Security Technologies

Question 1

User can view the contents of a folder and any subfolders. User can view the contents of the file.

Answer 1

Read Permission

Question 2

Read permission, plus the user can add files and create new subfolders. Read permission, plus the user can make changes (write) to the file.

Answer 2

Write Permission

Question 3

Read permission, plus the user can run executable files contained in the folder. This permission is inherited by any subfolders and files. Read permission, plus the user can run a file if it is executable.

Answer 3

Read & Execute Permission

Question 4

Read permission, plus the user can run executable files contained in the folder. This permission is inherited by subfolders only.

Answer 4

List Folder Contents Permission

Question 5

Read and Write permissions, plus the user can delete the folder. Read and Write permissions, plus the user can delete the file.

Answer 5

Modify Permission

Question 6

Read, Write, and Modify permissions and the user can delete all files and subfolders. Read, write, modify, and delete the file.

Answer 6

Full Control Permission

Question 7

A user’s permissions are the sum of the permissions they have been assigned individually and obtained through any groups in which they are a member.

Answer 7

effective permissions

Question 8

Syntax to modify file or folder attributes

Answer 8

attrib.exe

ATTRIB [ + attribute | - attribute ] [pathname] [/S [/D]]

Question 9

What are the permission types on Linux?

Answer 9

Read (r): User can view the contents of a file.
Write (w): User can write to (modify) the contents of a file or directory.
Execute (x): User can run an executable file and view the contents of a directory.

Question 10

In Linux, the person who is responsible for the file.

Answer 10

Owner

Question 11

In Linux, includes members of the file’s group.

Answer 11

Group

Question 12

In Linux, includes all users who are not in the file or folder’s group or the owner.

Answer 12

Others

Question 13

Syntax for allowing all permissions in Linux

Answer 13

drwxrwxrwx.

Question 14

Component included with many Linux distributions allows more options for setting file and folder permissions

Answer 14

Security Enhanced Linux (SELinux)

Question 15

Default Share permission assigned to the Everyone group

Answer 15

Read

Question 16

Default Share permission assigned to the Administrators group on the local computer

Answer 16

Full Control

Question 17

Character at the end of the share name indicates that is a hidden share.

Answer 17

$

Question 18

Permissions assigned to a parent object that flow down and apply to a child object.

Answer 18

Inherited permissions

Question 19

This command allows you to copy objects while preserving their existing permissions.

Answer 19

xcopy

Question 20

Option that allows the change of permissions to be applied to all sub folders

Answer 20

Propagating Permissions

Question 21

A MMC snap-in (also available in Computer Management) which allows you to centrally manage users and groups on the computer. You can use it to create, rename, or delete users and groups; add users to groups; and set other user settings such as password policies, logon scripts, and folder locations.

Answer 21

Local Users and Groups

Question 22

A utility which allows you to configure a wide range of security settings for the local computer, including those related to account management, default user rights, network functions, and so on. It works primarily by changing registry settings, but provides a much safer and more focused interface than REGEDIT

Answer 22

Local Security Policy

Question 23

A utility which allows you to edit group policies for the entire computer

Answer 23

Local Group Policy Editor

Question 24

A database which stores user passwords and performs authentication of local users

Answer 24

Security Account Manager

Question 25

A Control Panel utility which allows individual users to access their stored user names, passwords, and certificates

Answer 25

Credential Manager

Question 26

Notifies you when an action will change Windows settings and gives you an option to stop

Answer 26

User Account Control

Question 27

A feature that runs in the background to protect critical system files, folders, and registry keys from unplanned alterations

Answer 27

Windows Resource Protection

Question 28

Three network protocols associated w/ Active Directory?

Answer 28

LDAP - resource directory services
Kerberos - SSO authentication through the domain
DNS - mapping the server namespace

Question 29

Stores information about all computers, users, and other resources that are available on the domain

Answer 29

domain controller

Question 30

Uses the remote share to store all personal folders, desktop contents and appearance, Windows personalization, and application settings.

Answer 30

roaming profile account

Question 31

Maps the remote share as a network drive and sets it as the user’s Documents folder.

Answer 31

home folder

Question 32

Flexible approach which allows an administrator to decide which folders are stored only on the network and which are copied locally.

Answer 32

Folder redirection

Question 33

A single sign-on system that uses the common Internet standard SAML instead of LDAP.

Answer 33

ADFS Active Directory Federation Services

Question 34

Provides directory services independent of the Windows domain model.

