Home  ›   Take Quizzes  ›  Set 28  ›   Comptia Security+ Practice Exam (1)

Q.1)	Which of the Following is an item most likely to be addressed in an Acceptable Use Policy

A.	Acceptable password length

B.	Security Measures users are expected to Follow

C.	Schedule of testing

D.	Authority and conditions for monitoring user activities

E.	All of the Above

Q.2)	Covert channel is a communication channel that can be used for:

A.	Violating the security

B.	Strengthening the security policy

C.	Hardening the system

D.	Protecting the DMZ

Q.3)	Enforcing minimum privileges for general system users can be easily achieved through the use of:

A.

IPSEC

B.

TSTEC

C.

PRVMIN

D.

RBAC

Q.4)	Which of the following services should be logged for security purpose?

A.

bootp

B.

tftp

C.

sunrpc

D.	All of the Above

E.	No Answer is Correct

Q.5)	All logs are kept on archive for a period of time. What determines this period of time?

A.	Retention policies

B.	Administrator preferences

C.

MTTF

D.

MTTR

E.	All of the Above

Q.6)	With RBAC, roles are:

A.	Based on labels

B.	Based on flows

C.	Hierarchical

D.	All of the Above

E.

All equal

Q.7)	With _______________, access decisions are based on the roles that individual users have as part of an organization.

A.	Server based access control

B.	Rule based access control

C.	Token based access control

D.	Role based access control

E.	All of the Above

Q.8)	Which of the following is a feature of the Rule based access control?

A.	The use of tokens

B.	The use of profiles

C.	The use of information flow labels

D.	The use of data flow diagrams

Q.9)	A firewall can be classified as a:

A.	Rule based access control

B.	Lattice based access control

C.	Directory based access control

D.	ID based access control

E.	All of the Above

Q.10)	In the Lattice Based Access Control model, controls are applied to:

A.

Objects

B.

Scripts

C.

Factors

D.

Models

E.	Both A and B

Q.11)	With Discretionary access controls, who determines who has access and what privilege they have?

A.	Only the administrators

B.	Resource owners

C.

End users

D.	All of the Above

E.	None of the Above

Q.12)	Under MAC, which of the following is true?

A.	All that is expressly permitted is forbidden

B.	All that is not expressly permitted is not forbidden

C.	All that is not expressly permitted is forbidden

D.	Both A and B

E.	No Answer is Correct

Q.13)	Under MAC, a clearance is a

A.

Privilege

B.

Subject

C.	Sensitivity

D.

Object

Q.14)	Access controls that are not based on the policy are characterized as:

A.	Mandatory controls

B.	Discretionary controls

C.	Secret controls

D.	Corrective controls

E.	Non of the Above

Q.15)	DAC are characterized by many organizations as:

A.	Preventive controls

B.	Need-to-know controls

C.	Mandatory adjustable controls

D.	All of the Above

E.	None of the Above

Q.16)	A password represents:

A.	Something you have

B.	Something you know

C.	Something you are

D.	All of the Above

E.	None of the Above

Q.17)	A smartcard represents:

A.	Something you are

B.	Something you know

C.	Something you have

D.	All of the Above

E.	None of the Above

Q.18)	Which of the following is NOT a good password deployment guideline?

A.	Passwords must be changed at least once every 60 days, depending on your environment.

B.	Passwords must not be the same as user id or login id.

C.	Password aging must be enforced on all systems.

D.	Password must be easy to memorize.

E.	All of the Above

Q.19)	Which of the following is an effective measure against a certain type of brute force password attack?

A.	Password history is used.

B.	Password reuse is not allowed.

C.	Any password used must not be word found in a dictionary.

D.	All of the Above

E.	None of the Above

Q.20)	What type of attacks occurs when a rogue application has been planted on an unsuspecting user's workstation?

A.	Social Engineering attacks

B.	Logical attacks

C.	Physical attacks

D.	Trojan Horse attacks

E.	None of the Above

Q.21)	Which of the following attacks could be the most successful when the security technology is properly implemented and configured?

A.	Logical attacks

B.	Physical attacks

C.	Trojan Horse attacks

D.	Social Engineering attacks

E.	None of the Above

Q.22)	What is a protocol used for carrying authentication, authorization, and configuration information between a Network Access Server and a shared Authentication Server?

A.

RADIUS

B.

PPTP

C.

L2TP

D.

