Securing Individual Systems

Question 1

What attack prevents others from accessing a system and comes from a single source?

Answer 1

Denial of Service

Question 2

Denial of service can be broadly broken down into what three categories?

Answer 2

Volumetric, Protocol, Application

Question 3

Which type of DoS saturates the bandwidth of the attacked site to prevent other users from being able to access it?

Answer 3

Volumetric

Question 4

Which type of DoS attack is comprised of seemingly legitimate and innocent requests but ultimately crashes the server?

Answer 4

Application attack

Question 5

Which type of DoS attack consumes the server resources?

Answer 5

Protocol attack

Question 6

What attack prevents others from accessing a system and comes from multiple sources?

Answer 6

Distributed denial-of-service attack

Question 7

Which attack leverages the functionality of open DNS resolver in order to overwhelm a target server or network with an amplified amount of traffic, rendering the server and its surrounding infrastructure inaccessible.

Answer 7

Amplification attack

Question 8

unsolicited emails

Answer 8

Spam

Question 9

fraudulent attempt to obtain sensitive information usually through emails

Answer 9

Phishing

Question 10

phishing attempts directed at specific individuals or companies (email contains the individual’s name or the company’s name.

Answer 10

Spear Phishing

Question 11

receive Spam via instant messaging

Answer 11

Spim

Question 12

unsolicited use of voice trying to get information from you (phone calls)

Answer 12

Vishing

Question 13

technique of tricking a user into clicking on something different from what the user perceives

Answer 13

Clickjacking

Question 14

form of cybersquatting (sitting on sites under someone else’s brand or copyright) that targets Internet users who incorrectly type a website address into their web browser

Answer 14

Typosquatting

Question 15

the act of changing the registration of a domain name without the permission of its original registrant, or by abuse of privileges on domain hosting and registrar software systems.

Answer 15

Domain Hijacking

Question 16

the act of exploiting a bug, design flaw or configuration oversight in an operating system or software application to gain elevated access to resources that are normally protected from an application or user

Answer 16

Privilege Escalation

Question 17

Third party intercepting between a two-party conversation

Answer 17

Man-in-the-middle attack

Question 18

when a hacker impersonates another device or user on a network in order to steal data, spread malware, or bypass access controls.

Answer 18

Spoofing

Question 19

Attack in which a third-party intercepts between a two-party conversation

Answer 19

Man-in-the-middle attack

Question 20

form of network attack in which a valid data transmission is maliciously or fraudulently repeated or delayed

Answer 20

Replay attack

Question 21

attack on a computer system or communications protocol that makes it abandon a high-quality mode of operation (e.g. an encrypted connection) in favor of an older, lower-quality mode of operation (e.g. cleartext) that is typically provided for backward compatibility with older systems

Answer 21

Downgrade attack

Question 22

the exploitation of a valid computer session—sometimes also called a session key—to gain unauthorized access to information or services in a computer system

Answer 22

Session hijacking

Question 23

a packet sniffer to intercept unencrypted session cookies from websites such as Facebook and Twitter. The plugin eavesdropped on Wi-Fi communications, listening for session cookies

Answer 23

Firesheep

Question 24

ability of the system to withstand a major disruption within acceptable degradation parameters and to recover within an acceptable time

Answer 24

System Resiliency

Question 25

capability of a system, network, or process to handle a growing amount of work, or its potential to be enlarged to accommodate that growth

Answer 25

Scalability

Question 26

the ability to expand and contract your network system depending on demand

Answer 26

Elasticity

Question 27

system design in which a component is duplicated so if it fails there will be a backup

Answer 27

Redundancy

Question 28

scattering systems into different areas instead of one central location

Answer 28

Distrubutive Allocation

Question 29

allows you to host one or more virtual systems, or virtual machines (VMs), on a single physical system

Answer 29

Virtualization

Question 30

data that is collected but will not be saved on restart

Answer 30

Non-persistence

Question 31

a copy of the live current environment

Answer 31

Snapshot

Question 32

returning to a state of data before edits or changes were implemented; Windows restore points

Answer 32

Revert to a Known State

Question 33

go back to a previous version; Drivers usually have this feature

Answer 33

Rollback

Question 34

a data storage virtualization technology that combines multiple physical disk drive components into one or more logical units for the purposes of data redundancy, performance improvement, or both

Answer 34

RAID (Redundant Array of Independent Disks)

Question 35

a data storage virtualization technology that combines multiple physical disk drive components into one or more logical units for the purposes of data redundancy, performance improvement, or both

Answer 35

RAID ( Redundant Array of Independent Disks)

Question 36

Which RAID version provides fast input/output performance for reading and writing but no fault tolerance?

Answer 36

RAID-0

Question 37

Which RAID provides fault tolerance and a slight increase in read performance, but no increase in write performance?

Answer 37

RAID-1

Question 38

Which RAID provides fault tolerance and will continue to operate even if a single drive fails and also provides an increase in read performance, but no increase in write performance?

Answer 38

RAID-5

Question 39

Which RAID requires a minimum of three disks?

Answer 39

RAID-5

Question 40

Which RAID is an extension of RAID-5 that includes an additional parity block?

Answer 40

RAID-6

Question 41

Which RAID provides fault tolerance and will continue to operate even if two drives fail and an increase in read performance?

Answer 41

RAID-6

Question 42

Which RAID requires a minimum of four disks?

Answer 42

RAID-6

Question 43

Which RAID provides fault tolerance and will continue to operate even if multiple drives fail and provides an increase in both read and write performance and is ideal for many database server applications?

Answer 43

RAID-10

Question 44

Which RAID requires a minimum of four disks?

Answer 44

RAID-10

Question 45

Which sharing protocol is file-based?

Answer 45

NAS (Network Attached Storage)

Question 46

Which sharing protocol is block-level based?

Answer 46

SAN (Storage Area Network)

Question 47

Which sharing protocol uses SAMBA?

Answer 47

NAS

Question 48

Which sharing protocol can use either Fiber Channel or iSCSI?

Answer 48

SAN

Question 49

high-speed typology that has been built specifically for SAN’s; built to connect servers directly to storage devices

Answer 49

Fiber Channel

Question 50

connects a computer, which acts as the host system, to other network and storage devices

Answer 50

Host Bus Adapter (HBA)

Question 51

makes remote drives on the storage area network look and feel as if they are local to your computer

Answer 51

iSCSI (Internet Small Computer Systems Interface)

Question 52

What can be used on a windows machine to control how system hardware acts or reacts to an action?

Answer 52

Policies

Question 53

Where do you go on a Windows machine to enable/disable DEP (Data Execution Prevention)?

Answer 53

System - Advanced - Performance Settings - Data Execution Prevention

Question 54

Where do you go on a windows machine to disable ports?

Answer 54

BIOS settings

Question 55

The interference caused by an electromagnetic disturbance affecting the performance of a device, transmission channel, or system

Answer 55

EMI (Electromagnetic Interference)

Question 56

an EMI when the interference is in the radio frequency spectrum

Answer 56

RFI (Radio Frequency Interference)

Question 57

a difference of potential between two items that causes static electricity

Answer 57

ESD (Electrostatic Discharge)