Room for Improvement Flashcards
AAA Protocol Stands for…
Authentication, Authorization, and Accounting
AAA Protocols:
RADIUS & TACACS+
Match:
TACACS+
RADIUS
to
Device Management
User Access Control
TACACS: Devices
RADIUS: User Access Control
LEAP used for:
Authentication: Secures the Authentication Channel
LEAP is Cisco Based
See also: PEAP, EAP-TLS, EAP-TTLS
MAC Filtering defeated by which type of attack:
Spoofing
SSID Hiding is overcome because of:
Network name in plain text in packets
RFID does what:
Inventory and Detects movement of devices.
TPM. What kind encryption? What kind of Keys?
Hardware Encryption
RSA Keys
Host Enumeration
Recon. Process to gather information
Black Box Tester
Has no info before testing
Gray Box Tester
Has some info before testing
White Box Tester
Has full knowledge of the environment
RADIUS Encryption Type
Symmetric
SNMP Listening Port
161
SNMP Traps Port
162
NetBIOS Sessions Port
TCP 139
NetBIOS Names Port
TCP/UDP 137
NetBIOS Datagrams Port
UDP 138
IPv6 Loopback Address
::1
Tarpitting
Slowing down email to deter spammers
Vishing IVR
Integrated Voice Recorder
PFS (Perfect forward secrecy)
Used for key exchange where key changes every time. Protects private key
SCP
Secure Copy
SSH
Alternative to Telnet
Bcrypt & PBKDF2
Key Stretching
SOAP
Used to Remotely Configure Routers
Firewall rule to block port 53
Deny IP all all 53
True or False:
LDAP and RADIUS use shared Secrets
True
True or false: Kerberos and Tacacs uses shared secrets
False
PFS Technique
ECDHE