IPSec

E.	None of the Above

Q.23)	In a RADIUS architecture, which of the following acts as a client?

A.	A Network Access Server

B.	The end user

C.	The authentication server

D.	All of the Above

E.	None of the Above

Q.24)	The majority of commercial intrusion detection systems are:

A.	Host-based

B.	Identity-based

C.	Signature-based

D.	Network-based

Q.25)	Which of the following is a drawback of Network-based IDSs?

A.	It is very costly to set up.

B.	It is not effective.

C.	It cannot analyze encrypted information.

D.	It is very costly to manage.

E.	All of the Above

Q.26)	Which of the following will you consider as clear-text protocols?

A.

Telnet

B.

POP

C.

FTP

D.

SSH

E.	All of the Above

Q.27)	Microsoft supports the _______________ and ______standards for use in extranet.

A.

CORBA

B.

IPSec

C.

PPTP

D.

DCOM

E.	Both A & D

Q.28)	Which of the following protocols did Microsoft develop for use in VPNs?

A.

PPTP

B.

IPSEC

C.

OSPF

D.

L2TP

E.	None of the Above

Q.29)	To allow your Windows clients to connect to your Windows NT Server using the public network as a medium, what technology might you find useful?

A.

PPTP

B.

L2TP

C.

OSPF

D.

IPSEC

E.	All of the Above

Q.30)	What technology involves the use of electronic wallet?

A.

TLS

B.

SSH

C.

SHTTP

D.

SET

E.	All of the Above

Q.31)	With Java, what can be embedded in a web browser, allowing programs to be executed as they are downloaded from the World Wide Web?

A.

JVM

B.

Bytecode

C.	Interpreter

D.	Just-in-time compiler

E.	All of the Above

Q.32)	ActiveX controls can be digitally signed using a technology called:

A.	Java Applet

B.

CGI

C.

Sandbox

D.	Authenticode

E.	All of the Above

Q.33)	A centralized database of remote users for a multi-site network typically uses

A.

RADIUS

B.

PAP

C.

MS-CHAP

D.

CHAP

Q.34)	Which of the following is more of an irritation than a security threat?

A.

Rootkit

B.

Adware

C.

Trojan

D.

Adware

Q.35)	Creating a basic standard for application settings, security settings, and active services on every company laptop would be considered

A.	group policy

B.	baseline configuration

C.	patch management

D.	a security template

Q.36)	All of the following are correct about LDAP EXCEPT:

A.	most of the implementations use the x.500 directory model

B.	some of the implementations use default TCP ports 389 and 636

C.	some implementations use x.509 certificates for securing communications

D.	all attributes will be encrypted

Q.37)	Least privilege is defined as giving access to information:

A.	based on sense of urgency from management

B.	based on tenure at the company

C.	needed to complete the task

D.	that may be revealed to the public

E.	All of the Above

Q.38)	An administrator wishes to enable network auditing policies. Which of the following should the security administrator log?

A.	Both logon successes and logon failures

B.	Only logon failures for non-existent users

C.	Only logon success

D.	Only logon failures

Q.39)	From a security perspective a performance baseline is MOST useful for:

A.	detecting performance anomalies that may be due to security breaches

B.	assuring that systems are working to their optimal capacity

C.	knowing when security scans are going to finish

D.	predicting the end of useful life for the firewall

E.	All of the Above

Q.40)	A company creates its own application that accesses the company databases and requires a unique login, based on the user’s domain account. The developer has an undocumented login for testing that does not need to be authenticated against the domain. Which of the following is a security issue regarding this scenario?

A.	The login should be the same as the domain account for authentication purposes

B.	The application should not be deployed if it is not fully tested

C.	It is not considered best practice to have a user remember multiple logins

D.	It can be used as a backdoor into the company’s databases

Q.41)	In order to perform a TCP hijacking attack, an attacker would be required to:

A.	have a protocol analyzer intercept traffic between two hosts

B.	know the IP addresses of both hosts and sequence numbers of the TCP/IP packets

C.	perform a man-in-the-middle attack and communicate directly with two hosts

D.	obtain the MAC address of the both hosts

Q.42)	A passive response is the most common type of response to a number of intrusions. Which of the following is not a passive response strategy ?

A.

Shunning

B.

Deception

C.	Notification

D.

