Question 1

Which of the following firewall ports must be open to allow FTP traffic?&#10;A)Port 20 and 22&#10;B)Port 25 and 110&#10;C)Port 20 and 21&#10;D)Port 80 and 443

Accepted Answer

The ports that must be opened on the firewall to allow FTP traffic are ports 20 and 21.
Key Takeaway: File Transfer Protocol (FTP) is a standard network protocol used to exchange and manipulate files over a TCP/IP based network, such as the Internet. FTP is built on client-server architecture and utilizes separate control and data connections between the client and server applications. FTP servers listen on the TCP port number 21. When the FTP server initiates the data connection to the FTP client, it binds the source port to port 20 on the FTP server.

Question 2

Which of the following attacks can be prevented if you shred all confidential material before dumping it in the waste bins?&#10;A)Man-in-the-middle&#10;B)Shoulder surfing&#10;C)Phishing&#10;D)Dumpster diving

Accepted Answer

Dumpster diving refers to an attack where an attacker looks through trash for clues and other confidential information, often in the form of paper scraps, to find user passwords and other pertinent information.
Key Takeaway: To prevent dumpster diving attacks, it is recommended to shred all paper, including print-outs, in a cross-cut shredder before being recycled. All storage media should be erased before being trashed.

Question 3

When should passwords be allowed to be sent as plain text over a public network?&#10;A)Never&#10;B)When the password protected resources are fairly unimportant&#10;C)When using Secure Shell&#10;D)When the communications are secured by SSL or TLS

Accepted Answer

Passwords should never be sent as plain text over a public network.
Key Takeaway: Passwords should never be sent over a public network in plain text. Doing so defeats the purpose of having a password. If a resource is password protected, it is important enough to only send the password in a secure way. Secure Shell and SSL/TLS encrypt all communications including passwords.

Question 4

Jack walks back to his desk and tries to log on to his computer. He receives a message that states he needs to contact his administrator because his account is locked. What could have been the probable cause?

A)An intruder has tried logging on to his system. On successive failed attempts, the account lockout policy has locked his PC.
B)The entire network is down.
C)He has left some application open on his computer, which has locked the system.
D)He needs to continue to try logging on. Eventually the system will allow him to log in.

Accepted Answer

In this case, the account lockout policy has been activated on his computer.
Key Takeaway: In an account lockout attack, the attacker attempts to lock out all user accounts, typically by failing login as many times as the threshold defined by the authentication system. For example, if users are locked out of their accounts after three failed login attempts, an attacker can lock out their account for them simply by failing login three times.

Question 5

Harriet has just switched on her system and opened a Word document. Unprompted, her computer suddenly connects to the Internet. What kind of attack is this a symptom of?&#10;A)An ACK attack&#10;B)A worm&#10;C)A logic bomb&#10;D)A virus

Accepted Answer

Harriet's computer is exhibiting symptoms of a logic bomb. A logic bomb notifies an attacker when a certain set of circumstances has occurred. This triggers an attack on the system.
Key Takeaway: A logic bomb is a piece of code intentionally inserted into software with the intention of setting off a malicious function when specified conditions are met or at a specific time. Other malicious types of software, such as viruses and worms, often contain logic bombs. For example, a virus may be set to attack host systems on a specific day.

Question 6

Harriet the IT Administrator is getting frequent complaints from users that they are receiving unsolicited e-mails from an e-mail address. What should she do to prevent this from occurring?&#10;A)Install an anti-spam filter on the domain mail servers and filter the email address.&#10;B)Configure Outlook to block these e-mails.&#10;C)Configure a rule in each user's router and restart the router.&#10;D)Configure the firewall to block the e-mails.

Accepted Answer

To fix this problem, install an anti-spam filter on the domain mail servers and filter the e-mail address.
Key Takeaway: No one anti-spam technique is a complete solution to the problem. Email system users and administrators should use multiple techniques to maximize effectiveness.

Question 7

David is the Security Advisor at his organization. He is predicting a rapid growth in the number of systems connecting to the corporate network. He wants to hide segments of the network from other segments and thereby control access to data on the network. Which of the following should he implement?

