Practice Test 2

Question 1

An administrator is receiving an error in browser stating a website’s certificate is invalid. Which of the following is the browser referring to?

A) Recovery agent

B) CRL

C) Private key

D) Public key

Answer 1

Public key

Question 2

A company storing data on a secure server wants to ensure it is legally able to dismiss and prosecute staff who intentionally access the server via Telnet and illegally tamper with customer data. Which of the following administrative controls should be implemented to BEST achieve this?

A) Restricted interface

B) Session output pipe to /dev/null

C) Command shell restriction

D) Warning banners

Answer 2

Warning banners

Question 3

A software development company wants to implement a digital rights management solution to protect its intellectual property. Which of the following should the company implement to enforce software digital rights?

A) Transport encryption

B) Non-repudiation

C) Public Key infrastructure

D) IPsec

Answer 3

Public Key infrastructure

Question 4

Rachael, the security administrator, must configure the corporate firewall to allow all public IP addresses on the internal interface of the firewall to be translated to one public IP address on the external interface of the same firewall. Which of the following should Rachael configure?

A) NACL

B) NAT

C) PACL

D) DNS

Answer 4

NAT

Question 5

Using proximity card readers instead of the traditional key punch doors would help to mitigate:

A) Shoulder surfing

B) Impersonation

C) Tailgating

D) Dumpster diving

Answer 5

Shoulder surfing

Question 6

Which of the following is BEST used as a secure replacement for TELNET?

A) HTTPS

B) GPG

C) SSH

D) HMAC

Answer 6

SSH

Question 7

Which of the following network architecture concepts is used to securely isolate network devices at the boundary between networks?

A) NAT

B) DMZ

C) VLAN

D) Subnetting

Answer 7

DMZ

Question 8

An administrator in the Network Security Department notices that an employee in the Networking Department made unauthorized changes to a firewall over the weekend. Which of the following would be used to mitigate this issue so that only security administrators can make changes to the firewall?

A) Job rotation

B) Time of day restriction

C) Least privilege

D) Mandatory vacations

Answer 8

Least privilege

Question 9

Which statement is TRUE about the operation of a packet sniffer?

A) They are required for firewall operation and stateful inspection.

B) It can only have one interface on a management network.

C) It must be placed on a single virtual LAN interface.

D) The Ethernet card must be placed in promiscuous mode.

Answer 9

The Ethernet card must be placed in promiscuous mode.

Question 10

Sara, a security manager, has decided to force expiration of all company passwords by the close of business day. Which of the following BEST supports this reasoning?

A) Implementation of account lockout procedures.

B) A recent security breach in which passwords were cracked

C) Implementation of configuration management processes

D) Enforcement of password complexity requirements

Answer 10

A recent security breach in which passwords were cracked

Question 11

Which of the following application security testing techniques is implemented when an automated system generates random input data?

A) Input validation

B) XSRF

C) Hardening

D) Fuzzing

Answer 11

Fuzzing

Question 12

Geneson, an administrator, needs to make sure the wireless network is not accessible from the parking area of their office. Which of the following would BEST help Geneson when deploying a new access point?

A) Disabling SSID

B) Implementing WPA2

C) Placement of antenna

D) Enabling the MAC filtering

Answer 12

Placement of antenna

Question 13

A user ID and password together provide which of the following?

A) Authentication

B) Authorization

C) Identifcation

D) Auditing

Answer 13

Authentication

Question 14

A network administrator has recently updated their network devices to ensure redundancy is in place so that:

A) Single points of failure are removed

B) Environmental monitoring can be performed

C) Hot and cold aisles are functioning

D) Switches can redistribute routes across the network

Answer 14

Single points of failure are removed

Question 15

Sara, an application developer, has just implemented error and exception handling in an application. Which of the following does this help prevent?

A) Buffer overflow

B) Cross-site scripting

C) Fuzzing

D) Pop-up blockers

Answer 15

Buffer overflow

Question 16

An IT director is looking to reduce the footprint of their company’s server environment. They have decided to move several internally developed software applications to an alternate environment, supported by an external company. They will still maintain the software, operating systems and configurations, but will not manage the physical hardware. Which of the following BEST describes this arrangement?

A) Storage as a Service

B) Platform as a Service

C) Software as a Service

D) Infrastructure as a Service

Answer 16

Infrastructure as a Service

Question 17

Which of the following is a hardware based encryption device?

A) EFS

B) SLE

C) TPM

D) TrueCrypt

Answer 17

TPM

Question 18

Which of the following assets is MOST likely considered for DLP?

A) Print server

B) Reverse proxy

C) USB mass storage device

D) Application server content

Answer 18

USB mass storage device

Question 19

After a user performed a war driving attack, the network administrator noticed several similar markings where WiFi was available throughout the enterprise. Which of the following is the term used to describe these markings?

A) IV attack

B) War dialing

C) Rogue access points

D) War chalking

Answer 19

War chalking

Question 20

The IT department has setup a website with a series of questions to allow end users to reset their own accounts. Which of the following account management practices does this help?

A) Password Recovery

B) Password Complexity

C) Password Expirations

D) Account Disablements

Answer 20

Password Recovery