Set 2 Comptia Security+ Exam Practice: Securing Communication & Infrastructure

1. A Modem modulates and demodulates data signals. T/F?

True

False

As the name suggests the modem mainly modulates and demodulates signals, it is responsible for converting the analog signals of the telephone to the digital signals required by the PC and vice versa.

Explanation

As the name suggests the modem mainly modulates and demodulates signals, it is responsible for converting the analog signals of the telephone to the digital signals required by the PC and vice versa.

2. Which of the following firewall policies is most restrictive?

Any any

Deny all

Permit all

None of the above

The �deny all� is the most restrictive statement that is implicitly defined in the fireall when no other statement is configured. This will get applied to all packets that do not match with the criteria mentioned in the list above the �deny all� statement.

Explanation

The �deny all� is the most restrictive statement that is implicitly defined in the fireall when no other statement is configured. This will get applied to all packets that do not match with the criteria mentioned in the list above the �deny all� statement.

3. OS hardening is not possible on web servers. T/F?

True

False

OS hardening is very much possible and essential for Web server.

Explanation

OS hardening is very much possible and essential for Web server.

4. FAT is the most secure of all Microsoft based file system. Y/N?

Yes

No

NTFS is the most secure of all Microsoft based file system.

Explanation

NTFS is the most secure of all Microsoft based file system.

5. Infrared rays have a wide and far reachability. T/F?

True

False

The Infrared communication requires line of sight. The device that intends communication will have to be placed in the line of sight for communication to be possible.

Explanation

The Infrared communication requires line of sight. The device that intends communication will have to be placed in the line of sight for communication to be possible.

6. Port number for internal web server is 80. T/F?

True

False

The port number 80 is the default HTTP port to which clients connect. This is also used for internal webserver.

Explanation

The port number 80 is the default HTTP port to which clients connect. This is also used for internal webserver.

7. Which of the following can be used to provide security for a VPN?

PPTP

IPSec

Kerberos

Certificate

IPSec is a security protocol that can be implemented on any IP-based setup. It is ideal VPN security solution.

Explanation

IPSec is a security protocol that can be implemented on any IP-based setup. It is ideal VPN security solution.

8. An RJ-11 connector would belong to which of the following layers?

Physical layer

Datalink layer

Network Layer

None of the above

RJ-11 connector belongs to the physical layer. The physical layer sets rules for connectivity and signal strength.

Explanation

RJ-11 connector belongs to the physical layer. The physical layer sets rules for connectivity and signal strength.

9. Port number 110 relates to Web services. T/F?

True

False

Port number 80 relates to Web services

Explanation

Port number 80 relates to Web services

10. Which of the following accepts authentication requests from remote clients?

Authenticating server

RADIUS Server

HTTP Server

File Server

The RADIUS server would be challenging the users request first, the request may then be received by any of the internal servers later.

Explanation

The RADIUS server would be challenging the users request first, the request may then be received by any of the internal servers later.

11. L2TP can work over IPX based networks. Y/N?

Yes

No

L2TP (Layer 2 Tunneling Protocol) was created by Cisco as well as Microsoft. It is meant to function over IP, IPX and SNA networks.

Explanation

L2TP (Layer 2 Tunneling Protocol) was created by Cisco as well as Microsoft. It is meant to function over IP, IPX and SNA networks.

12. Which of the following is capable of functioning as a Firewall?

NAT box

Router

PC

Switch

The Router is capable of acting as a firewall as it can do filtering using ACL.

Explanation

The Router is capable of acting as a firewall as it can do filtering using ACL.

13. An Access policy is nothing but the access control list. T/F?

True

False

The access control list may be created based on what the access policy dictates.

Explanation

The access control list may be created based on what the access policy dictates.

14. Stateful inspection firewall will operate on all the 7 layers of the OSI reference model. T/F?

True

False

Stateful Inspection firewall will not operate on all the & layers of OSI reference mode.

Explanation

Stateful Inspection firewall will not operate on all the & layers of OSI reference mode.

15. Which of the following models for hosting a Database server is most secure?

Two-tier model

Three-tier model

Centralized model

None of the above

A three-tier model ensures security to your database server as the database server cannot be directly accessed in this model.

Explanation

A three-tier model ensures security to your database server as the database server cannot be directly accessed in this model.

16. Which of the following accounts should be renamed for network resources safety?

Guest account

Backup operator account

Every user account

None of the above

A guest account has to be renamed so that an intruder cannot guess the user name for the guest account and try to use it to access the network. Renaming admin account is also recommended (but that is not an option stated in the question)

Explanation

A guest account has to be renamed so that an intruder cannot guess the user name for the guest account and try to use it to access the network. Renaming admin account is also recommended (but that is not an option stated in the question)

17. Which of the following communications does not use the 2.4 GHz frequency?

Wireless 802.11b and g

Microwave

Radio frequency

All of the above

The microwave and the Wireless 802.11g and b all operate on the 2.4 GHz range. Radio frequency does not use the 2.4 GHz range.

Explanation

The microwave and the Wireless 802.11g and b all operate on the 2.4 GHz range. Radio frequency does not use the 2.4 GHz range.

18. Which of the following firewall types will allow for port security?

Stateful Inspection

Packet filtering

Application filtering

None of the above

Port filtering is done in packet filtering firewall types. Application filtering is irrelevant.

Explanation

Port filtering is done in packet filtering firewall types. Application filtering is irrelevant.

19. Which of the following is the best way to obtain vulnerability related information for database servers?

Write to the respective vendor at frequent intervals

Look up related web sites

Look up news bulletins

None of the above

There are web sites that keep updating vulnerability information for different platforms. It is ideal to constantly browse these sites to obtain required information.

Explanation

There are web sites that keep updating vulnerability information for different platforms. It is ideal to constantly browse these sites to obtain required information.