Security

Question 1

What are two ways people can gain unauthorized access to something?

Answer 1

Dumpster diving / Shoulder surfing for passwords.

Question 2

What is a method used to prevent infiltration?

Answer 2

A man trap, where two doors and authentication is used to capture and deny people who don’t belong in the building.

Question 3

What is DoS

Answer 3

Overwhelm servers, deny access

Question 4

Three examples of hardware authentication

Answer 4

Smartcard readers, RSA token (keyfob with code), Badges.

Question 5

What is the principal of least privilege?

Answer 5

Assigning the bare minimum permissions a person needs to do their job in the name of security.

Question 6

What is a security policy?

Answer 6

Permissions an admin can set to ensure security. Things such as password max ages, desktop backgrounds, scripts to run at startup are included.

Question 7

What is PII

Answer 7

Personally Identifiable information - Info that can lead back to a specific individual

Question 8

What is PHI

Answer 8

Protected health information - Including medical diagnoses and healthcare received by any institution.

Question 9

When it comes to compliance policies, what is PCI?

Answer 9

Payment card industry. Practices all people who handle transfers, accept money or deal with credit card funds must follow.

Question 10

What is Open Source?

Answer 10

Open source allows modification and redistribution of code

Question 11

What are three traits of a Virus

Answer 11

Replicates and Activates
Only replicates to other drives, not across networks
Requires human interaction to spread

Question 12

What are two traits of a worm

Answer 12

Propagates across a network

Doesn’t hitchhike on programs like a virus

Question 13

What are three traits of a Trojan horse

Answer 13

Pretends to be something it’s not
Does not replicate
Activates upon execution

Question 14

What is a Rootkit

Answer 14

Something that hides in low level OS functions such as firmware. These can hold elevated privileges…

Question 15

What is a Zero Day exploit

Answer 15

A vulnerability previously unknown to the devs

Question 16

What is session hijacking?

Answer 16

Sniffing packets to steal authentication data, and then inserting yourself into the session while pretending to be the original recipient.

Question 17

What is a dictionary attack

Answer 17

Using known words or passwords from breaches to attempt to log in to an account

Question 18

What is a rainbow table attack

Answer 18

Attempting to crack the hashes of databases using a rainbow table

Question 19

What are three symptoms of malware on your system

Answer 19

High frequency crashes and slows even with your apps closed
High usage in task manager
Being redirected in your browser

Question 20

What is a polymorph virus

Answer 20

A virus that changes its signature to hide against anti virus malware

Question 21

What are four steps to take when you have an infected machine

Answer 21

Quarantine the machine
Boot to safe mode or a bootable AV media
If you didn’t solve the virus, restore
Remediate (Fix what it broke)

Question 22

What is the purpose of a firewall

Answer 22

To hide IPs, ports and analyze packets coming into the network.

Question 23

What is stateful packet inspection?

Answer 23

Where a firewall individually inspects every packet entering the network for sus activity.

Question 24

What does port forwarding do?

Answer 24

Directs any data that comes in on a specific port to a specific PC on the network

Question 25

What is port triggering

Answer 25

Opening a specified incoming port when you send data on a specific outgoing port.
Ex: Sending out data on 1333 opens port 3389.

Question 26

What is a DMZ

Answer 26

Being outside of the firewall and vulnerable to any incoming connections.

Question 27

What is an IDS

Answer 27

Intrusion detection system sits within the network and notifies administrators of any activity. It acts as a second firewall of sorts. Inspects packets.

Question 28

What is an IPS

Answer 28

A system that sits directly in the flow of traffic. It can prevent active attacks against your network that a firewall may have missed but if the IPS goes down so does your network. It also adds considerable overhead to your network.

Question 29

What is UTM

Answer 29

(UTM) refers to when multiple security features or services are combined into a single device within your network.

Question 30

What is IPsec

Answer 30

Ip Security is used to provide encryption between servers and clients. Can be used in VPNs.

Question 31

What is Secure Sockets Layer and Transport Layer Security.

Answer 31

Encryption methods that provide encryption to web browsers when connecting to servers.