A)A security zone
B)NAT
C)MAC
D)VLAN

Accepted Answer

A VLAN allows you to hide segments of the network from other segments and thereby control access to data on the network. VLANs can also be set up to control data paths..
Key Takeaway: A VLAN is a good way to contain network traffic in a certain area in a network. VLANs can be configured using high-end switches.

Question 8

Your boss asks you to send a memo to the company on recommended password practices for company computers. Besides recommending the best types of passwords, you want to describe which practices to avoid when creating a password. Which of the following practices do you recommend against? Choose two.

A)Using the same password for every login.
B)Incorporating symbols into passwords.
C)Using different passwords for different logins.
D)Not being able to remember all of the passwords.

Accepted Answer

Using the same password for every login increases the risk that all of your logins will be compromised if one is compromised. While it is a good practice to use multiple passwords, forgetting a password may slow your access to a necessary program and possibly result in an unnecessary intervention by the IT department.
Key Takeaway: Educating users on standard password practices will help prevent poor password practices and reduce unneeded utilization of resources.

Question 9

Of the following biometric methods, which is the least reliable for security purposes?&#10;A)Retina scan&#10;B)Voice analysis&#10;C)Fingerprint scan&#10;D)Hand analysis (geometry scan)

Accepted Answer

The least reliable biometric method is voice analysis because a recording of the person's actual voice can be used to authenticate.
Key Takeaway: Imitating a person's voice sufficiently well to fool voice recognition software is highly unlikely, but a recording contains all of the factors needed to trick the software. Retina, fingerprint, and hand analysis all have unique characteristics to prevent replication.

Question 10

Which of the following should Mary set up on her Wi-Fi router to make it as secure as possible?&#10;A)NTFS&#10;B)WPA&#10;C)DHCP&#10;D)WPA2

Accepted Answer

WPA2 is the most secure standard available.
Key Takeaway: Of the four wireless encryption standards mentioned here, WPA2 is the most secure encryption standard.

Question 11

An intern with your IT department needs to know more about wireless security. Of the following, which are valid wireless encryption types?&#10;A)SSID&#10;B)WPA&#10;C)WEP&#10;D)SSL

Accepted Answer

The answer of An intern with your IT department needs...

Question 12

Jill is trying to install an antivirus on her computer. Despite repeated attempts she is not able to install the antivirus software. What could be the most likely problem?&#10;A)It is an old version of the antivirus software.&#10;B)She has just re-installed the operating system.&#10;C)She has Microsoft office running on the computer.&#10;D)She is logged in as a guest.

Accepted Answer

The answer of Jill is trying to install an antivirus...

Question 13

A confirmed user in your Active Directory network calls and has forgotten his password. He asks you for the password. To ensure a basic security standard and a prompt resolution, you:&#10;A)Locate the password and tell him the password.&#10;B)Reset the password on his computer to a temporary password, advise him of the temporary password and to change this (the password) to a permanent password once he logs in.&#10;C)Set an appointment to manually change the password at his computer.&#10;D)Tell him to speak to his supervisor, who needs to request the password.

Accepted Answer

The answer of A confirmed user in your Active Directory...

Question 14

Which of these tools should be used to enable auditing on a local level?&#10;A)Local Security Settings&#10;B)AD policy&#10;C)Group Policy&#10;D)User Settings

Accepted Answer

The answer of Which of these tools should be used...

Question 15

Your IT Director is concerned about the data stored on retired computers. You have been tasked to recommend a security procedure that prevents the data (on the hard drive) from being recovered. What is the best procedure?

A)Recycle the hard drives.
B)Flash the BIOS.
C)Destroy the hard drives.
D)Format each drive.

Accepted Answer

The answer of Your IT Director is concerned about the...

Question 16

New laptops with Windows 7 have just arrived. These are intended to be used outside the company for business trips. To ensure the security of data, you utilize which option?&#10;A)Windows Firewall&#10;B)Bit Locker&#10;C)Trusted Platform Module

Accepted Answer

The answer of New laptops with Windows 7 have just...