Logging

E.	All of the Above

Q.43)	When using network monitoring systems to monitor workstations, which of the following elements should be reviewed because their information could indicate a possible attack ?

A.	Audit log and system log

B.	Hard disk space

C.	Network counters and access denied errors

D.	Network counters

Q.44)	Which if the following technologies would you use if you need to implement a system that simulates a network of vulnerable devices, so that this network can be targeted by attackers ?

A.	A circuit-level firewall

B.	A honeypot

C.

A IDS

D.	A system integrity verifier

Q.45)	Which of the following intrusion detection technologies work by monitoring the file structure of a system to determine whether any system files were deleted or modified by an attacker ?

A.	Log file monitor (LFM)

B.	System integrity verifier (SIV)

C.	Host-based IDS

D.	Network IDS

Q.46)	Which of the following is NOT a valid access control mechanism?

A.	DAC (Discretionary Access Control) list.

B.	SAC (Subjective Access Control) list.

C.	MAC (Mandatory Access Control) list.

D.	RBAC (Role Based Access Control) list.

Q.47)	Which of the following best describes an access control mechanism in which access control decisions are based on the responsibilities that an individual user or process has in an organization?

A.	RBAC (Role Based Access Control)

B.	DAC (Discretionary Access Control)

C.	MAC (Mandatory Access Control)

D.	All of the Above

E.	None of the above.

Q.48)	Which of the following best describes an access control mechanism that allows the data owner to create and administer access control?

A.	DACs (Discretionary Access Control)

B.	LBACs (List Based Access Control)

C.	RBACs (Role Based Access Control)

D.	MACs (Mandatory Access Control)

Q.49)	Which of the following is an inherent flaw of DAC (Discretionary Access Control)?

A.	DAC (Discretionary Access Control) relies only on the identity of the user or process, leaving room for a Trojan horse.

B.	DAC (Discretionary Access Control) relies on certificates, allowing attackers to use those certificates.

C.	DAC (Discretionary Access Control) does not rely on the identity of a user, allowing anyone to use an account.

D.	DAC (Discretionary Access Control) has no known security flaws.

Q.50)	Which of the following access control methods provides the most granular access to protected objects?

A.	Capabilities

B.	Access control lists

C.	Permission bits

D.

Profiles

Q.51)

You work as the security administrator at Certkiller .com. You set permissions on a file object in a network operating system which uses DAC (Discretionary Access Control). The ACL (Access Control List) of the file is as follows: Owner: Read, Write, Execute User A: Read, Write, - User B: -, -, - (None) Sales: Read,-, - Marketing: -, Write, - Other Read, Write, - User "A" is the owner of the file. User "B" is a member of the Sales group. What effective permissions does User "B" have on the file?

A.	User B has read, write and execute permissions on the file

B.	User B has read and write permissions on the file.

C.	User B has no permissions on the file.

D.	User B has read permissions on the file.

E.	None of the Above

Q.52)

You work as the security administrator at Certkiller .com. Certkiller has a RBAC (Role Based Access Control) compliant system for which you are planning the security implementation. There are three types of resources including files, printers, and mailboxes and four distinct departments with distinct functions including Sales, Marketing, Management, and Production in the system. Each department needs access to different resources. Each user has a workstation. Which roles should you create to support the RBAC (Role Based Access Control) model?

A.	file, printer, and mailbox roles

B.	sales, marketing, management, and production roles

C.	user and workstation roles

D.	allow access and deny access roles

Q.53)	With regard to DAC (Discretionary Access Control), which of the following statements are true?

A.	Files that don't have an owner CANNOT be modified.

B.	The administrator of the system is an owner of each object.

C.	The operating system is an owner of each object.

D.	Each object has an owner, which has full control over the object.

E.	None of the Above

Q.54)	Which of the following are used to make access decisions in a MAC (Mandatory Access Control) environment?

A.	Sensitivity labels

B.	Group membership

C.

Ownership

D.	Access control lists

Q.55)	Which of the following access control methods allows access control decisions to be based on security labels associated with each data item and each user?

A.	MACs (Mandatory Access Control)

B.	RBACs (Role Based Access Control)

C.	LBACs (List Based Access Control)

D.	DACs (Discretionary Access Control)

Q.56)	Which of the following access control methods relies on user security clearance and data classification?

