Unit 3

Question 1

What is the function of

SMTP (Simple Mail Transfer Protocol)

Answer 1

Standard communication protocol for electronic mail transmission.

Question 2

What is the function of

POP3 (Post Office Protocol 3)

Answer 2

An internet protocol that is used by e-mail clients to retrieve emails from a mail server.

Question 3

What is the function of

FTP (File Transfer Protocol)

Answer 3

Standard communication protocol for the transfer of computer files.

Question 4

What is the function of

HTTP (Hypertext Transfer Protocol)

Answer 4

A protocol that transfers data between a user’s browser and a website server.

Question 5

What is the function of

HTTPS (Hypertext Transfer Protocol Secure)

Answer 5

A protocol that secures communication and data transfer between a user’s browser and a website server.

Provides a level of encryption, which makes it more secure than HTTP..

Question 6

What is the function of

ICMP (Internet Control Access Protocol)

Answer 6

Used by a router to exchange information with other routers.

Question 7

What is the function of

TCP (Transmission Control Protocol)

Answer 7

A transport protocol that is used on top of IP to ensure reliable transmission of packets.

Question 8

What is a

Denial of Service Atttack

Answer 8

An attacker floods a server with data so that it cannot respond to genuine users.

Question 9

What is a

Distributed Denial of Service Attack

Answer 9

Multiple machines target a single server to perform a denial of service attack.

Question 10

What is a

Teardrop Attack

Answer 10

The attacker sends fragmented packets to a server, so the server cannot reassemble the packets and is overloaded.

(Type of DoS attack)

Question 11

What is a

SYN Packet

Answer 11

Client requests connection to a server by sending packet

First step of a TCP handshake

Question 12

What is a

SYN-ACK Packet

Answer 12

Server’s reply to a SYN packet

Second step of a TCP handshake

Question 13

What is an

ACK Packet

Answer 13

Shows that Client acknowledges the server and allows the start of a reliable connection

Third step of a TCP Handshake

Question 14

What is a

Reflected XSS Attack

Answer 14

The malicious code resides in a link, and isn’t stored in a server’s database

Question 15

What is a

Stored XSS Attack

Answer 15

The malicious code resides on a web page or in a database

Question 16

What are

RST Cookies

Answer 16

A server intentionally sends an invalid SYN-ACK packet to a client. If the client generates an AST packet, the server knows the request is legitimate.

Mitigation Technique

Question 17

What is

Stack Tweaking

Answer 17

Altering the TCP stack on a server so that it will take less time to time out when a SYN connection is left incomplete.

Question 18

What is a

SYN Flood

Answer 18

Attacker sends a large amount of SYN packets to a server

Question 19

What are

SYN Cookies

Answer 19

Cookies used to authenticate connection requests

Question 20

What is a

ICMP Flood

Answer 20

ICMP Echo packets are sent to a target from a spoofed ip address. Target responds to each packet and reaches limit of packets per second sent.

Question 21

What is the port number of

HTTPS

Answer 21

443

Question 22

What is the port number of

HTTP

Answer 22

80

Question 23

What is the port number of

IMAP

Answer 23

143

Question 24

What is the port number of

POP3

Answer 24

110

Question 25

# What is the port number of FTP

Answer 25

20/21

Question 26

# What is the port number of SMTP

Answer 26

25

Question 27

# What are Micro Blocks

Answer 27

Allocating a micro record instead of a complete connection for each request.

Question 28

# What are Loose-lipped error messages

Answer 28

A message to a web browser that reveals potentially damaging information about the server's configuration usable by a hacker.