Johnny's MTA Security

1. Question No : 87 Passwords that contain recognizable words are vulnerable to a:

Denial of Service attack

Hashing attack

Dictionary attack

Replay attack

Dictionary attack

Explanation

Dictionary attack

2. Question No : 1 Which attack listens to network traffic of a computer resource?

Resource gathering

Denial of service

ARP poisoning

Eavesdropping

Logic bomb

Eavesdropping

Explanation

Eavesdropping

3. Question No : 76 You create a new file in a folder that has inheritance enabled. By default, the new file:

Takes the permissions of the parent folder

Does not take any permissions

Takes the permissions of other folders in the same directory

Takes the permissions of other files in the same directory

Takes the permissions of the parent folder

Explanation

Takes the permissions of the parent folder

4. Question No : 43 Humongous Insurance needs to set up a domain controller in a branch office. Unfortunately, the server cannot be sufficiently secured from access by employees in that office, so the company is installing a Primary Domain Controller. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

Read-Only Domain Controller

Backup Domain Controller

Active Directory Server

No change is needed.

Read-Only Domain Controller

Explanation

Read-Only Domain Controller

5. Question No : 2 The default password length for a Windows Server domain controller is:

0

5

7

14

7

Explanation

7

6. Question No : 47 You create a web server for your school. When users visit your site, they get a certificate error that says your site is not trusted. What should you do to fix this problem?

Install a certificate from a trusted Certificate Authority (CA).

Use a digital signature

Generate a certificate request.

Enable Public Keys on your website.

Install a certificate from a trusted Certificate Authority (CA).

Explanation

Install a certificate from a trusted Certificate Authority (CA).

7. Question No : 10 Many Internet sites that you visit require a user name and password. How should you secure these passwords?

Save them to a text file

Enable session caching

Configure the browser to save passwords

. Save them to an encrypted file

Reuse the same password

Save them to an encrypted file

Explanation

Save them to an encrypted file

8. Question No : 6 A network sniffer is software or hardware that:

A. Records user activity and transmits it to the server

B. Captures and analyzes network communication

C. Protects workstations from intrusions

D. Catalogs network data to create a secure index

Captures and analyzes network communication

Explanation

Captures and analyzes network communication

9. Question No : 29 A user who receives a large number of emails selling prescription medicine is probably receiving pharming mail. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

Malware

Spoofed mail

Spam

No change is needed.

Spam

Explanation

Spam

10. Question No : 32 The certificate of a secure public Web server on the Internet should be:

Issued by a public certificate authority (CA)

Signed by using a 4096-bit key

Signed by using a 1024-bit key

Issued by an enterprise certificate authority (CA)

Issued by a public certificate authority (CA)

Explanation

Issued by a public certificate authority (CA)

11. Question No : 39 A digitally signed e-mail message:

Validates the recipient

Validates the sender

Is encrypted

Is virus-free

Validates the sender

Explanation

Validates the sender

12. Question No : 3 What does NAT do?

It encrypts and authenticates IP packets.

It provides caching and reduces network traffic.

It translates public IP addresses to private addresses and vice versa

It analyzes incoming and outgoing traffic packets.

It translates public IP addresses to private addresses and vice versa.

Explanation

It translates public IP addresses to private addresses and vice versa.

13. Question No : 18 What is a service set identifier (SSID)?

A wireless encryption standard

The wireless LAN transmission type

The broadcast name of an access point

A wireless security protocol

The broadcast name of an access point

Explanation

The broadcast name of an access point

14. Question No : 12 You need to install a domain controller in a branch office. You also need to secure the information on the domain controller. You will be unable to physically secure the server. Which should you implement?

Read-Only Domain Controller

Point-to-Point Tunneling Protocol (PPTP)

Layer 2 Tunneling Protocol (L2TP)

Server Core Domain Controller

Read-Only Domain Controller

Explanation

Read-Only Domain Controller

15. Question No : 107 What does implementing Windows Server Update Services (WSUS) allow a company to manage?

Shared private encryption key updates

Updates to Group Policy Objects

Active Directory server replication

Windows updates for workstations and servers

Explanation

Windows updates for workstations and servers

16. Question No : 70 E-mail bombing attacks a specific entity by:

Redirecting all e-mail to another entity

Sending high volumes of e-mail

Tracing e-mail to the destination address

Triggering high levels of security alerts

Sending high volumes of e-mail

Explanation

Sending high volumes of e-mail

17. Question No : 54 To prevent users from copying data to removable media, you should:

Lock the computer cases

Apply a group policy

Disable copy and paste

Store media in a locked room

Apply a group policy

Explanation

Apply a group policy

18. Question No : 72 The Windows Firewall protects computers from unauthorized network connections. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed'' if the underlined text makes the statement correct.

