quiz 4.2

Question 1

You should rename both the _______________________________because these accounts are created by default. —

Answer 1

Administrator and Guest accounts

Question 2

You should also disable the ________________. The __________________ should only be enabled in certain instances and should only be enabled temporarily.

Answer 2

Guest account

Question 3

The Power Users group is a special group that was granted some —

Answer 3

advanced permissions in Windows XP.

Question 4

While this group is retained in Windows 7 for legacy purposes, it has _____________privileges than a standard user. —

Answer 4

no more

Question 5

Hardware tokens, server locks, and door locks are security concepts considered —

Answer 5

“something you have.”

Question 6

If hardware tokens are the sole method of user authentication, safeguards must be put in place to ensure security should they are lost or stolen. They are best implemented as part of a —

Answer 6

multifactor authentication system.

Question 7

_________________are some type of physical object that a user must have during the login process to prove possession of the device.

Answer 7

Hardware tokens

Question 8

Door locks require ____________________to open, whether the key is a typical metal key, a keypad, a smart card, or a key fob. —

Answer 8

(“something you have”)

Question 9

Biometric devices are based on the security concept of ______________________They match a user’s uniquely identifiable physical attribute to a previously stored value. They are among the most secure physical security measures. —

Answer 9

“something you are.”

Question 10

The default permission position in a secure network should be —

Answer 10

implicit deny.

Question 11

This will ensure that if a user or group does not have an explicit allow permission configured, the access will default to an —

Answer 11

implicit deny.

Question 12

An ______________should be the last rule contained on any firewall because most firewalls do not default to this setting.

Answer 12

implicit deny

Question 13

This implicit deny firewall rule is often defined with a ______________statement. On Windows servers, the access control list (ACL) defaults to an implicit deny. —

Answer 13

Drop All

Question 14

Configure the firewall to allow only the traffic that is needed and to deny all other traffic. —

Answer 14

Firewall settings -

Question 15

_______________ is a function typically performed on Network Address Translation (NAT) device. One port number is set aside on the gateway for the exclusive use of communicating with a service in the private network, located on a specific host. External hosts must know this port number and the address of the gateway to communicate with the network-internal service. This hides the real IP address of the destination device or server to protect it from connections outside the LAN. —

Answer 15

Port forwarding/mapping -

Question 16

This prevents communication on unused ports. Ports that are not needed for communication should always be disabled. —

Answer 16

Disabling ports -

Question 17

This allows you to control the content that can be displayed on a device. —

Answer 17

Content filtering / parental controls -

Question 18

This ensures that the device has the most recent enhancements, including security enhancements. —

Answer 18

Update firmware -

Question 19

Network devices should be secure from physical access, which usually means locking them in closets specifically designed for this type of equipment. —

Answer 19

Physical security -