Review Notes (Miscellaneous)

Question 1

What is the difference between “drop” and “deny”?

Answer 1

“drop” makes it disappear, “deny” means it is blocked

Question 2

If you wanted to see the layer 3 int, AP access-lists, what cmd would you run?

Answer 2

“show ip interface”

Question 3

Sniffer = tcpdump but no logging. True or False?

Answer 3

True

Question 4

determines what level of permissions will be given

Answer 4

RID

Question 5

dynamically assigns IP addresses to host machines

Answer 5

DHCP

Question 6

converts host name into a IP address

Answer 6

A Record (Host)

Question 7

points IP address to a name

Answer 7

PTR Record (pointer)

Question 8

tracks TCP (FW design)

Answer 8

Stateful Inspection

Question 9

no client side changes (proxy)

Answer 9

intercept/transparent

Question 10

not automatic; requires input (proxy)

Answer 10

explicit

Question 11

repository of everything (Directory Services)

Answer 11

Active Directory

Question 12

user names, machine accounts and services are examples of what? (Directory Services)

Answer 12

object types

Question 13

alias, nicknames (Directory Services)

Answer 13

Canonical Name Record (CNAME)

Question 14

re-directs DNS responses, prevents response to malware, virus, etc. (Directory Services)

Answer 14

Blackhole Domain

Question 15

list of offending servers and publish addresses of computers/networks in spam

Answer 15

Blackhole list

Question 16

stores information on alerts, loss, list, whats in network (HBSS)

Answer 16

Database

Question 17

protects against Trojans, viruses (HBSS)

Answer 17

VSE

Question 18

blocks/allows programs

Answer 18

Host Intrusion Prevention System

Question 19

controls/communicates changes occuring in IT environment

Answer 19

change management

Question 20

removing a proxy from BASE and FW from computers would be an example of what service management?

Answer 20

change management

Question 21

“what I did”, tracking exact state of overall IT environment (service management)

Answer 21

config management

Question 22

data centers (day-to-day system management, deliver data)

Answer 22

Area Processing Center

Question 23

24 AF, output on AFIN changes, tracked by INOSCs

Answer 23

NOTAM

Question 24

16 GWs, unit that operates AFIN

Answer 24

26th NOS

Question 25

added layer of security, can segregate things that can be vulnerable?

Answer 25

DMZ

Question 26

guidelines that can help organizations implement best practices

Answer 26

ITIL

Question 27

interface, logical partition

Answer 27

Burb

Question 28

group up to 16 mailbox servers that host a set of instructions

Answer 28

DAG

Question 29

changes are document and authorized (service management)

Answer 29

change management)

Question 30

implement the authorized changes (service management)

Answer 30

release management

Question 31

updating after approved; document current state (service management)

Answer 31

config management

Question 32

controls network core services

Answer 32

Enterprise Service Unit (ESU)

Question 33

delivers core services

Answer 33

Area Processing Center (APC) - Data Center

Question 34

What division at 624 OC generates the orders?

Answer 34

624 OC

Question 35

Who is responsible for Step 6 Assessment?

Answer 35

Begins with Battle Damage Assessment (BDA) by Combat Operations Division (MOPs), completed by SRD (MOEs)

Question 36

two types of entities in JIE enterprise directory and IDAM?

Answer 36

person, non-person

Question 37

in active directory, what can be described as a blueprint that describes each object?

Answer 37

schema

Question 38

what remotely scans, accesses systems, characterizes emerging targets?

Answer 38

Cyberspace Surveillance Package (CSP)

Question 39

What should be used when external (untrusted/less trusted) sources needed to access one of your sensors?

Answer 39

DMZ

Question 40

CTO is updated daily. True or False?

Answer 40

True

Question 41

What is the situational awareness hub for Communications/Cyber functions on most bases?

Answer 41

Communication Focal Point

Question 42

Types of DCC - P missions?

Answer 42

Combat Cyber Patrol, Pursuit, Mission, Engagement

Question 43

Who manages the BlueCoat proxy?

Answer 43

INOSCs

Question 44

every base, handles day-to-day problems as they arise

Answer 44

Communications Focal Point (CFP)

Question 45

folks that provide onsite maintenance on base as issues aries

Answer 45

Client Systems Team

Question 46

which forces are reactive in nature?

Answer 46

Cyber Alert Patrol

Question 47

administrative action when someone takes a system down for MX

Answer 47

switchover

Question 48

when devices fails, service picked up by another device

Answer 48

failover

Question 49

mail flow to server (protocol)

Answer 49

SMTP

Question 50

mirrors mailbox on location machine (protocol)

Answer 50

IMAP

Question 51

allows users to send ON BEHALF of user log (permissions)

Answer 51

Send As

Question 52

allows user to do anything to a mailbox except send an email (permission)

Answer 52

Full Access

Question 53

resolves tier 2 incidents/tickets

Answer 53

INOSC