Email viruses

Phishing scams

Unencrypted network access

No change is needed

Explanation

No change is needed

19. Question No : 88 A brute force attack:

Uses response filtering

Tries all possible password variations

Uses the strongest possible algorithms

Targets all the ports

Tries all possible password variations

Explanation

Tries all possible password variations

20. Question No : 60 You need to prevent unauthorized users from reading a specific file on a portable computer if the portable computer is stolen. What should you implement?

File-level permissions

Advanced Encryption Standard (AES)

Folder-level permissions

Distributed File System (DFS)

BitLocker

Explanation

BitLocker

21. Question No : 42 Keeping a server updated:

Maximizes network efficiency

Fixes security holes

Speeds up folder access

Synchronizes the server

Fixes security holes

Explanation

Fixes security holes

22. Question No : 102 Physically securing servers prevents

Theft

Compromise of the certificate chain

Man-in-the middle attacks

Denial of Service attacks

Theft

Explanation

Theft

23. Question No : 24 Cookies impact security by enabling: (Choose two.)

Storage of Web site passwords.

Higher security Web site protections.

Secure Sockets Layer (SSL).

Web sites to track browsing habits.

Storage of Web site passwords., Web sites to track browsing habits.

Explanation

Storage of Web site passwords., Web sites to track browsing habits.

Submit

24. Question No : 58 Which type of firewall allows for inspection of all characteristics of a packet?

NAT

Stateful

Stateless

Windows Defender

Stateful

Explanation

Stateful

25. Question No : 123 Which provides the highest level of security in a firewall?

Stateful inspection

Outbound packet filters

Stateless inspection

Inbound packet filters

Stateful inspection

Explanation

Stateful inspection

26. Question No : 11 Bridging is a process of sending packets from source to destination on OSI layer 3. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

Routing

Switching

. Repeating

No change is needed.

Routing

Explanation

Routing

27. Question No : 15 To implement WPA2 Enterprise, you would need a/an:

RADIUS server

SSL server

WEP server

VPN server

RADIUS server

Explanation

RADIUS server

28. Question No : 4 Role separation improves server security by:

A. Enforcing principle of least privilege.

B. Installing applications on separate hard disks

C. Physically separating high security servers from other servers

D. Placing servers on separate VLANs

29. Question No : 44 Phishing is an attempt to:

Obtain information by posing as a trustworthy entity

Limit access to e-mail systems by authorized users

Steal data through the use of network intrusion.

Corrupt e-mail databases through the use of viruses.

Obtain information by posing as a trustworthy entity

Explanation

Obtain information by posing as a trustworthy entity

30. Question No : 13 What are two attributes that an email message may contain that should cause a user to question whether the message is a phishing attempt? (Choose two.)

An image contained in the message

Spelling and grammar errors

. Threats of losing service

Use of bold and italics

Spelling and grammar errors , . Threats of losing service

Explanation

Spelling and grammar errors , . Threats of losing service

Submit

31. Question No : 105 The client computers on your network are stable and do not need any new features. Which is a benefit of applying operating system updates to these clients?

