CompTIA Network+ #2

1. Which IEEE standard defines the communication protocol for Wireless?

802.3

802.5

802.11

802.15

802.16

2.

Which Command Line Utility is shown?

IPconfig

TracerT

NSlookup

Ping

Nbstat

3. In a ______ attack the attacker places himself between the two hosts and listens in on the session, yet the hosts are unaware they are communicating to the hacker.

DOS

Man In The Middle Attack

Ping of Death

Smurf Attack

DDOS

4.

IPconfig

Nslookup

Netstat

Ping

Nbstat

5. Involves creating matching private and public keys by using the same passphrase and different algorithms. The owner of the private key is entrusted with generating and storing such keys. This describes which of the 4 set up and initialization stages for Public key infrestructure (PKT)?

Registration (PKT stage 1)

Key pair generation (PKT stage 2)

Certificate generation (PKT stage 3)

Certificate Dissemination (PKT stage )

6. This is the science of encrypting and decrypting data. It is a technique in which source information is converted into a form which cannot be read by anyone other than intended recipient.

Encryption

Decryption

Cryptography

Asymetric keys

Asymetric Cryptography

7. MAC & LLC (logical Linc Control) are sublayers of which OSI Layer?

Physical

Data Link

Network

Session

Transport

8.

Which Command Line Utility is shown?

TracerT

Ping

Nbstat

IPconfig

Nslookup

9. Which protocol is used to convert logical IP addresses to physical MAC addresses?

IMAP4Internet Message Access Protocol 4

DNSDomain Name Service

ARPAddress Resolution Protocol

RIPRouting Internet Protocol

10. Which IEEE standard defines the communication protocol for Eithernet?

802.3

802.5

802.11

802.15

802.16

11. Contains IP Addressing and subnet information along with other information to ensure that all devices have the correct addressing information.

Logical Network Diagram

Baseline

Regulations

Physical Network Diagram

12.

Which Command Line Utility is shown?

TracerT

Ping

IPconfig

NetStat

Nbstat

13. Which NIDS reaction option (Network Intrusion Detection System) sent warnings with console messages, emails, pager messages and so forth to request human intervention?

TCP reset (an active reaction)

IP session logging (a passive reaction)

Shunning (an active reaction)

Alerts (a passive reaction)

Antivirus scanning and cleaning (an active reaction)

14. Of the four components to security on a wireless network, to which one does a RADIUS server belong?

Access Controll

Authentication

Encryption

Isolation

15. To which TCP/IP architecture layer do email and web browser protocols belong to?

Application

Internet

Network Interface

Transport

16. Contains the locations of client computers, servers, network printers, routers, switches, firewalls wireless access points and other devices and hardware on the network.

Logical Network Diagram

Baseline

Regulations

Physical Network Diagram

17. ______ is when an attacker puts a Web server between the victim's Web Browser and a legitimate server. The attacker monitors & records the victim's activity and can control what they see.

Information Theft

Man In The Middle Attack

Smurf Attack

Web Spoofing

DDOS

18. Which NIDS reaction option (Network Intrusion Detection System) examines a packets contents, detecst infections and attempts removing infections from infected payloads?

TCP reset (an active reaction)

IP session logging (a passive reaction)

Shunning (an active reaction)

Alerts (a passive reaction)

Antivirus scanning and cleaning (an active reaction)

19. This NIDS reaction option (Network Intrusion Detection System) logs some or all of the traffic between the attacker and the victim for later forensic investigations.

TCP reset (an active reaction)

IP session logging (a passive reaction)

Shunning (an active reaction)

Alerts (a passive reaction)

Antivirus scanning and cleaning (an active reaction)

20. This NIDS reaction option (Network Intrusion Detection System) is also called blocking, it involes automatically stopping packets from the attacker. Typically NIDS will connect to the firewall and create a temporary rule stopping all packets comming from the attacker.