A.	RBAC (Role Based Access Control).

B.	NDAC (Non-Discretionary Access Control).

C.	MAC (Mandatory Access Control).

D.	DAC (Discretionary Access Control).

Q.57)	Which of the following is a characteristic of MAC (Mandatory Access Control)?

A.	use levels of security to classify users and data

B.	allow owners of documents to determine who has access to specific documents

C.	use access control lists which specify a list of authorized users

D.	use access control lists which specify a list of unauthorized users

Q.58)	Which of the following terms represents a MAC (Mandatory Access Control) model?

A.

Lattice

B.	Bell La-Padula

C.

BIBA

D.	Clark and Wilson

Q.59)	Identify the access control model that makes use of security labels connected to the objects?

A.	. You should make use of the Role Based Access Control (RBAC) model.

B.	You should make use of the Mandatory Access Control (MAC) model.

C.	You should make use of the Rule Based Access Control (RBAC) model.

D.	You should make use of the Discretionary Access Control (DAC) model.

Q.60)	Which of the following is an example of a task-based control model?

A.	It is an example of Rule Based Access Control (RBAC).

B.	It is an example of Mandatory Access Control (MAC).

C.	It is an example of Role Based Access Control (RBAC).

D.	It is an example of Discretionary Access Control (DAC).

Q.61)	Identify from the list below the access control models that makes use of subject and object labels?

A.	You should identify Rule Based Access Control (RBAC)

B.	You should identify Mandatory Access Control (MAC)

C.	You should identify Discretionary Access Control (DAC)

D.	You should identify Role Based Access Control (RBAC)

Q.62)	What is the access control model that explicitly assigns access rights to users?

A.	Assigning access rights to a client is a Discretionary Access Control (DAC) characteristic.

B.	Assigning access rights to a client is a Rule Based Access Control (RBAC) characteristic.

C.	Assigning access rights to a client is a Mandatory Access Control (MAC) characteristic.

D.	Assigning access rights to a client is a Role Based Access Control (RBAC) characteristic.

Q.63)	Identify the access decisions based on a Mandatory Access Control (MAC) environment?

A.	Sensitivity labels are based on a Mandatory Access Control (MAC) environment.

B.	Access control lists are based on a Mandatory Access Control (MAC) environment.

C.	Group membership is based on a Mandatory Access Control (MAC) environment.

D.	Ownership is based on a Mandatory Access Control (MAC) environment.

Q.64)	What access control model is a Windows file server an example of?

A.	It is an example of a Discretionary Access Control (DAC) model

B.	It is an example of a Role Based Access Control (RBAC) model.

C.	It is an example of a Mandatory Access Control (MAC) model.

D.	It is an example of a Rule Based Access Control (RBAC) model.

Q.65)	Which servers should be located on a private network?

A.	You should place a File and print server on the private network.

B.	You should place a Remote Access Server (RAS) on the private network.

C.	You should place an E-mail server on the private network.

D.	You should place a Web server on the private network.

Q.66)	What model assigns sensitivity labels to users and their data?

A.	You should identify the Discretionary Access Control (DAC) access control model.

B.	You should identify the Role Based Access Control (RBAC) access control model.

C.	You should identify the Mandatory Access Control (MAC) access control model.

D.	You should identify the Rule Based Access Control (RBAC) access control model.

E.	None of the Above

Q.67)	The Certkiller .com network contains of various departments that makes use of an access control model. The finance department only requires access to the personal data of staff and the marketing department only needs access to the production data. Which access control model is MOST suitable?

A.	The Discretionary Access Control (DAC) access control model would be most suitable.

B.	The Rule Based Access Control (RBAC) access control model would be most suitable.

C.	The Role Based Access Control (RBAC) access control model would be most suitable.

D.	The Mandatory Access Control (MAC) access control model would be most suitable.

Q.68)	Which access controls are based on security labels assigned to every data item and every user?

A.	You should identify Mandatory Access Control (MAC).

B.	You should identify Role Based Access Control (RBAC).

C.	You should identify Discretionary Access Control (DAC).

D.	You should identify List Based Access Control (LBAC).

Q.69)	Determine the access control model where users are assigned access rights based on their function within the organization?

A.	This is a feature of Discretionary Access Control (DAC).

B.	This is a feature of Rule Based Access Control (RBAC).

C.	This is a feature of Role Based Access Control (RBAC).

D.	This is a feature of Mandatory Access Control (MAC).

Q.70)	Which of the following password generators is based on challenge-response mechanisms?