. Keep the software licensed

Keep the server ports available

Update the hardware firewall

Close existing vulnerabilities

Explanation

Close existing vulnerabilities

32. Question No : 112 What is the standard or basic collection of NTFS permissions?

Read and execute, read, write, full control, modify, list folder contents

Change permissions, read permissions, write permissions

Read attributes, list folder/read data, traverse folder/execute file

Create files/write data, create folders/append data, take ownership

Read and execute, read, write, full control, modify, list folder contents

Explanation

Read and execute, read, write, full control, modify, list folder contents

33. Question No : 8 Your password is 1Vu*cI!8sT. Which attack method is your password vulnerable to?

A. Rainbow table

B. Brute force

C. Spidering

D. Dictionary

Rainbow table

Explanation

Rainbow table

34. Question No : 49 Windows Server Update Services (WSUS) is a tool that:

Updates data stored in Windows servers

Manages the services that run on a server

Updates licensing for Windows servers

Manages updates for Microsoft software

Explanation

Manages updates for Microsoft software

35. Question No : 14 The WPA2 PreShared Key (PSK) is created by using a passphrase (password) and salting it with the WPS PIN. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

Service Set Identifier (SSID)

Admin password

WEP key

No change is needed

Service Set Identifier (SSID)

Explanation

Service Set Identifier (SSID)

36. Question No : 120 Where should you lock up the backup tapes for your servers?

The server room

A filing cabinet

The tape library

An offsite fire safe

Explanation

An offsite fire safe

37. Question No : 84 Shredding documents helps prevent:

Man-in-the-middle attacks

Social engineering

File corruption

Remote code execution

Social networking

Social engineering

Explanation

Social engineering

38. Question No : 94 An attorney hires you to increase the wireless network security for the law firm's office. The office has a very basic network, with just a modem and a router. Which of these security modes offers the highest security?

WPA-Personal

WEP

WPA2-Personal

WPA-Enterprise

WPA2-Personal

Explanation

WPA2-Personal

39. Question No : 9 A group of users has access to Folder A and all of its contents. You need to prevent some of the users from accessing a subfolder inside Folder A. What should you do first?

Disable folder sharing

Hide the folder

Change the owner

Block inheritance

Disable folder sharing

Explanation

Disable folder sharing

40. Question No : 5 The Graphic Design Institute hires you to help them set up a server for their 20-person team. As a general practice of hardening the server, you start by performing which two tasks? (Choose two.)

A. Disable the guest account.

B. Rename the admin account.

C. Remove the account lockout policy.

D. Format partitions with FAT32.

A. Disable the guest account. . Rename the admin account

Explanation

A. Disable the guest account. . Rename the admin account

Submit

41. Question No : 116 You are trying to connect to an FTP server on the Internet from a computer in a school lab. You cannot get a connection. You try on another computer with the same results. The computers in the lab are able to browse the Internet. You are able to connect to this FTP server from home. What could be blocking the connection to the server?

A layer-2 switch

A wireless access point

A firewall

A layer-2 hub

A firewall

Explanation

A firewall

42. Question No : 61 Basic security questions used to reset a password are susceptible to:

Hashing

Social engineering

Network sniffing

Trojan horses

Social engineering

Explanation

Social engineering

43. Question No : 16 You are volunteering at an organization that gets a brand new web server. To make the server more secure, you should add a second administrator account. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

Disable unused services

Enable LM authentication

Enable NTLM authentication

No change is needed.

Disable unused services

Explanation

Disable unused services

44. Question No : 104 E-mail spoofing:

Forwards e-mail messages to all contacts

Copies e-mail messages sent from a specific user

Obscures the true e-mail sender

Modifies e-mail routing logs

Obscures the true e-mail sender

Explanation

Obscures the true e-mail sender

45. Question No : 53 Which enables you to change the permissions on a folder?

Take ownership

Extended attributes

Auditing

Modify

Explanation

Modify

46. Question No : 23 Coho Winery wants to increase their web presence and hires you to set up a new web server. Coho already has servers for their business and would like to avoid purchasing a new one. Which server is best to use as a web server, considering the security and performance concerns?

SQL Server

File Server

Domain Controller

Application Server

Domain Controller

Explanation

Domain Controller

47. Question No : 119 Which enables access to all of the logged-in user's capabilities on a computer?

Java applets

ActiveX controls

Active Server Pages (ASP)

Microsoft Silverlight

ActiveX controls

Explanation

ActiveX controls

48. Question No : 68 What are three major attack vectors that a social engineering hacker may use? (Choose three.)

Telephone

Reverse social engineering

Waste management

Honey pot systems

Firewall interface

Telephone, Reverse social engineering, Waste management

Explanation

Telephone, Reverse social engineering, Waste management

Submit

49. Question No : 89 The purpose of User Account Control (UAC) is to:

Encrypt the user's account

Limit the privileges of software

Secure your data from corruption

Facilitate Internet filtering

Limit the privileges of software

Explanation

Limit the privileges of software

50. Question No : 20 Which is the minimum requirement to create BitLocker-To-Go media on a client computer?

Windows XP Professional Service Pack 3

Windows Vista Enterprise Edition

Windows 7 Enterprise Edition

Windows 2000 Professional Service Pack 4

Windows XP Professional Service Pack 3

Explanation

Windows XP Professional Service Pack 3

51. Question No : 31 You want to make your computer resistant to online hackers and malicious software. What should you do?

