Question 1

Cracking a password can take many different routes.

Accepted Answer

There are various methods of cracking a password, such as brute-force attacks, dictionary attacks, rainbow table attacks, social engineering, and so on.

Question 2

There are only two ways to help prevent a password from being cracked.

Accepted Answer

There are multiple ways to help prevent a password from being cracked, including using strong, unique passwords, enabling two-factor authentication, limiting password attempts, and using password managers.

Question 3

Capturing packets is also referred to as ____.&#10;A) packet stiffing&#10;B) packet sniffing&#10;C) packet hiding&#10;D) packet blocking

Accepted Answer

Capturing packets is commonly known as packet sniffing, where data packets flowing over a network are intercepted and analyzed. This can be done for troubleshooting, security audit purposes, or even hacking.

Question 4

A ____ is an alert given when normal, non-malicious traffic happens to match one or more rules for malicious traffic.&#10;A) false negative&#10;B) true negative&#10;C) true positive&#10;D) false positive

Accepted Answer

A false positive is an alert generated when benign or non-malicious activity triggers a security alarm. In this case, the normal traffic is being flagged as malicious, which results in a false positive alert.

Question 5

A(n) ____________________ describes the steps needed to execute the policy.

Accepted Answer

The answer of A(n) ____________________ describes the steps needed to...

Question 6

____ is a vulnerability scanner that will scan the host system, or any and all computers on the local network or anywhere on the Internet.&#10;A) GFI LANguard&#10;B) NetCat&#10;C) L0phtCrack&#10;D) Brutus

Accepted Answer

GFI LANguard is a vulnerability scanner that can scan both the local network and the Internet, making it the best choice out of the options given. NetCat is a networking utility, L0phtCrack is a password auditing tool, and Brutus is a password cracking tool, none of which are vulnerability scanners.

Question 7

The ____ technique tries all combinations of letters, numbers, and symbols until eventually landing on the correct password.&#10;A) dictionary&#10;B) brute force&#10;C) computed hash&#10;D) linear hash

Accepted Answer

The brute force technique tries all possible combinations of characters until the correct password is found. This method can be time-consuming but is effective if the password is not too complicated. The other options, dictionary and hash techniques, rely on pre-existing lists of words and passwords and may not be effective if the password is not included in those lists. Linear hash is not a commonly used password cracking technique.

Question 8

The command ____ translates certain names into their associated IP addresses or port numbers.&#10;A) netstat -n&#10;B) netstat -r -n&#10;C) netstat -a&#10;D) netstat -a -n

Accepted Answer

The command "netstat -a -n" translates names into their associated IP addresses or port numbers. The "-a" option shows all active connections and the "-n" option displays addresses and port numbers in numerical form, rather than converting them to hostnames and services.

Question 9

Promiscuous mode guarantees that the network adapter will capture all the network traffic on the LAN.

Accepted Answer

The answer of Promiscuous mode guarantees that the network adapter...

Question 10

A sophisticated denial of service attack that is spread out to many attacking computer systems is called a ____.&#10;A) DDOS&#10;B) DOS&#10;C) DDOD&#10;D) DOD

Accepted Answer

A distributed denial of service (DDOS) attack involves multiple systems, often across multiple geographic locations, attacking a target simultaneously to overwhelm its resources and make it inaccessible.

Question 11

When the network adapter is placed into promiscuous mode, it allows all received packets to pass up into the TCP/IP stack.

Accepted Answer

The answer of When the network adapter is placed into...

Question 12

Packet sniffing is possible through the use of a special mode of operation in the network adapter called ____________________ mode.

Accepted Answer

The answer of Packet sniffing is possible through the use...

Question 13

A ____ provides the rules and expectations and the consequences of not following the rules.&#10;A) password policy&#10;B) software policy&#10;C) security policy&#10;D) network policy

Accepted Answer

The answer of A ____ provides the rules and expectations...

Question 14

A(n) ____________________ examines traffic and notes suspicious behavior in a log and may also notify a network manager through email, instant message, or some other communication.

Accepted Answer

The answer of A(n) ____________________ examines traffic and notes suspicious...

Question 15

A list of ports that are in use can be obtained through the ____ utility.&#10;A) NBTSTAT&#10;B) IPCONFIG&#10;C) NETSTAT&#10;D) TCPSTAT

Accepted Answer

The answer of A list of ports that are in...

Question 16

One way around the switch-based limitation is to use a managed switch that allows a ____ to be designated.&#10;A) block port&#10;B) pan port&#10;C) management port&#10;D) mirror port

Accepted Answer

The answer of One way around the switch-based limitation is...

Question 17

In order to inform the users of their rights and responsibilities while using computers on an institutions network a(n) ____ is made available.&#10;A) Internet Rights Policy&#10;B) Acceptable Use Policy&#10;C) Internet Abuse Policy&#10;D) Standard Rights Policy

Accepted Answer

The answer of In order to inform the users of...

Question 18

The most common approaches to password ____________________ are guessing, brute force, and dictionary attacks.

Accepted Answer

The answer of The most common approaches to password ____________________...

Question 19

Security policies and procedures should be static.

Accepted Answer

The answer of Security policies and procedures should be static....

Question 20

A(n) ____________________ will take action on its own to handle the problem without user intervention, such as interrupting the offending traffic.

Accepted Answer

The answer of A(n) ____________________ will take action on its...

Question 21

How do you prevent booting from a USB thumb drive?

Accepted Answer

The answer of How do you prevent booting from a...

Question 22

Match between columns&#10;                        Premises: Composed of information commonly known about the individual&#10;Composed of information commonly known about the individual&#10;Composed of information commonly known about the individual&#10;Composed of information commonly known about the individual&#10;Composed of information commonly known about the individual&#10;Typically the most time consuming way to crack a password&#10;Typically the most time consuming way to crack a password&#10;Typically the most time consuming way to crack a password&#10;Typically the most time consuming way to crack a password&#10;Typically the most time consuming way to crack a password&#10;Uses a list of common passwords to try to crack an unknown password&#10;Uses a list of common passwords to try to crack an unknown password&#10;Uses a list of common passwords to try to crack an unknown password&#10;Uses a list of common passwords to try to crack an unknown password&#10;Uses a list of common passwords to try to crack an unknown password&#10;Examines network traffic for known attack signatures&#10;Examines network traffic for known attack signatures&#10;Examines network traffic for known attack signatures&#10;Examines network traffic for known attack signatures&#10;Examines network traffic for known attack signatures&#10;The technique of examining the network traffic entering a network or a computer and determining if the traffic is malicious in nature&#10;The technique of examining the network traffic entering a network or a computer and determining if the traffic is malicious in nature&#10;The technique of examining the network traffic entering a network or a computer and determining if the traffic is malicious in nature&#10;The technique of examining the network traffic entering a network or a computer and determining if the traffic is malicious in nature&#10;The technique of examining the network traffic entering a network or a computer and determining if the traffic is malicious in nature

Accepted Answer

The Answer of Weak password and Brute force and Dictionary is...

Question 23

Discuss the process of guessing a password.

Accepted Answer

The answer of Discuss the process of guessing a password....

Question 24

Describe the educational, diagnostics, network baseline measurements, and security reasons to capture network traffic.

Accepted Answer

The answer of Describe the educational, diagnostics, network baseline measurements,...

Question 25

List and describe what a typical AUP contains.

Accepted Answer

The answer of List and describe what a typical AUP...

Question 26

Describe host-based intrusion detection.

Accepted Answer

The answer of Describe host-based intrusion detection....

Deck 23: Security Software