Answer 34

AD LDS Active Directory Lightweight Directory Services

Question 35

Allows the Active Directory network to maintain a public key infrastructure

Answer 35

AD CS Active Directory Certificate Services

Question 36

An information rights management service that can encrypt and limit access to specific types of information on the domain, such as emails, Word documents, web pages, and so on

Answer 36

AD RMS Active Directory Rights Management Services

Question 37

Allows a user or the operating system to read a file, but not write to it

Answer 37

Read-Only (R)

Question 38

Specifies the file should be backed up

Answer 38

Archive (A)

Question 39

Indicates the file is a system file and shouldn’t be altered or deleted

Answer 39

System (S)

Question 40

Suppresses the display of the file in directory lists

Answer 40

Hidden (H)

Question 41

Indicates a folder or sub-folder, differentiating them from files

Answer 41

Directory (D)

Question 42

Windows has a search function that indexes all files and directories on a drive to achieve faster search results

Answer 42

Not content-indexed (I)

Question 43

Notifies when an action changes Windows settings and gives an option to allow or deny

Answer 43

User Account Control

Question 44

A Control Panel utility which allows individual users to access their stored usernames, passwords, and certificates

Answer 44

Credential Manager

Question 45

A database containing low-level settings for all aspects of the Windows operating system as well as for some installed applications

Answer 45

Windows registry

Question 46

A utility which allows a user to configure a wide range of security settings for the local computer

Answer 46

Local Security Policy

Question 47

A database which stores user passwords and performs authentication of local users

Answer 47

Security Account Manager

Question 48

What is the purpose of BitLocker in Windows?

Answer 48

drive encryption

Question 49

The VPN protocols are managed either by software running on a host or router, or on a specialized hardware appliance known as ________.

Answer 49

VPN concentrator

Question 50

Which security appliance intercepts and mediates communications between internal and external hosts on a network?

Answer 50

Proxy server

Question 51

Which of the following is used to restrict devices which connect to the network or to detect and block some attacks using spoofed MAC addresses?

Answer 51

Port security

Question 52

What command allows you to copy objects while preserving their existing permissions?

Answer 52

xcopy

Question 53

Which Windows security feature runs in the background to protect critical system files, folders, and registry keys from unplanned alterations?

Answer 53

Windows Resource Protection

Question 54

A switch feature that tracks device MAC addresses connected to each port on a switch, and allows or blocks traffic based on source MAC addresses

Answer 54

Port security

Question 55

On Ethernet networks this is another term for port security, but it’s more commonly used for a similar feature on WAPs.

Answer 55

MAC filtering

Question 56

Used to classify and protect your organization’s confidential and critical data

Answer 56

Data loss prevention (DLP) software

Question 57

A networking device, such as a router, server, firewall, or similar device with Internetworking and data transmission capabilities that sits at the external edge of a secure internal network and requires an external device to identify and authenticate itself before the gateway creates a connection allowing access to internal network resources.

Answer 57

A VPN Gateway

Question 58

Communications protocols that provide secure data transmission over an unsecure network. Data is commonly secured using an encryption protocol such as IPsec or a tunneling protocol such as SSL/TLS.

Answer 58

Secure transport protocols

Question 59

Initially designed to provide full AAA support for users joining the network over dialup connections. Since then it’s been expanded to use for other point-to-point connections, such as authenticating remote users in a VPN, or by ISPs to authenticate customer connections

Answer 59

Remote Authentication Dial-In User Service (RADIUS)

Question 60

A RADIUS system consists of three basic parts:

Answer 60

Users, RADIUS Server, NAS

Question 61

RADIUS network protocols for authentication

Answer 61

PAP, CHAP, and EAP

Question 62

A proprietary Cisco protocol with some performance and security benefits over RADIUS. Drawbacks include more complex configuration, and incompatibility with some network configurations.

Answer 62

TACACS+

Question 63

An open standard with similar improvements to TACACS+, named for being supposedly twice as good as RADIUS

Answer 63

Diameter

Question 64

Security Appliances

Answer 64

WAF
Network antimalware
Spam filter
Content filter
Proxy server

Question 65

Relays all communication between users and the RADIUS server. It’s the device users directly connect to, like a dial-in server, VPN endpoint, or WAP.

Answer 65

Network Access Server (NAS)

Question 66

Used to authenticate PPP sessions and can be used with many VPNs.

Answer 66

Password Authentication Protocol (PAP)

Challenge Handshake Authentication Protocol (CHAP)

Question 67

An authentication framework frequently used in wireless networks and point-to-point connections.

Answer 67

Extensible Authentication Protocol (EAP)

Question 68

Enables a server to provide standardized and centralized authentication for remote users. It is a mechanism that allows authentication of dial-in and other network connections.

Answer 68

Remote Authentication Dial-In User Service (RADIUS)

Question 69

A security protocol that combines digital certificates for authentication with public key data encryption.

Answer 69

Secure Sockets Layer (SSL)

Question 70

A communication protocol that enables sending email from a client to a server or between servers.

Answer 70

Simple Mail Transfer Protocol (SMTP)

Question 71

A voice over data implementation in which voice signals are transmitted over IP networks.

Answer 71

Voice over IP (VoIP)