TCP reset (an active reaction)

IP session logging (a passive reaction)

Shunning (an active reaction)

Alerts (a passive reaction)

Antivirus scanning and cleaning (an active reaction)

21. The IPsec protocol suite is made up of 4 separate protocols, which is discribed here:
Negotiates the shared secret keys.

Authentication Header (AH)

Encapsulating Security Payload (ESP)

IP Payload Compression Protocol (IPComp)

Internet Key Exchange (IKE)

22. Rather than destroying or stealing data a ______ attack is designed to disrupt daily standard operations.

DOS

Synflood

Ping of Death

Smurf Attack

DDOS

23. Which IEEE standard defines the communication protocol for Blue Tooth?

802.3

802.5

802.11

802.15

802.16

24. When the attacker between two hosts takes over the role of one of the hosts and resumes full controll of the TCP session is what kind of attack?

Information Theft

Man In The Middle Attack

TCP Session Hijacking

Web Spoofing

ARP Poisoning

25. Which of the 3 main VPN security models does not typically use tunneling and clients, network devices and servers must authenticate before gaining access?

Authentication before connection

Trusted delivery network

Secure VPN's

26. In this type of intrusion prevention, IDS monitors your system based on signatures, much like anti-virus scanners use use virus definitions to look for infected files.

Signature - based

Behavior - based

Anomaly - based

Kerbos - based

27. This authentication method encapsulates PPP inside Eithernet frames and allows users to establish a secure connection from one computer to another. Is used to connect multiple users to the internet via high speed modems.

CHAP (Challenge Handshake Protocol)

EAP (Extensible Authentication Protocol)

PPPoE (Point to Point over Eithernet Protocol)

Mutual Authentication

28.

Which Command Line Utility is shown?

TracerT

Ping

Nslookup

Netstat

Nbstat

29. The Ping utility is the most common use of which protocol?

ARPAdress Resolution Protocol

ICMP / ICMPv6Internet Control Message Protocol

IGMPInternet Group Message Protocol

RIPRouting Internet Protocol

30. The target systems in a ______ attack use Zombies, Bots or Agents which are woken up to launch the attack/

DOS

Synflood

Ping of Death

Smurf Attack

DDOS

31. This starts when a user approaches the Certificate Authority (CA) with a specific request for a certificate. After verifying the identity & credentials of the user CA registers the user. This describes which of the 4 set up and initialization stages for Public key infrestructure (PKT)?

Registration (PKT stage 1)

Key pair generation (PKT stage 2)

Certificate generation (PKT stage 3)

Certificate Dissemination (PKI stage 4)

32. What port is used by NNTP (Network NewsTransfer Protocol)?

UDP69

TCP161 / UDP161

TCP110

TCP22

TCP119

33. This authentication defines message formats rather than being an authentication mechanism. There are more than 40 of these methods now. They are PPP extensions also used in wireless with multiple authentication methods.

CHAP (Challenge Handshake Protocol)

EAP (Extensible Authentication Protocol)

PPPoE (Point to Point over Eithernet Protocol)

Mutual Authentication

34. The IPsec protocol suite is made up of 4 separate protocols, which is discribed here:
Compresses packet data before transmission.

Authentication Header (AH)

Encapsulating Security Payload (ESP)

IP Payload Compression Protocol (IPComp)

Internet Key Exchange (IKE)

35. ______ contains performance statistics for computers and other devices in the network, you record a devices ______ performance when adding it to the network to hev the data for copairison purposes later.

Logical Network Diagram

Baseline

Regulations

Physical Network Diagram

36. To which TCP/IP architecture layer do TCP and UDP belong?

Application

Internet

Network Interface

Transport

37.

Which command line utility is shown?

IPconfig

TracerT

Netstat

Nslookup

Nbstat

38. When an attacker instructs a router to forward packets with a destination of the victim to instead go through the attackers system it is called _________.