Configure a forward proxy.

Install anti-virus software.

Enable spam filtering.

Turn on Windows Firewall.

Install anti-virus software.

Explanation

Install anti-virus software.

52. Question No : 75 The purpose of a digital certificate is to verify that a:

Public key belongs to a sender.

Computer is virus-free.

Private key belongs to a sender.

Digital document is complete.

Public key belongs to a sender.

Explanation

Public key belongs to a sender.

53. Question No : 64 Network Access Protection (NAP) enables administrators to control access to network resources based on a computer's:

Encryption level

Warranty

Physical location

Configuration

Explanation

Configuration

54. Question No : 81 You have two servers that run Windows Server. All drives on both servers are formatted by using NTFS. You move a file from one server to the other server. The file's permissions in the new location will:

Enable full access to the everyone group

Restrict access to the Administrators group

Inherit the destination folder's permissions

Retain the original folder's permissions

Inherit the destination folder's permissions

Explanation

Inherit the destination folder's permissions

55. Question No : 97 You sign up for an online bank account. Every 6 months, the bank requires you to change your password. You have changed your password 5 times in the past. Instead of coming up with a new password, you decide to use one of your past passwords, but the bank's password history prevents you on doing so. Select the correct answer if the underlined text does not make the statement correct Select "No change is needed" if the underlined text makes the statement correct.

Minimum password age

Maximum password duration

Password complexity

No change is needed.

Explanation

No change is needed.

56. Question No : 22 Which two security settings can be controlled by using group policy? (Choose two.)

Password complexity

Access to the Run... command

Automatic file locking

Encrypted access from a smart phone

Password complexity , Access to the Run... command

Explanation

Password complexity , Access to the Run... command

Submit

57. Question No : 59 You suspect a user's computer is infected by a virus. What should you do first?

Restart the computer in safe mode

Replace the computer's hard disk drive

Disconnect the computer from the network

Install antivirus software on the computer

Explanation

Install antivirus software on the computer

58. Question No : 74 Setting a minimum password age restricts when users can:

Request a password reset

Change their passwords

Log on by using their passwords

Set their own password expiration

Change their passwords

Explanation

Change their passwords

59. Question No : 66 Before you deploy Network Access Protection (NAP), you must install:

Internet Information Server (IIS)

Network Policy Server (NPS)

Active Directory Federation Services

Windows Update Service

Network Policy Server (NPS)

Explanation

Network Policy Server (NPS)

60. Question No : 46 What is an example of non-propagating malicious code?

A back door

A hoax

A Trojan horse

A worm

A back door

Explanation

A back door

61. Question No : 17 Which two characteristics should you recommend for a user's domain password? (Choose two.)

Hard to guess

Includes Unicode characters

Easy to remember

Easy to increment

Hard to guess , Easy to remember

Explanation

Hard to guess , Easy to remember

Submit

62. Question No : 26 Account lockout policies are used to prevent which type of security attack?

Brute force attacks

Users sharing passwords

Social engineering

Passwords being reused immediately

Brute force attacks

Explanation

Brute force attacks

63. Question No : 50 The purpose of Microsoft Baseline Security Analyzer is to:

List system vulnerabilities.

Apply all current patches to a server.

Set permissions to a default level

. Correct a company's security state.

List system vulnerabilities

Explanation

List system vulnerabilities

64. Question No : 110 You are an intern at Litware, Inc. Your manager asks you to make password guess attempts harder by limiting login attempts on company computers. What should you do?

Enforce password sniffing.

Enforce password history

Make password complexity requirements higher.

Implement account lockout policy.

Explanation

Implement account lockout policy.

