CompTIA Security+ (Sy0-201) Quiz 2 Of 4

NAT

NIDS

Netflow

Protocol analyzer

An incorrect VLAN

SSID broadcasting

A repeater

A vampire tap

A vulnerability scanner

Security baselines

A port scanner

Group policy

Steganography

Integrity

Trusted Platform Module

Non-repudiation

AES

DES

PGP

RSA

Single sign-on

Two-factor authentication

One-factor authentication

NTLMv2

Disaster planning

Change management

Acceptable use policies

User education and awareness training

TCP/IP hijacking

DNS poisoning

Kiting

DoS

DoS

DDoS

MAC

ARP

Low humidity and high temperature

High humidity and low temperature

Low humidity and low temperature

High humidity and high temperature

A certificate authority

IETF

A key escrow service

A recovery agent

Unshielded twisted pair cable

Coaxial cable

Fiber optic cable

Shielded twisted pair cable

Weak encryption

8021x

SSID broadcast

Data emanation

Mandatory Access Control (MAC)

Role-Based Access Control (RBAC)

Discretionary Access Control (DAC)

Rule-Based Access Control (RBAC)

Firewall

Man-in-the-middle

Proxy server

Honeypot

Least privilege

Implicit deny

Separation of duties

Job rotation

That the printer has the correct size of paper in each of the trays

That the toner should be changed in the printer

That the user has sufficient rights to print to the printer

That the user is attempting to print to the correct printer tray

Java

ActiveX

JavaScript

Cold Fusion

The access control list

The security baseline

The data emanation

The local security template

Deny the users request and forward to the human resources department.

Reboot the system.

Verify that the users permissions are correct.

Grant access to the file.

The IDS logs

The security application logs

The local security logs

The firewall logs

That the software based firewall application trusts this site

That the pop-up blocker application trusts this site

That the anti-virus application trusts this site

That the anti-spam application trusts this site

The firewall logs

The DNS logs

The access logs

The performance logs

Compare the final MD5 hash with the original

Download the patch file over an AES encrypted VPN connection

Compare the final LANMAN hash with the original

Download the patch file through a SSL connection

The NIDS log file

A protocol analyzer

The local security log file

The local firewall log file

Explain how easy it is for a hacker to crack weak passwords

Show the user a domain overview, including a list of weak passwords.

Refer the user to a strong password demonstrator

Ask the user to review the corporate policies and procedures manual

Install multiple high end servers, sharing a clustered network operating system

Install a single low end server, running multiple virtual servers

Install a single high end server, running multiple virtual servers

Install multiple low end servers, each running a network operating system

Java input error

Cross-site scripting

Buffer overflow

SQL injection

Viruses

Worms

Botnets

Trojans

Logic bomb

Rootkit

Botnet

Privilege escalation

Replay

Spoofing

TCP/IP hijacking

Man-in-the-middle

Accept the risk

Mitigate the risk

Reject the risk

Run a new risk assessment

$2,700

$4,500

$5,000

$7,290

Remote access user connecting via SSL VPN

Office laptop connected to the enterprise LAN

Remote access user connecting via corporate dial-in server

Office laptop connected to a home users network

Malware installation from suspects Internet sites

Man-in-the-middle attacks

Phishing and spam attacks

DDoS attacks against the underlying OS

Users assigned to roles, permissions are assigned to groups, controls applied to groups and permissions acquired by controls

Users assigned permissions, roles assigned to groups and users acquire additional permissions by being a member of a group

Roles applied to groups, users assigned to groups and users acquire permissions by being a member of the group

Users assigned to roles, permissions are assigned to roles and users acquire permissions by being a member of the role

Mantrap

Security badges

Hardware locks

Token access

Trojan

Adware

Worm

Rootkit

Updating the firewall configuration to include the patches

Running a NIDS report to list the remaining vulnerabilities

Auditing for the successful application of the patches

Backing up the patch file executable to a network share

A patch in a service pack fixes the issue, but too many extra patches are included.

A patch is not available and workarounds do not correct the problem.

A patch is available, but has not yet been tested in a production environment

A patch is too large to be distributed via a remote deployment tool

Vulnerability assessment

Fingerprinting

Penetration testing

Fuzzing

Protocol analyzer

Penetration testing tool

Network mapper

Vulnerability scanner

Before initial configuration

Before loading the OS

After a user logs in

After initial configuration

Log on only as the administrator

Install only needed software

Check the logs regularly

Report all security incidents

Install a repeater

Uninterruptible power supply (UPS)

Faraday cage

Disable SSID broadcast

A hash produces a variable output for any input size, a cipher does not.

A cipher produces the same size output for any input size, a hash does not.

A cipher can be reversed, a hash cannot.

A hash can be reversed, a cipher cannot.