ARP Poisoning

ICMP Redirect

TCP Session Hijacking

Information Theft

Web Spoofing

39. Which TCP / IP architecture layer makes use of ports?

Application

Internet

Network Interface

Transport

40. It involves securely making the certificate information available to a requester without too much difficulty. Some teqnuques include out-of- and in hand distribution, publication, and so on. This describes which of the 4 set up and initialization stages for Public key infrestructure (PKI)?

Registration (PKT stage 1)

Key pair generation (PKT stage 2)

Certificate generation (PKT stage 3)

Certificate Dissemination (PKT stage )

41. Which of the 3 main VPN security models are the typical sort of network, enabled secure connections over insecure public networks.

Authentication before connection

Trusted delivery network

Secure VPN's

42. What port is used by SSH (Secure Shell)?

UDP 67 / UDP68

TCP161 / UDP161

TCP143 / UDP143

TCP22 / UDP22

NTP123

43. Which IEEE standard defines the communication protocol for Token Ring?

802.3

802.5

802.11

802.15

802.16

44. Of the NIDS (Network intrusion detection system) reaction options listed which Three are considered Active reaction options?

TCP reset

IP session logging

Antivirus scanning and cleaning

Shunning

Alerts

Submit

45. The NIDS reaction option (Network Intrusion Detection System) where the NIDS sends a TCP packet to the victim host which terminates all sessions and haults the attack in progress.

TCP reset (an active reaction)

IP session logging (a passive reaction)

Shunning (an active reaction)

Alerts (a passive reaction)

Antivirus scanning and cleaning (an active reaction)

46. 124.6.102.87 is a Class _____ IP Address.

A

B

C

D

E

47. After installing the DHCP server on a domain member server, what must be done in active directory before it begins delivering leased IP addresses?

Authorize it

Reinstal Active Directory

Activate it

Modify the Firewall

48. This component is the server or client that Kerbos can assign tickets to.

Principal

Authentication Server (AS)

Ticket-Granting Server (TGS)

Key Distribution Center (KDC)

Realm

49. __________ are designed to fix security vulnerabilities.

Hotfixes

Patches

Updates

BIOS Updates

50. 224.106.27.170 is a Class _____ IP Address.

A

B

C

D

E

51. Is done through the use of algorithm which is a mathmatical or physical means to transform a message.

Encryption

Decryption

Cryptography

Asymetric keys

Asymetric Cryptography

52. The IPsec protocol suite is made up of 4 separate protocols, which is discribed here:
Ensures confidentiality by signing packet by encryting the packet using DES or Triple-DES (3DES) cipher.

Authentication Header (AH)

Encapsulating Security Payload (ESP)

IP Payload Compression Protocol (IPComp)

Internet Key Exchange (IKE)

53. What port is used by BootP & DHCP (Boot Protocl/Bootstrap Protocol & Dynamic Host Configuration Protocol)?

UDP 67 / UDP68

TCP161 / UDP161

TCP143 / UDP143

TCP22 / UDP22

NTP123

54. A standarsized tunneling protocol that generally combines the best features of PPTP and L2F to provide tunneling over IP, X.25, Frame Relay and ATM networks.

PPTP (Perr to Peer Tunneling Protocol)

LT2P (Layer 2 Tunneling Protocol)

IPsec (IP security)

SSL/TLS (Secure Socket Layer / Transport Layer Security)

55. Which protocol is responsible for the logical addressing of each packet created by the Transport Layer?

IP

RIP

TCP

UDP

IDP

56. What port is used by SNMP (Simple Network Management Protocol)?

UDP 67 / UDP68

TCP22 / UDP22

TCP161 / UDP161

UDP123

TCP110

57. When traffic is redirected by an attacker by modifiying the victims DNS cache with the wrong hostname to IP address mappings it is called ______.