65. Question No : 33 The primary method of authentication in an SSL connection is passwords. To answer, choose the option "No change is needed" if the underlined text is correct. If the underlined text is not correct, choose the correct answer.

No change is needed

Certificates

IPsec

Biometrics

Certificates

Explanation

Certificates

66. Question No : 77 Dumpster diving refers to a physical threat that a hacker might use to look for information about a computer network. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct

Phishing

Malware

Reverse Social engineering

No change is needed

Explanation

No change is needed

67. Question No : 79 Your company requires that users type a series of characters to access the wireless network. The series of characters must meet the following requirements: ? Contains more than 15 characters ? Contains at least one letter ? Contains at least one number ? Contains at least one symbol Which security technology meets these requirements?

WEP

WPA2 PSK

WPA2 Enterprise

MAC filtering

WPA2 PSK

Explanation

WPA2 PSK

68. Question No : 65 A mail system administrator scans for viruses in incoming emails to increase the speed of mail processing. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

Decrease the chances of a virus getting to a client machine

Verify that the senders of the messages are legitimate

Ensure that all links in the messages are trustworthy

No change is needed.

Decrease the chances of a virus getting to a client machine

Explanation

Decrease the chances of a virus getting to a client machine

69. Question No : 35 What is a common method for password collection?

Email attachments

Back door intrusions

SQL Injection

Network sniffers

Explanation

Network sniffers

70. Question No : 40 To keep third-party content providers from tracking your movements on the web, enable InPrivate Browsing. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed'' if the underlined text makes the statement correct.

InPrivate Filtering

SmartScreen Filter

Compatibility Mode

No change is needed

InPrivate Filtering

Explanation

InPrivate Filtering

71. Question No : 69 Password history policies are used to prevent:

Brute force attacks

Users from sharing passwords

Social engineering

Passwords from being reused immediately

Explanation

Passwords from being reused immediately

72. Question No : 21 The Active Directory controls, enforces, and assigns security policies and access rights for all users. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

NTFS permissions

User Account Control

Registry

No change is needed

Explanation

No change is needed

73. Question No : 63 Which is a special folder permission?

Read

Modify

Write

Delete

Explanation

Delete

74. Question No : 101 Creating MD5 hash for files is an example of ensuring what?

. Confidentiality

Availability

Least privilege

Integrity

Explanation

Integrity

75. Question No : 56 This question requires that you evaluate the underlined text to determine if it is correct. The first line of defense against attacks from the Internet is a software firewall. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed'' if the underlined text makes the statement correct.

Hardware firewall

Virus software

Radius server

No change is needed

hardware firewall

Explanation

hardware firewall

76. Question No : 25 To protect systems from buffer overflow errors, you can use:

Antivirus software

Data Execution Prevention

A proxy server

An Intruder Prevention System

Data Execution Prevention

Explanation

Data Execution Prevention

77. Question No : 80 The manager of a coffee shop hires you to securely set up WiFi in the shop. To keep computer users from seeing each other, what should you use with an access point?

Client bridge mode

Client isolation mode

MAC address filtering

Client mode

Client isolation mode

Explanation

Client isolation mode

78. Question No : 78 You need to grant a set of users write access to a file on a network share. You should add the users to:

A security group

The Authenticated Users group

The Everyone group

A distribution group

The Authenticated Users group

Explanation

The Authenticated Users group

79. Question No : 67 The company that you work for wants to set up a secure network, but they do not have any servers. Which three security methods require the use of a server? (Choose three.)

802.1x

WPA2 Personal

WPA2 Enterprise

RADIUS

802.11ac

802.1x, WPA2 Enterprise, RADIUS

Explanation

802.1x, WPA2 Enterprise, RADIUS

Submit

80. Question No : 55 Which technology enables you to filter communications between a program and the Internet?

RADIUS server

Antivirus software

Software firewall

BitLocker To Go

Software firewall

Explanation

Software firewall

81. Question No : 52 In Internet Explorer 8, the InPrivate Browsing feature prevents:

Unauthorized private data input.

Unencrypted communication between the client computer and the server

User credentials from being sent over the Internet.

Any session data from being stored on the computer.

Explanation

Any session data from being stored on the computer.

