Question 1

An incorrect configuration of wireless hardware or software can often result in easy access to a system.

Accepted Answer

This is true. Incorrectly configured wireless hardware or software can create vulnerabilities that can be exploited by attackers to gain unauthorized access to a system. Common misconfigurations include weak passwords, unsecured wireless networks, and outdated firmware or software. It is important to regularly review and update the configuration of wireless systems to ensure that they are secure and protected against potential threats.

Question 2

____ occurs when an individual uses the personal information of someone else to impersonate that individual with the intent to commit fraud or other crimes.&#10;A) Identity theft&#10;B) Spam&#10;C) DoS attack&#10;D) Phishing

Accepted Answer

Identity theft involves stealing and using someone else's personal information for fraudulent purposes. This could include using their name, Social Security number, or financial information to open accounts, make purchases, or commit other crimes. Spam is unsolicited email or messages, a DoS attack floods a network with traffic to disrupt service, and phishing involves tricking someone into divulging their personal information through fraudulent emails or websites.

Question 3

DoS attacks are rare against wired network servers.

Accepted Answer

DoS attacks can target any type of server, wired or wireless. It is not limited to just one type of network.

Question 4

Before users can be given access to a computer and its data, they must in some way prove that they are who they claim to be. This process of providing proof is known as ____.&#10;A) authorization&#10;B) encryption&#10;C) cryptography&#10;D) authentication

Accepted Answer

The process of providing proof of identity is called authentication. Authorization refers to the process of granting access to specific resources once a user has been authenticated. Encryption and cryptography are related to securing data, but not specifically to user authentication.

Question 5

In a ____ attack, each word from a dictionary is encoded in the same way the computer encodes a user's password for protection. Attackers then compare the encoded dictionary words against those in the encoded password file.

A) DoS
B) brute force
C) dictionary
D) rogue AP

Accepted Answer

This is a dictionary attack where the attacker compares encoded dictionary words against those in the encoded password file. A brute force attack is where the attacker tries every possible combination of characters until the correct one is found. A DoS (Denial of Service) attack is where the attacker floods a computer or network with traffic to make it unavailable to users. A rogue AP (Access Point) is an unauthorized access point used to gain access to a network.

Question 6

Authentication can be performed based on what you have, what you know, or what you are.

Accepted Answer

Authentication can indeed be performed based on what you have (such as a smart card or token), what you know (such as a password or PIN), or what you are (such as biometric identification).

Question 7

The ____ is a popular protocol used to manage networked equipment.&#10;A) SMTP&#10;B) SNMP&#10;C) FTP&#10;D) POP3

Accepted Answer

SNMP (Simple Network Management Protocol) is a protocol used for managing networked equipment such as servers, routers, switches, and other devices. It allows network administrators to monitor and control network devices from a central location. SMTP (Simple Mail Transfer Protocol) is used for sending emails, FTP (File Transfer Protocol) is used for transferring files over a network, and POP3 (Post Office Protocol version 3) is used for retrieving emails from a mail server. While all of these protocols are used in networking, SNMP is specifically designed for equipment management.

Question 8

____ is a service that allows devices on a network to discover other devices and determine how to work with them.&#10;A) IPSec&#10;B) SNMP&#10;C) UPnP&#10;D) PnP

Accepted Answer

UPnP (Universal Plug and Play) is a service that allows devices to discover other devices on a network and determine how to work with them. It is commonly used for home automation, media streaming, and gaming devices. IPSec is a protocol used for secure communication over a network, SNMP is a protocol used for network management, and PnP (Plug and Play) is a process for automatically detecting and installing hardware devices on a computer. None of these options fit the description of a service that allows devices on a network to discover other devices and determine how to work with them except UPnP.

