LP - Enterprise Security Capabilities

Question 1

Web filters can filter traffic from OSI

Answer 1

layers 3 to 7

Question 2

Some Capabilities of web filtering:

Answer 2

1. Safe Search
2. DNS filtering
3. URL filtering
4. Content cateorization
5. File Filtering

Question 3

Web filtering can do reputation

Answer 3

filtering

Question 4

GP stands for

Answer 4

Group Policy

Question 5

Group Policy (GP) allows administrators to

Answer 5

centrally manage settings on the Windows OS

Question 6

Is Group Policy (GP) is used in Active Directory?

Answer 6

Yes

Question 7

GPO stands for

Answer 7

Group Policy Objects

Question 8

SELinux stands for

Answer 8

Security Enhanced Linux

Question 9

SELinux in its default enforcement mode will

Answer 9

deny and log any unauthorized attempts (least privilege)

Question 10

MLS stands for

Answer 10

Multilevel security

Question 11

SELinux can be confiured to protect a system via

Answer 11

MLS

Question 12

MLS is very complicated and typically only used by

Answer 12

government

Question 13

TACACS+ port number

Answer 13

49

Question 14

Kerberos port number

Answer 14

88

Question 15

IMAP port number

Answer 15

143, 593

Question 16

SNMP port number

Answer 16

161/162

Question 17

FTPS port number

Answer 17

989 and 990

Question 18

IMAPS port number

Answer 18

993

Question 19

POP3S pot number

Answer 19

995

Question 20

RADIUS port number

Answer 20

1812 and 1813

Question 21

DIAMETER port number

Answer 21

3868

Question 22

SRTP port number

Answer 22

5004

Question 23

In DNS filtering all DNS queries are delivered to a

Answer 23

DNS resolver

Question 24

DNSSEC provides authentication but no

Answer 24

confidentiality

Question 25

DNSSEC adds the following:

Answer 25

• RRSIG
• DNSKEY
• DS
• NSEC and NSEC3
• CDNSKEY and CDS

Question 26

RRSIG contains a

Answer 26

cryptographic signature

Question 27

DNSKEY contains a public

Answer 27

signing key

Question 28

DS containds the hash of a

Answer 28

DNSKEY record

Question 29

NEC and NSEC3 is for explicit

Answer 29

denial-of existence of a DNS record

Question 30

CDNSKEY and CDS is for a child zone requesting update

Answer 30

to DS records in the parent zone

Question 31

OpenDNS is a cloud-delivered

Answer 31

enterprise security service

Question 32

SPF stands for

Answer 32

Sender Policy Framework

Question 33

In SPF the domain owner publishes where the email coming from in the

Answer 33

DNS Zone

Question 34

DKIM stands for

Answer 34

DomainKeys Identified Mail

Question 35

How does DKIM work?

Answer 35

It uses digital signatures to verify the email.

Question 36

DMARC stands for

Answer 36

Domain-based Message Authentication Reporting and Conformance

Question 37

What is DMARC?

Answer 37

It is an email authentication, policy and reporting protocol.

Question 38

ICES stands for

Answer 38

Integrated Cloud Email Security

Question 39

FIM stands for

Answer 39

File Integrity Monitoring (FIM)

Question 40

EDR stands for

Answer 40

Endpoint detection and response

Question 41

DAM stands for

Answer 41

Databaase Activity monitoring

Question 42

IoCs stand for

Answer 42

Indicators of compromise

Question 43

XDR stands for

Answer 43

extended detection and response

Question 44

UBA stands for

Answer 44

user behaviour analytics