82. Question No : 73 When conducting a security audit the first step is to:

Inventory the company's technology assets

Install auditing software on your servers

Set up the system logs to audit security events

Set up a virus quarantine area

Inventory the company's technology assets

Explanation

Inventory the company's technology assets

83.

Remote Assistance: Home/Work (Private)

Remote Desktop: Public

Remote Desktop: Home/Work (Private)

Remote Assistance: Domain

Remote Assistance: Home/Work (Private)

Explanation

Remote Assistance: Home/Work (Private)

84. Question No : 98 You have a Windows 7 desktop computer, and you create a Standard User account for your roommate so that he can use the desktop from time to time. Your roommate has forgotten his password. Which two actions can you take to reset the password? (Choose two.)

Use your password reset disk.

Use your administrator account.

Boot into Safe Mode with your roommate's account.

From your roommate's account press CTRL+ALT+DELETE, and then click Change a password.

Use your password reset disk. , Use your administrator account.

Explanation

Use your password reset disk. , Use your administrator account.

Submit

85. Question No : 115 How does the sender policy framework (SPF) aim to reduce spoofed email?

It provides a list of IP address ranges for particular domains so senders can be verified.

It includes an XML policy file with each email that confirms the validity of the message.

It lists servers that may legitimately forward mail for a particular domain.

It provides an encryption key so that authenticity of an email message can be validated

It provides a list of IP address ranges for particular domains so senders can be verified.

Explanation

It provides a list of IP address ranges for particular domains so senders can be verified.

86. Question No : 111 You would implement a wireless intrusion prevention system to:

Prevent wireless interference

Detect wireless packet theft

Prevent rogue wireless access points

Enforce SSID broadcasting

Prevent rogue wireless access points

Explanation

Prevent rogue wireless access points

87. Question No : 86 What are three examples of two-factor authentication? (Choose three.)

A fingerprint and a pattern

A password and a smart card

A username and a password

A password and a pin number

A pin number and a debit card

A fingerprint and a pattern, A password and a smart card, A pin number and a debit card

Explanation

A fingerprint and a pattern, A password and a smart card, A pin number and a debit card

Submit

88. Question No : 113 You are an intern at Wide World Importers and help manage 1000 workstations. All the workstations are members of an Active Domain. You need to push out an internal certificate to Internet Explorer on all workstations. What is the quickest method to do this?

Local policy

Logon script

Windows Update

Group policy

Local policy

Explanation

Local policy

89. Question No : 96 What is the primary advantage of using Active Directory Integrated Zones?

Zone encryption

Password protection

Non-repudiation

Secure replication

Explanation

Secure replication

90. Question No : 100 You need to limit the programs that can run on client computers to a specific list. Which technology should you implement?

Windows Security Center

Security Accounts Manager

System Configuration Utility

AppLocker group policies

Windows Security Center

Explanation

Windows Security Center

91. Question No : 71 Which two are included in an enterprise antivirus program? (Choose two.)

Attack surface scanning

On-demand scanning

Packet scanning

Scheduled scanning

On-demand scanning , Scheduled scanning

Explanation

On-demand scanning , Scheduled scanning

Submit

92. Question No : 118 Humongous Insurance is an online healthcare insurance company. During an annual security audit a security firm tests the strength of the company's password policy and suggests that Humongous Insurance implement password history policy. What is the likely reason that the security firm suggests this?

Past passwords were easily cracked by the brute force method.

Past passwords of users contained dictionary words.

Previous password breaches involved use of past passwords.

Past passwords lacked complexity and special characters.

Past passwords of users contained dictionary words.

Explanation

Past passwords of users contained dictionary words.

93. Question No : 108 The primary purpose of Network Access Protection (NAP) is to prevent:

Loss of data from client computers on a network.

Non-compliant systems from connecting to a network.

Users on a network from installing software.

Unauthorized users from accessing a network.

Non-compliant systems from connecting to a network.

Explanation

Non-compliant systems from connecting to a network.

94. Question No : 103 Which of the following describes a VLAN?

It connects multiple networks and routes data packets

It is a logical broadcast domain across physical subnets.

It is a subnetwork that reveals a company's externally facing resources to the public network.

It allows different network protocols to communicate between different network segments.

It is a logical broadcast domain across physical subnets.