Question 9

____ typically displays advertising banners or pop-up ads and is frequently encountered while visiting Web sites with a browser.&#10;A) Logic bomb&#10;B) Adware&#10;C) Spam&#10;D) Phishing

Accepted Answer

Adware is a type of software that displays unwanted advertisements, such as banners or pop-up ads, while users browse the internet. It is often bundled with other software programs and can be difficult to remove.

Question 10

____ is a general term used to describe software that violates a user's personal security.&#10;A) Virus&#10;B) Spyware&#10;C) Worm&#10;D) Logic bomb

Accepted Answer

Spyware is a type of software that infiltrates a user's device without their knowledge or consent and collects personal information, such as browsing habits, login credentials, and credit card information. It is generally used for advertising purposes or to sell the collected information to third-party advertisers. Viruses, worms, and logic bombs are types of malware that can cause damage to a user's system, but they may not necessarily violate personal security in the same way that spyware does.

Question 11

A computer ____ is a program that secretly attaches itself to another document or program and executes when that document or program is opened.&#10;A) virus&#10;B) worm&#10;C) spam&#10;D) logic bomb

Accepted Answer

The answer of A computer ____ is a program that...

Question 12

In a ____ attack, an attacker attempts to create every possible password combination by systematically changing one character at a time in a password.&#10;A) dictionary&#10;B) brute force&#10;C) DoS&#10;D) rogue AP

Accepted Answer

The answer of In a ____ attack, an attacker attempts...

Question 13

A ____ bypasses all of the network security and opens the entire network and all users to direct attacks.&#10;A) wireless router&#10;B) firewall&#10;C) rogue access point&#10;D) wireless gateway

Accepted Answer

The answer of A ____ bypasses all of the network...

Question 14

A ____ attack is designed to prevent a device from performing its intended function.&#10;A) denial-of-service (DoS)&#10;B) rogue AP&#10;C) phishing&#10;D) pharming

Accepted Answer

The answer of A ____ attack is designed to prevent...

Question 15

A ____ is a computer program that lies dormant until it is triggered by a specific event.&#10;A) worm&#10;B) virus&#10;C) spam&#10;D) logic bomb

Accepted Answer

The answer of A ____ is a computer program that...

Question 16

In technical terms, ____ describes the points of risk regarding the penetration of a security defense.&#10;A) security vulnerability&#10;B) dictionary attack&#10;C) password guessing&#10;D) IPSec

Accepted Answer

The answer of In technical terms, ____ describes the points...

Question 17

Because CSMA/CA has all stations wait a random amount of time after the medium is clear, the number of collisions is significantly reduced.

Accepted Answer

The answer of Because CSMA/CA has all stations wait a...

Question 18

____ allows the Windows operating system to automatically detect new hardware when it is installed on a computer.&#10;A) UPnP&#10;B) SNMP&#10;C) IPSec&#10;D) PnP

Accepted Answer

The answer of ____ allows the Windows operating system to...

Question 19

One of the spyware tools often used is ____.&#10;A) DoS&#10;B) spam&#10;C) adware&#10;D) rogue APs

Accepted Answer

The answer of One of the spyware tools often used...

Question 20

Logic bombs are easy to detect before they are triggered.

Accepted Answer

The answer of Logic bombs are easy to detect before...

Question 21

The Anti-Spyware Coalition defines ____________________ as technologies that are implemented in ways that impair a user's control over the use of system resources.

Accepted Answer

The answer of The Anti-Spyware Coalition defines ____________________ as technologies...

Question 22

With wireless CSMA/CA the amount of time that a device must wait after the medium is clear is called the ____________________.

Accepted Answer

The answer of With wireless CSMA/CA the amount of time...

Question 23

A(n) ____________________ may be defined as a weakness or flaw in an information system that could be exploited to cause harm.

Accepted Answer

The answer of A(n) ____________________ may be defined as a...

Question 24

Most successful wireless DoS attacks are performed at the ____ layer of the OSI model.&#10;A) Physical&#10;B) MAC&#10;C) Network&#10;D) Application

Accepted Answer

The answer of Most successful wireless DoS attacks are performed...

