Practice Test 5

Question 1

What is the best countermeasure against social engineering?

AAA protocols
User authentication
Strong passwords
User education

Answer 1

User education

Question 2

Which of the following violates the principle of least privilege?

Onboarding process
Improperly configured accounts
Shared accounts for privileged users
Time-of-day restrictions

Answer 2

Improperly configured accounts

Question 3

An e-commerce store app running on an unpatched web server is an example of:

Architecture/design weakness
Risk acceptance
Vulnerable business process
Security through obscurity

Answer 3

Vulnerable business process

Question 4

The purpose of a downgrade attack is to make a computer system fall back to a weaker security mode which makes the system more vulnerable to attacks.

True
False

Answer 4

True

Question 5

A situation in which an application fails to properly release memory allocated to it or continually requests more memory than it needs is called:

Memory leak
Buffer overflow
DLL injection
Integer overflow

Answer 5

Memory leak

Question 6

Which of the terms listed below describes a programming error where an application tries to store a numeric value in a variable that is too small to hold it?

Buffer overflow
Pointer dereference
Memory leak
Integer overflow

Answer 6

Integer overflow

Question 7

A situation in which an application writes to or reads from an area of memory that it is not supposed to access is referred to as:

DLL injection
Buffer overflow
Memory leak
Integer overflow

Answer 7

Buffer overflow

Question 8

Which of the following terms describes an attempt to read a variable that stores a null value?

Integer overflow
Pointer dereference
Buffer overflow
Memory leak

Answer 8

Pointer dereference

Question 9

A collection of precompiled functions designed to be used by more than one Microsoft Windows application simultaneously to save system resources is known as:

DLL
ISO
EXE
INI

Answer 9

DLL

A dynamic link library (DLL) is a shared program module with ordered code, methods, functions, enums and structures that may be dynamically called by an executing program during run time. ADLLusually has a file extension ending in .dll.

Question 10

Which of the terms listed below describes a type of attack that relies on executing a library of code?

Memory leak
DLL injection
Pointer dereference
Buffer overflow

Answer 10

DLL injection

Question 11

“In the IT industry, the term ““System sprawl”” is used to describe poor hardware resource utilization.”

True
False

Answer 11

True

Question 12

An effective asset management process provides countermeasures against: (Select all that apply)

System sprawl
Race conditions
Undocumented assets
Architecture and design weaknesses
User errors

Answer 12

System sprawl
Undocumented assets
Architecture and design weaknesses

Question 13

Zero-day attack exploits:

New accounts
Patched software
Vulnerability that is present in already released software but unknown to the software developer
Well known vulnerability

Answer 13

Vulnerability that is present in already released software but unknown to the software developer

Question 14

A software or hardware that checks information coming from the Internet and depending on the applied configuration settings either blocks it or allows it to pass through is called:

Antivirus
Firewall
Antispyware
Malware

Answer 14

Firewall

Question 15

Which of the following applies to a request that doesn’t match the criteria defined in an ACL?

Group policy
Implicit deny rule
Transitive trust
Context-aware authentication

Answer 15

Implicit deny rule

Question 16

Stateless inspection is a firewall technology that keeps track of network connections and based on the collected data determines which network packets should be allowed through the firewall.

True
False

Answer 16

False

Question 17

Which of the answers listed below refers to a dedicated device for managing encrypted connections established over an untrusted network, such as the Internet?

VPN concentrator
Load balancer
Managed switch
Multilayer switch

Answer 17

VPN concentrator

Question 18

VPNs can be either remote-access (used for connecting networks) or site-to-site (used for connecting a computer to a network).

True
False

Answer 18

False

Question 19

Which of the IPsec modes provides entire packet encryption?

Tunnel
Payload
Transport
Default

Answer 19

Tunnel

Question 20

An IPsec mode providing encryption only for the payload (the data part of the packet) is known as:

Protected mode
Tunnel mode
Transport mode
Safe mode

Answer 20

Transport mode

Question 21

Which part of the IPsec protocol suite provides authentication and integrity?

CRC
AH
SIEM
AES

Answer 21

AH

Authentication Header (AH) is a protocol and part of the Internet ProtocolSecurity(IPsec) protocol suite, which authenticates the origin of IP packets (datagrams) and guarantees the integrity of the data.

Question 22

Which of the IPsec protocols provides authentication, integrity, and confidentiality?

AES
SHA
AH
ESP

Answer 22

ESP

An EncapsulatingSecurityPayload (ESP) is a protocol within the IPSec for providing authentication, integrity and confidentially of network packets data/payload in IPv4 and IPv6 networks.ESPprovides message/payload encryption and the authentication of a payload and its origin within the IPSec protocol suite.

Question 23

Which of the terms listed below describes a type of VPN that alleviates bottlenecks and conserves bandwidth by allowing users simultaneously make use of both the VPN and public network links?

Tethering
Split tunnel
Load balancing
Full tunnel

Answer 23

Split tunnel

Question 24

Examples of secure VPN tunneling protocols include: (Select 2 answers)

bcrypt
SCP
IPsec
WEP
TLS

Answer 24

IPsec

TLS

Question 25

“The term ““Always-on VPN”” refers to a type of persistent VPN connection the starts automatically as soon as the computer detects a network link.”

True
False

Answer 25

True