ICMP Redirect

ARP Poisoning

TCP Session Hijacking

DNS Poisoning

Web Spoofing

58. Which is NOT a valid subnet mask?

255.0.0.0

255.248.0.0

255.255.234.0

255.255.0.0

59. This Kerbos component service provides an authorized service or user with temporary session keys and tickets.

Principal

Authentication Server (AS)

Ticket-Granting Server (TGS)

Key Distribution Center (KDC)

Realm

60. A standardized network protocol that encrypts data at the Network (OSI Layer 3) Layer of the protocol stack. Can supply security for both TCP and UDP traffic.

PPTP (Perr to Peer Tunneling Protocol)

LT2P (Layer 2 Tunneling Protocol)

IPsec (IP security)

SSL/TLS (Secure Socket Layer / Transport Layer Security)

61. Which type of attack sent an oversized fragmented packet that when reassembled would cause the buffer to overflow and the system to crash?

DOS

Man In The Middle Attack

Ping of Death

Smurf Attack

DDOS

62. To which TCP/IP architecture layer do the media access methods belong?

Application

Internet

Network Interface

Transport

63. This authentication method validates the remote client's identity Is used by PPP at the communication session start or any time during the session.

CHAP (Challenge Handshake Protocol)

EAP (Extensible Authentication Protocol)

PPPoE (Point to Point over Eithernet Protocol)

Mutual Authentication

64. What port is used by TFTP (Trivial File Transfer Protocol)?

UDP 67 / UDP68

TCP161 / UDP161

UDP69

TCP119

TCP110

65. What was introduced to make IPv4 Internet routing more efficient.

Subnet masks

Switches

DHCP

CIDR

66. This Kerbos item is used in communication between client and resource server and only lasts the length of a single log in.

Credentials

Session Key

Authenticator

Ticket

Ticket-Granting Ticket (TGT)

67. What type of attack sends a lot of 1/2 open TCP connections which prevent users from being able to access the server?

DOS

Synflood

Ping of Death

Smurf Attack

DDOS

68. The users in a subset of Kerbos are refered to as a __________.

Principal

Authentication Server (AS)

Ticket-Granting Server (TGS)

Key Distribution Center (KDC)

Realm

69. This uses two keys to avoid the troubles associated with sharing the encryption key. What is encryted by one key can only be decryted by the other.

Encryption

Decryption

Cryptography

Asymetric keys

Asymetric Cryptography

70. _________ is when an attacker passivly records data passing between hosts to gather sensitive information usernames and passwords.

Information Theft

Man In The Middle Attack

Smurf Attack

Web Spoofing

DDOS

71. To which TCP/IP architecture layer do routing protocols belong?

Application

Internet

Network Interface

Transport

72. Of the NIDS (Network intrusion detection system) reaction options listed which TWO are considered Passive reaction options?

Shunning

Antivirus scanning and cleaning

Alerts

TCP reset

IP session logging

Submit

73. In this type of intrusion prevention, IDS compares the current state of your system to a baseline looking for differences that would signal an attack or compromise in the system.

Signature - based

Behavior - based

Anomaly - based

Kerbos - based

74. This is a VPN protocol were once a link has been established, the client is added as a vertual node on the LAN and packets between the two are encrypted using Microsoft Point to Point Encryption (MPPE) as a rule.

PPTP (Perr to Peer Tunneling Protocol)

LT2P (Layer 2 Tunneling Protocol)

IPsec (IP security)

SSL/TLS (Secure Socket Layer / Transport Layer Security)

75. Which is the correct order for the 3 AAA Phases?

1:Authentication2: Authorization3:Access

1:Authentication2: Authorization3: Accounting

1:Authentication2: Access3: Accounting

1:Authentication2: Accounting3: Authorization

76. Data information is sent onto the network cable using which of the following?

Communication protocol

Data Packets

Media access Method

Packages

77. 243.16.2.117 is a Class _____ IP Address.

A

B

C

D

E

78. Which of the 3 main VPN security models are 3rd party private networks protected by various means. Clients and servers connect to this network rather than connect to an LAN via a public network.

