol

Question 8

CHAP

Answer 8

Challenge Handshake Authentication Protocol

Question 9

Demilitarized Zones (DMZs)

Answer 9

Used to isolate the servers

Question 10

Denial of Service (DoS)

Answer 10

A service is being denied to a computer, network, or server

Question 11

DES, 3DES

Answer 11

Data Encryption Standard, Triple Data Encryption Standard

Question 12

Dictionary Attack

Answer 12

Uses known passwords and many variations (upper and lowercase and combinations) to try to log in to your account

Question 13

Diffie-Hellman

Answer 13

Key generation algorithm

Question 14

Directed Broadcast

Answer 14

The broadcast is sent to a specific subnet

Question 15

ESP

Answer 15

Encapsulating Security Protocol

Question 16

Firewall

Answer 16

Used in computer networks for protecting the network

Question 17

Fraggle

Answer 17

A DoS attack in which spoofed UDP packets are sent to a network’s broadcast address

Question 18

GRE

Answer 18

Generic Routing Encapsulation

Question 19

IKE

Answer 19

Internet Key Exchange

Question 20

IP Tunnel

Answer 20

An IP packet encapsulated in another IP packet

Question 21

IPsec

Answer 21

Used to encrypt data between various networking devices

Question 22

ISAKMP

Answer 22

Internet Security Association and Key Management Protocol

Question 23

Jamming

Answer 23

The wireless network is overwhelmed with wireless traffic, thereby jamming the network

Question 24

L2F

Answer 24

Layer 2 Forwarding

Question 25

L2TP

Answer 25

Layer 2 Tunneling Protocol

Question 26

LEAP

Answer 26

A wireless security system used by Cisco

Question 27

Malware

Answer 27

Malicious programs

Question 28

MD5

Answer 28

Message Digest 5

Question 29

NAQC

Answer 29

Network Access Quarantine Control

Question 30

nmap

Answer 30

A Linux port scanner

Question 31

Packet Filtering

Answer 31

A limit is placed on the information that can enter the network

Question 32

Packet Sniffing

Answer 32

A technique in which the contents of data packets are watched

Question 33

PAP

Answer 33

Password Authentication Protocol

Question 34

Password Cracking

Answer 34

The attacker tries to guess the user’s password

Question 35

Penetration Testing

Answer 35

A way to evaluate the security of the user’s network

Question 36

permit ip any any

Answer 36

The instruction added to the last line of an access list to allow all other data packets to enter and exit the router

Question 37

Ping of Death

Answer 37

A DoS attack that uses oversized ICMP datagram to crash IP devices

Question 38

PPTP

Answer 38

Point-to-Point Tunneling Protocol

Question 39

Proxy Server

Answer 39

Clients go through a proxy to communicate with secure systems

Question 40

SHA

Answer 40

The secure hash algorithm

Question 41

SHA-1

Answer 41

Secure Hash Algorithm

Question 42

Shared key Authentication

Answer 42

Both the client and the access point share a key called a pre-shared key (PSK)

Question 43

Social Engineering

Answer 43

A way for an intruder to obtain enough information from people to gain access to the network

Question 44

Spoof

Answer 44

Inserting a different IP address in place of an IP packet’s source address to make it appear that the packet came from another network

Question 45

Stateful Firewall

Answer 45

Keeps track of the data packet flow

Question 46

TKIP

Answer 46

Temporal Key Integrity Protocol

Question 47

Virus

Answer 47

A piece of malicious computer code that, when opened, can damage your hardware, software, or other files

Question 48

WEP

Answer 48

Wired equivalent privacy

Question 49

Worm

Answer 49

A type of virus that attacks computers, typically proliferates by itself, and can deny service to networks