Explanation

It is a logical broadcast domain across physical subnets.

95. Question No : 82 Which three elements does HTTPS encrypt? (Choose three.)

Browser cookies

Server IP address

Port numbers

Website URL

Login information

Browser cookies, Website URL Login information

Explanation

Browser cookies, Website URL Login information

Submit

96. Question No : 99 Which password attack uses all possible alpha numeric combinations?

. Social engineering

Brute force attack

Dictionary attack

Rainbow table attack

Dictionary attack

Explanation

Dictionary attack

97. Question No : 109 You are trying to establish communications between a client computer and a server. The server is not responding. You confirm that both the client and the server have network connectivity. Which should you check next ?

Microsoft Update

Data Execution Prevention

Windows Firewall

Active Directory Domains and Trusts

Explanation

Active Directory Domains and Trusts

98. Question No : 37 You are an intern and are working remotely. You need a solution that meets the following requirements: ? Allows you to access data on the company network securely ? Gives you the same privileges and access as if you were in the office What are two connection methods you could use? (Choose two

Forward Proxy

Virtual Private Network (VPN)

Remote Access Service (RAS

Roaming Profiles

Forward Proxy Roaming Profiles

Explanation

Forward Proxy Roaming Profiles

Submit

Johnny's MTA Security

1. Question No : 87 Passwords that contain recognizable words are vulnerable to a:

2.

What first name or nickname would you like us to use?

2. Question No : 1 Which attack listens to network traffic of a computer resource?

3. Question No : 76 You create a new file in a folder that has inheritance enabled. By default, the new file:

5. Question No : 2 The default password length for a Windows Server domain controller is:

6. Question No : 47 You create a web server for your school. When users visit your site, they get a certificate error that says your site is not trusted. What should you do to fix this problem?

7. Question No : 10 Many Internet sites that you visit require a user name and password. How should you secure these passwords?

8. Question No : 6 A network sniffer is software or hardware that:

9. Question No : 29 A user who receives a large number of emails selling prescription medicine is probably receiving pharming mail. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

10. Question No : 32 The certificate of a secure public Web server on the Internet should be:

11. Question No : 39 A digitally signed e-mail message:

12. Question No : 3 What does NAT do?

13. Question No : 18 What is a service set identifier (SSID)?

14. Question No : 12 You need to install a domain controller in a branch office. You also need to secure the information on the domain controller. You will be unable to physically secure the server. Which should you implement?

15. Question No : 107 What does implementing Windows Server Update Services (WSUS) allow a company to manage?

16. Question No : 70 E-mail bombing attacks a specific entity by:

17. Question No : 54 To prevent users from copying data to removable media, you should:

18. Question No : 72 The Windows Firewall protects computers from unauthorized network connections. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed'' if the underlined text makes the statement correct.

19. Question No : 88 A brute force attack:

20. Question No : 60 You need to prevent unauthorized users from reading a specific file on a portable computer if the portable computer is stolen. What should you implement?

21. Question No : 42 Keeping a server updated:

22. Question No : 102 Physically securing servers prevents

23. Question No : 24 Cookies impact security by enabling: (Choose two.)

24. Question No : 58 Which type of firewall allows for inspection of all characteristics of a packet?

25. Question No : 123 Which provides the highest level of security in a firewall?

26. Question No : 11 Bridging is a process of sending packets from source to destination on OSI layer 3. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

27. Question No : 15 To implement WPA2 Enterprise, you would need a/an:

28. Question No : 4 Role separation improves server security by:

29. Question No : 44 Phishing is an attempt to:

30. Question No : 13 What are two attributes that an email message may contain that should cause a user to question whether the message is a phishing attempt? (Choose two.)

31. Question No : 105 The client computers on your network are stable and do not need any new features. Which is a benefit of applying operating system updates to these clients?

32. Question No : 112 What is the standard or basic collection of NTFS permissions?

33. Question No : 8 Your password is 1Vu*cI!8sT. Which attack method is your password vulnerable to?

34. Question No : 49 Windows Server Update Services (WSUS) is a tool that:

35. Question No : 14 The WPA2 PreShared Key (PSK) is created by using a passphrase (password) and salting it with the WPS PIN. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

36. Question No : 120 Where should you lock up the backup tapes for your servers?

37. Question No : 84 Shredding documents helps prevent:

38. Question No : 94 An attorney hires you to increase the wireless network security for the law firm's office. The office has a very basic network, with just a modem and a router. Which of these security modes offers the highest security?