A.	asynchronous

B.	synchronous

C.	cryptographic keys

D.	smart cards

Q.71)	Which of the following password management systems is designed to provide availability for a large number of users?

A.	self service password resets

B.	locally saved passwords

C.	multiple access methods

D.	synchronized passwords

Q.72)	Which of the following provides the best protection against an intercepted password?

A.	VPN (Virtual Private Network).

B.	PPTP (Point-to-Point Tunneling Protocol).

C.	One time password.

D.	Complex password requirement.

Q.73)	Which of the following best describes a challenge-response session?

A.	A workstation or system that generates a random challenge string that the user enters when prompted along with the proper PIN (Personal Identification Number).

B.	A workstation or system that generates a random login ID that the user enters when prompted along with the proper PIN (Personal Identification Number).

C.	A special hardware device that is used to generate random text in a cryptography system.

D.	The authentication mechanism in the workstation or system does not determine if the owner should be authenticated.

Q.74)	Which of the following must be deployed for Kerberos to function correctly?

A.	Dynamic IP (Internet Protocol) routing protocols for routers and servers.

B.	Separate network segments for the realms

C.	Token authentication devices.

D.	Time synchronization services for clients and servers.

Q.75)	Why are clocks used in a Kerberos authentication system?

A.	To ensure proper connections.

B.	To ensure tickets expire correctly.

C.	To generate the seed value for the encryptions keys.

D.	To benchmark and set the optimal encryption algorithm.

Q.76)	Which of the following factors must be considered when implementing Kerberos authentication?

A.	Which of the following factors must be considered when implementing Kerberos authentication?

B.	Kerberos tickets can be spoofed using replay attacks to network resources.

C.	Kerberos requires a centrally managed database of all user and resource passwords.

D.	Kerberos uses clear text passwords.

Q.77)	You work as the security administrator at Certkiller .com. You want to ensure that only encrypted passwords are used during authentication. Which authentication protocol should you use?

A.	PPTP (Point-to-Point Tunneling Protocol)

B.	SMTP (Simple Mail Transfer Protocol)

C.

Kerberos

D.	CHAP (Challenge Handshake Authentication Protocol)

Q.78)	Which of the following are the main components of a Kerberos server?

A.	Authentication server, security database and privilege server.

B.	SAM (Sequential Access Method), security database and authentication server.

C.	Application database, security database and system manager.

D.	Authentication server, security database and system manager.

Q.79)	When does CHAP (Challenge Handshake Authentication Protocol) perform the handshake process?

A.	When establishing a connection and at anytime after the connection is established.

B.	Only when establishing a connection and disconnecting.

C.	Only when establishing a connection.

D.	Only when disconnecting.

Q.80)	For which of the following can biometrics be used?

A.	Authentication

B.	Authorization

C.	Certification

D.	Accountability

Q.81)	Which of the following is the most costly method of an authentication?

A.

Passwords

B.

Tokens

C.	Biometrics

D.	Shared secrets

Q.82)	Which of the following provides the strongest form of authentication?

A.	one time password

B.	biometrics

C.	username and password

D.

token

Q.83)	Identify the different types of certificate-based authentication? (Choose TWO)

A.	Many-to-one mapping is a type of certificate-based authentication

B.	One-to-one mapping is a type of certificate-based authentication.

C.	One-to-many mapping is a type of certificate-based authentication.

D.	Many-to-many mapping is a type of certificate-based authentication.

Q.84)	Which services is provided by message authentication codes?

A.	You make use of message authentication codes to provide the Key recovery service.

B.	You make use of message authentication codes to provide the Fault recovery service.

C.	You make use of message authentication codes to provide the Acknowledgement service.

D.	You make use of message authentication codes to provide the Integrity service.

Q.85)	When an attacker captures part of a communication and later sends the communication segment to the server whilst pretending to be the user it is known as a:

A.	It is known as the TCP/IP hijacking attack.

B.	It is known as the Man in the middle attack.

C.	It is known as the Replay attack.

D.	It is known as the Back door attack

Q.86)	Why would reusing a ticket as a replay attack in Kerberos not be successful?

A.	The tickets are digitally signed.

B.	The tickets are used a token.

C.	The tickets are encrypted.

D.	The tickets are time stamped.

Q.87)	Identify the authentication system where a unique username and password is used to access multiple systems within a company?

