Practice Test 6

Question 1

A server on your network needs to be accessed by external users. The content of the server should be publicly available and does not contain any confidential information. Where should you place it?

A) Intranet

B) Behind an IPsec tunneling firewall

C) Behind the firewall and NAT service

D) DMZ

Answer 1

DMZ

Question 2

True or False: It is good practice to disable unused or publicly accessible network ports?

A) False

B) True

Answer 2

True

Question 3

Which of the following is a common synonym for a Protocol Analyzer?

A) layer 3 switch

B) Port scanner

C) Intelligent HUB

D) Packet Sniffer

Answer 3

Packet Sniffer

Question 4

Which of the following choices properly defines the term war chalking?

A) Driving in a vehicle and scanning for open WiFi access points

B) Cracking a WEP2 WiFi encryption

C) Marking open WiFi access points

D) Port Scanning a wifi network

Answer 4

Marking open WiFi access points

Question 5

Which of the following protocols is used to encrypt emails?

A) SMAP

B) PGP

C) SMTP

D) HTTPS

Answer 5

PGP

Question 6

Which of the following is a computer hardware component that can process and store cryptographic keys?

A) EULA

B) HCL

C) WPA2

D) TPM

Answer 6

TPM

Question 7

Which of the following is an example of multi-factor authentication?

A) Smart card and ID badge

B) Fingerprint and iris scan

C) Password and pin

D) Pin number and smart card

Answer 7

Pin number and smart card

Question 8

Which of the following STOPS attacks on a host system?

A) NIPS

B) NIDS

C) HIPS

D) HIDS

Answer 8

HIPS

Question 9

Which of the following is an access control method, which is based of a persons job?

A) DAC

B) HMAC

C) RBAC

D) MAC

Answer 9

RBAC

Question 10

Which port is used by telnet?

A) 22

B) 20

C) 21

D) 23

Answer 10

23

Question 11

When converted into binary, how many bits are present in an IPv4 Address?

A) 64

B) 48

C) 128

D) 32

Answer 11

32

Question 12

Which option will provide short-term system availability in case of loss or failure?

A) Cold Site

B) Full disk encryption

C) RAID 5

D) RAID 0

Answer 12

RAID 0

Question 13

A list of permissions on a router that determines who can access specific areas of a network, is known as what?

A) OEM

B) Firewall

C) FAQ

D) ACL

Answer 13

ACL

Question 14

Which authentication protocol periodically verifies a client with a 3-way handshake?

A) PAP

B) CHAP

C) SSO

D) Kerberos

Answer 14

CHAP

Question 15

Which of the following describes the most secure firewall configuration?

A) Allow all, deny malicious applications and ports

B) Deny all protocols, allow TCP/IP

C) Deny all UPD, allow all TCP

D) Deny all, with exceptions for required applications and ports

Answer 15

Deny all, with exceptions for required applications and ports

Question 16

Which of the following is a Denial of Service attack using a succession of TCP Handshake requests?

A) SYN Flood

B) Smurf Attack

C) Xmas Attack

D) Phishing

Answer 16

SYN Flood

Question 17

SHA and MD5 are examples of which of the following?

A) HIPS

B) Hashing algorithms

C) Encryption algorithms

D) Tunneling protocols

Answer 17

Hashing algorithms

Question 18

What is the default port of Kerberos?

A) 8080

B) 88

C) 22

D) 443

Answer 18

88

Question 19

Which of the following is a protocol that prevents loops in layer 2 switching devices?

A) STP

B) HVAC

C) RDP

D) TCP

Answer 19

STP

Question 20

What port is used for HTTPS?

A) 443

B) 69

C) 80

D) 8080

Answer 20

443