39. Question No : 9 A group of users has access to Folder A and all of its contents. You need to prevent some of the users from accessing a subfolder inside Folder A. What should you do first?

40. Question No : 5 The Graphic Design Institute hires you to help them set up a server for their 20-person team. As a general practice of hardening the server, you start by performing which two tasks? (Choose two.)

42. Question No : 61 Basic security questions used to reset a password are susceptible to:

44. Question No : 104 E-mail spoofing:

45. Question No : 53 Which enables you to change the permissions on a folder?

46. Question No : 23 Coho Winery wants to increase their web presence and hires you to set up a new web server. Coho already has servers for their business and would like to avoid purchasing a new one. Which server is best to use as a web server, considering the security and performance concerns?

47. Question No : 119 Which enables access to all of the logged-in user's capabilities on a computer?

48. Question No : 68 What are three major attack vectors that a social engineering hacker may use? (Choose three.)

49. Question No : 89 The purpose of User Account Control (UAC) is to:

50. Question No : 20 Which is the minimum requirement to create BitLocker-To-Go media on a client computer?

51. Question No : 31 You want to make your computer resistant to online hackers and malicious software. What should you do?

52. Question No : 75 The purpose of a digital certificate is to verify that a:

53. Question No : 64 Network Access Protection (NAP) enables administrators to control access to network resources based on a computer's:

54. Question No : 81 You have two servers that run Windows Server. All drives on both servers are formatted by using NTFS. You move a file from one server to the other server. The file's permissions in the new location will:

56. Question No : 22 Which two security settings can be controlled by using group policy? (Choose two.)

57. Question No : 59 You suspect a user's computer is infected by a virus. What should you do first?

58. Question No : 74 Setting a minimum password age restricts when users can:

59. Question No : 66 Before you deploy Network Access Protection (NAP), you must install:

60. Question No : 46 What is an example of non-propagating malicious code?

61. Question No : 17 Which two characteristics should you recommend for a user's domain password? (Choose two.)

62. Question No : 26 Account lockout policies are used to prevent which type of security attack?

63. Question No : 50 The purpose of Microsoft Baseline Security Analyzer is to:

64. Question No : 110 You are an intern at Litware, Inc. Your manager asks you to make password guess attempts harder by limiting login attempts on company computers. What should you do?

65. Question No : 33 The primary method of authentication in an SSL connection is passwords. To answer, choose the option "No change is needed" if the underlined text is correct. If the underlined text is not correct, choose the correct answer.

68. Question No : 65 A mail system administrator scans for viruses in incoming emails to increase the speed of mail processing. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

69. Question No : 35 What is a common method for password collection?

70. Question No : 40 To keep third-party content providers from tracking your movements on the web, enable InPrivate Browsing. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed'' if the underlined text makes the statement correct.

71. Question No : 69 Password history policies are used to prevent:

72. Question No : 21 The Active Directory controls, enforces, and assigns security policies and access rights for all users. Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.

73. Question No : 63 Which is a special folder permission?

74. Question No : 101 Creating MD5 hash for files is an example of ensuring what?

76. Question No : 25 To protect systems from buffer overflow errors, you can use:

77. Question No : 80 The manager of a coffee shop hires you to securely set up WiFi in the shop. To keep computer users from seeing each other, what should you use with an access point?

78. Question No : 78 You need to grant a set of users write access to a file on a network share. You should add the users to:

79. Question No : 67 The company that you work for wants to set up a secure network, but they do not have any servers. Which three security methods require the use of a server? (Choose three.)

80. Question No : 55 Which technology enables you to filter communications between a program and the Internet?

81. Question No : 52 In Internet Explorer 8, the InPrivate Browsing feature prevents:

82. Question No : 73 When conducting a security audit the first step is to:

83.

84. Question No : 98 You have a Windows 7 desktop computer, and you create a Standard User account for your roommate so that he can use the desktop from time to time. Your roommate has forgotten his password. Which two actions can you take to reset the password? (Choose two.)