Question 17

A specific program that uses a UDP protocol and has an assigned port number needs to pass through your firewall on a Windows 7 computer. How do you allow grant secure access?&#10;A)Create a program to allow this access&#10;B)Create an exception&#10;C)Use the Add Port button

Accepted Answer

The answer of A specific program that uses a UDP...

Question 18

Generally, one should not open any attachments sent from unknown senders through email. Which of the following attachments poses a maximum security risk if opened?&#10;A)DOC&#10;B)SCR&#10;C)PDF&#10;D)XLS

Accepted Answer

The answer of Generally, one should not open any attachments...

Question 19

An employee has just received a new laptop. She asks which threats the antivirus software typically prevents. Which of the following threats are commonly prevented?&#10;A)Worms&#10;B)Spam&#10;C)Trojans&#10;D)Viruses

Accepted Answer

The answer of An employee has just received a new...

Question 20

Which of the following can significantly increase the risk of unauthorized access on a wireless network?
I. Using WEP authentication.
II. Using low time intervals between successive beacons.
III. Using generic SSIDs.

A)I and II
B)I and III
C)II and III
D)All of the above

Accepted Answer

The answer of Which of the following can significantly increase...

Question 21

What is the generic term for a hacker going through your trash to find critical information?&#10;A)Dumpster diving.&#10;B)Refuse searching.&#10;C)Refuse diving.&#10;D)Dumpster searching.

Accepted Answer

The answer of What is the generic term for a...

Question 22

Which of the following types of program is not destructive, but leach bandwidth in networks and can turn a speedy machine into a slow one?&#10;A)Malware&#10;B)Adware&#10;C)Spyware&#10;D)Grayware

Accepted Answer

The answer of Which of the following types of program...

Question 23

John is concerned about users using thumb drives to connect to USB ports on company workstations because this could facilitate data theft of sensitive files. What should he do to fix this concern?&#10;A)Disable USB in the workstation BIOS.&#10;B)Seal all USB ports.&#10;C)Install Antivirus.&#10;D)Install Firewall.

Accepted Answer

The answer of John is concerned about users using thumb...

Question 24

The only way to ensure that a hard disk is completely wiped so data cannot be retrieved from it, is:&#10;A)Degaussing&#10;B)Shredding&#10;C)Drilling&#10;D)Drive Wiping

Accepted Answer

The answer of The only way to ensure that a...

Question 25

Which of the following characterizes malware that enables privileged access to the operating system and therefore is able to conceal itself from normal detection methods?&#10;A)Trojans&#10;B)Rootkits&#10;C)Worms&#10;D)Spyware

Accepted Answer

The answer of Which of the following characterizes malware that...

Question 26

Which of the following would help prevent threats from CDs or DVDs?&#10;A)Restricting user permissions.&#10;B)Setting strong passwords.&#10;C)Changing default user names.&#10;D)Disabling autorun.

Accepted Answer

The answer of Which of the following would help prevent...

Question 27

What type of malware encrypts data and holds data hostage for a fee to decrypt it?&#10;A)Ransomware&#10;B)Viruses&#10;C)Trojans&#10;D)Rootkits

Accepted Answer

The answer of What type of malware encrypts data and...

Question 28

What type of attack is used to phish data from specific employees such as executives?&#10;A)Spear phishing&#10;B)Spoofing&#10;C)Shoulder surfing&#10;D)Zero day

Accepted Answer

The answer of What type of attack is used to...

Question 29

What can be used on a Windows system to fully encrypt the hard drive?&#10;A)IIS&#10;B)FTP&#10;C)BitLocker&#10;D)PGP

Accepted Answer

The answer of What can be used on a Windows...

Question 30

What is common on Android phones to unlock the device?&#10;A)Fingerprint lock&#10;B)Face lock&#10;C)Swipe lock&#10;D)Biometric lock

Accepted Answer

The answer of What is common on Android phones to...

Deck 9: Security