A.	Challenge Handshake Authentication Protocol (CHAP) is used to access multiple systems within a company.

B.	Single Sign-on is used to access multiple systems within a company.

C.	Kerberos is used to access multiple systems within a company.

D.	Mandatory Access Control (MAC) is used to access multiple systems within a company.

Q.88)	Identify the method that should be used to ensure that the user is able to authenticate to the server and the server to the user?

A.	You should make use of the Mutual authentication method.

B.	You should make use of the Biometric authentication method.

C.	You should make use of the Username/password authentication method.

D.	You should make use of the Multifactor authentication method.

Q.89)	Identify the process where users can access numerous resources without needing multiple credentials?

A.	The authentication process is known as need to know.

B.	The authentication process is known as decentralized management.

C.	The authentication process is known as Discretionary Access Control (DAC).

D.	The authentication process is known as single sign-on.

Q.90)	Determine the two-factor authentication for an information system?

A.	You should identify ATM card and PIN.

B.	You should identify Photo ID and PIN.

C.	You should identify Retina scan and mantrap.

D.	You should identify Username and password.

Q.91)	What is based upon an authentication server that allocates tickets to users?

A.	You should make use of the Kerberos authentication method.

B.	You should make use of the Challenge Handshake Authentication Protocol (CHAP) authentication method.

C.	You should make use of the Username/password authentication method

D.	You should make use of the Multifactor authentication method.

Q.92)	Which authentication will provide a username, a password and undergo a thumb print scan to access a workstation?

A.	The Biometric authentication best illustrates this scenario.

B.	The Kerberos authentication best illustrates this scenario.

C.	The Mutual authentication best illustrates this scenario.

D.	The Multifactor authentication best illustrates this scenario.

Q.93)	Determine the authentication mechanisms that use key fob based identification systems? (Choose TWO)

A.	Kerberos uses key fob based identification systems.

B.	Token uses key fob based identification systems.

C.	Biometrics uses key fob based identification systems.

D.	Username/password uses key fob based identification systems.

E.	Certificates uses key fob based identification systems.

Q.94)	You deploy a biometric authentication system in the Certkiller .com environment. Identify the tool that is reliable with the lowest cross over problem rate?

A.	You should identify the fingerprint scanner

B.	You should identify the hand scanner.

C.	You should identify the facial scanner.

D.	You should identify the retina scanner.

Q.95)	Certkiller .com deploy Kerberos authentication on the network. What does Kerberos need to function properly? (Choose TWO)

A.	Kerberos requires a Key Distribution Center.

B.	Kerberos requires POP-3.

C.	Kerberos requires extranets.

D.	Kerberos requires accurate network time.

E.	Kerberos requires SSL/TLS.

Q.96)	What authentication model uses a smart card and a User ID/Password for accessing network resources?

A.	You should identify the Biometric authentication model.

B.	You should identify the Multifactor authentication model.

C.	You should identify the Mutual authentication model.

D.	You should identify the Tokens authentication model.

Q.97)	Which of the following represents the best method for securing a web browser?

A.	Do not upgrade, as new versions tend to have more security flaws.

B.	Disable any unused features of the web browser.

C.	Connect to the Internet using only a VPN (Virtual Private Network) connection.

D.	Implement a filtering policy for illegal, unknown and undesirable sites.

Q.98)	How many ports in TCP/IP (Transmission Control Protocol/Internet Protocol) are vulnerable to being scanned, exploited, or attached?

A.

1,024

B.

32

C.	16,777,216

D.

65,535

Q.99)	Which of the following ports does a DNS (Domain Name Service) server require?

A.

21

B.

23

C.

53

D.

55

Q.100)	Why are non-essential services appealing to attackers? (Choose TWO)

A.	Non-essential services are often appealing to attackers since less bandwidth is used.

B.	Non-essential services are often appealing to attackers since the surface area for the attack is reduced.

C.	Non-essential services are often appealing to attackers since root level access is offered.

D.	Non-essential services are often appealing to attackers since attacks are maintained that go unnoticed.

E.	Non-essential services are often appealing to attackers since it's not typically configured correctly or secured.

Related Topics

More Quizzes by mastermind1100

• Comptia Security+ Practice Exam (2)
• Comptia Security+ Practice Exam (3)
• CEH and Countermeasures v7 Version 4.2
• Checkpoint CCSA R70.1

Related Quizzes