Authentication before connection

Trusted delivery network

Secure VPN's

79. The IPsec protocol suite is made up of 4 separate protocols, which is discribed here:
Ensures authentisity by signing packet data with MD5 or SHA-1 hashes and a shared secret key.

Authentication Header (AH)

Encapsulating Security Payload (ESP)

IP Payload Compression Protocol (IPComp)

Internet Key Exchange (IKE)

80. What port is used by NTP (Network Time Protocol)?

TCP22

UDP123

TCP119

TCP110

TCP161 / UDP161

81. This authentication method requires both the client and the server to authenticate to each other instead of just the client authenticating to the server. Also known as two way authentication.

CHAP (Challenge Handshake Protocol)

EAP (Extensible Authentication Protocol)

PPPoE (Point to Point over Eithernet Protocol)

Mutual Authentication

82. Which IEEE standard defines the communication protocol for Air Cards?

802.3

802.5

802.11

802.15

802.16

83. Which of the following protocols are considered unsecure? (Choose all that apply)

RSH

HTTPS

SSH

SNMP

SCP

Submit

84. This binds an entity's unique distinguished name (DN) and other identifying attributes to it's public key, and is always the responsibility of the CA (Certificate Authority). This describes which of the 4 set up and initialization stages for Public key infrestructure (PKI)?

Registration (PKT stage 1)

Key pair generation (PKT stage 2)

Certificate generation (PKT stage 3)

Certificate Dissemination (PKT stage )

85. When public and private keys are related matmatically, the RSA cypher starts with two large random prime numbers that essentially make up the private key and the two nubers are then multiplied together to make the public key.

Encryption

Decryption

Cryptography

Asymetric keys

Asymetric Cryptography

86. This is a server component of Kerbos that runs AG and TGS services to provide initial ticket and ticket-Granting ticket requests.

Principal

Authentication Server (AS)

Ticket-Granting Server (TGS)

Key Distribution Center (KDC)

Realm

87. This Kerbos item is a record that usually lasts for 5 minutes and can not be reused. It contains information to prove the session key was recently created and is known only to the client and server.

Credentials

Session Key

Authenticator

Ticket

Ticket-Granting Ticket (TGT)

88. This Kerbos item is a record used by a client to authenticate to a server. It contains the clients identity, session key, timestamp and checksum. The recods is secured by the resource servers secret key.

Credentials

Session Key

Authenticator

Ticket

Ticket-Granting Ticket (TGT)

89. An IPv6 subnet ID is how many bits long?

8

16

32

64

128

90. This item is granted during the Kerbos authentication process. It is used to aquire additional tickets from the TGS.

Credentials

Session Key

Authenticator

Ticket

Ticket-Granting Ticket (TGT)

91. Which type of attack overwhelms a host by flooding it with ICMP packets?

DOS

Synflood

Ping of Death

Smurf Attack

DDOS

92. A realm is also known as a __________?

Scope of authority

Domain

Name Space

MDS hash key

93. Which is the correct hexidecimal subnet chain?

128,64,32,16,8,4,2,0

64,128,192,224,240,248,252,254

128,192,224,240,248,252,254,256

128,64,32,16,8,4,2,1

128,192,224,240,248,252,254,255

94. During a certificates 10 stage life cycle which of these are the first stage?

Matching public and private keys are created.

The user approaches the CA with a specific request for authority.

The CA (Certificate Authority) binds the requestors identifying attributes to its public key.

A certificate is cancelled before its expiration date.

95. This Kerbos item is a ticket for the resource server along with the session key.

Credentials

Session Key

Authenticator

Ticket

Ticket-Granting Ticket (TGT)

96. Using certain programs this type of attack allows the attacker to monitor and modify a TCP session. The attacker does need to be on the same Eithernet segment as the victim or the host.

Information Theft

Man In The Middle Attack

TCP Session Hijacking

Web Spoofing

ARP Poisoning