Question 25

What are the minimum criteria for creating good passwords?

Accepted Answer

The answer of What are the minimum criteria for creating...

Question 26

What are the problems with using default passwords?

Accepted Answer

The answer of What are the problems with using default...

Question 27

Because the wireless medium is shared among all devices, there must be rules for cooperation among the wireless devices. The 802.11 standard uses a procedure known as ____.&#10;A) ISM&#10;B) CSMA/CD&#10;C) CSMA/CA&#10;D) IPSec

Accepted Answer

The answer of Because the wireless medium is shared among...

Question 28

What are some of the characteristics of weak passwords?

Accepted Answer

The answer of What are some of the characteristics of...

Question 29

What are some of the symptoms that indicate a virus has infected a computer?

Accepted Answer

The answer of What are some of the symptoms that...

Question 30

A ____ program creates fake packets and flood the wireless network.&#10;A) MAC&#10;B) packet sniffer&#10;C) packet generator&#10;D) CSMA/CA

Accepted Answer

The answer of A ____ program creates fake packets and...

Question 31

____ attacks are designed to deny wireless devices access to the access point itself.&#10;A) DoS&#10;B) Phishing&#10;C) Rogue AP&#10;D) Wireless DoS

Accepted Answer

The answer of ____ attacks are designed to deny wireless...

Question 32

With explicit ____, an acknowledgment frame (abbreviated ACK) is sent by the receiving device back to the sending device to confirm that the data frame arrived intact.&#10;A) packet generator&#10;B) slot time&#10;C) CRC&#10;D) frame acknowledgment

Accepted Answer

The answer of With explicit ____, an acknowledgment frame (abbreviated...

Question 33

What are the security problems related to supporting remote access in wireless gateways?

Accepted Answer

The answer of What are the security problems related to...

Question 34

What are the security problems related to adware?

Accepted Answer

The answer of What are the security problems related to...

Question 35

____________________ are devices that combine access point, router, and network address translation features.

Accepted Answer

The answer of ____________________ are devices that combine access point,...

Question 36

____ attacks flood the RF spectrum with enough radiomagnetic interference to prevent a device from effectively communicating with the AP.&#10;A) Physical layer&#10;B) MAC layer&#10;C) LLC layer&#10;D) Transport layer

Accepted Answer

The answer of ____ attacks flood the RF spectrum with...

Question 37

Once an attacker's wireless device has entered the network and focused its attacks at other similar devices this is known as a(n) ____________________.

Accepted Answer

The answer of Once an attacker's wireless device has entered...

Question 38

Briefly explain the password paradox.

Accepted Answer

The answer of Briefly explain the password paradox....

Question 39

What are the problems of using community strings in SNMP?

Accepted Answer

The answer of What are the problems of using community...

Question 40

Briefly describe the Carrier Sense Multiple Access with Collision Avoidance (CSMA/CA) procedure.

Accepted Answer

The answer of Briefly describe the Carrier Sense Multiple Access...

Question 41

Briefly describe how to perform a wired network DoS attack.

Accepted Answer

The answer of Briefly describe how to perform a wired...

Question 42

Match between columns&#10;                        Premises: determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;determines the number of unique new passwords a user must use before an old password can be reused.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;a secret combination of letters and numbers that serves to validate or authenticate a user by what he knows.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;unsolicited e-mail.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;term used to describe computer programs designed to break into and create havoc on portable or desktop computers.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;attempts to prevent multiple wireless devices from transmitting at the same time.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;how many days a password can be used before the user is required to change it.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;U.S. law against spam.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;determines how many days a user must keep new passwords before they can change them.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.&#10;software that delivers advertising content in a manner or context that is unexpected and unwanted by the user.

Accepted Answer

The Answer of Spam and CAN-SPAM and Adware and Password is...

Deck 4: Active Wireless Attacks