HomeworkLib
Question

Question 21 In order to prevent ports that are serving network hosts from being considered as...

Question 21

  1. In order to prevent ports that are serving network hosts from being considered as best paths, what should be enabled to block BPDUs?

    a.

    root guard
    b.

    BPDU filter
    c.

    BPDU drop
    d.

    BPDU guard

1.25 points

Question 22

  1. In regards to the use of local authentication, what statement is accurate?

    a.

    Local authentication is scalable for large networks.
    b.

    Local authentication is network and server failure tolerant.
    c.

    Local authentication does not allow for strong enough passwords.
    d.

    Local authentication provides the most security.

1.25 points

Question 23

  1. In the typical social engineering attack cycle, what occurs at Phase 3?

    a.

    The attacker executes an exit strategy in such a way that does not leave evidence or raise suspicion.
    b.

    The attacker researches the desired target for clues as to vulnerabilities.
    c.

    The attacker builds trust with the target and attempts to gain more information.
    d.

    The attacker exploits an action undertaken by the victim in order to gain access.

1.25 points

Question 24

  1. It is ideal to use the same password for multiple different applications, provided the password is complex enough.

    True

    False

1.25 points

Question 25

  1. Of the three methods of access control (RBAC, DAC, and MAC), RBAC is the least secure of the options.

    True

    False

1.25 points

Question 26

  1. On a Linux based system, what command can you use to create a hash of a file using SHA-256?

    a.

    sha256sum
    b.

    sha1sum
    c.

    shasum -a 256
    d.

    md5sum

1.25 points

Question 27

  1. On a Linux system, which command allows you to modify settings used by the built-in packet filtering firewall?

    a.

    iptables
    b.

    ipf
    c.

    netwall
    d.

    modfire

1.25 points

Question 28

  1. Over a long-distance connection, using SSH keys is more secure than using passwords.

    True

    False

1.25 points

Question 29

  1. Proxy servers and ACLs on network devices are examples of non-security devices with security features, while firewalls and IDS/IPS systems are the network's specialized security devices.

    True

    False

1.25 points

Question 30

  1. Sudden unexplained increases in file sizes and unusual error messages with no apparent cause are both potential symptoms of a viral infection.

    True

    False

1.25 points

Question 31

  1. The Group Policy utility can be opened by typing what name into a Run box?

    a.

    secpol.msc
    b.

    grouppol.msc
    c.

    grppol.msc
    d.

    gpedit.msc

1.25 points

Question 32

  1. The PEAP standard creates an encrypted TLS tunnel between the supplicant and the server before proceeding with the usual EAP process.

    True

    False

1.25 points

Question 33

  1. The Spanning Tree Protocol operates at the Network layer of the OSI model.

    True

    False

1.25 points

Question 34

  1. The Wired Equivalent Privacy standard had what significant disadvantage?

    a.

    It only encrypted the initial connection authentication, but did not encrypt subsequent traffic.
    b.

    It provided no encryption for traffic sent over the air.
    c.

    It did not allow the use of a password for access to the network.
    d.

    It used a shared encryption key for all clients, and the key might never change.

1.25 points

Question 35

  1. The concept of giving employees and contractors only enough access and privileges to do their jobs is known by what term?

    a.

    minimal access/minimal exposure
    b.

    least-risk privilege profile
    c.

    principle of least privilege
    d.

    limited liability access

1.25 points

Question 36

  1. The day after Patch Tuesday is informally dubbed Exploit Wednesday.

    True

    False

1.25 points

Question 37

  1. The original version of the Secure Hash Algorithm was developed by MIT.

    True

    False

1.25 points

Question 38

  1. The storm-control command is a type of flood guard that is available on most major network switch vendor platforms.

    True

    False

1.25 points

Question 39

  1. The supplicant is an EAP entity responsible for requesting authentication, such as a smartphone or laptop.

    True

    False

1.25 points

Question 40

  1. The term malware is derived from a combination of the words malicious and software.

    True

    False

engineering   Computer-Science   
0 0
Add a comment Improve this question Transcribed image text
Next > < Previous
Sort answers by oldest

Homework Answers

Answer #1

21) D) BPDU guard

22) B) Local authentication is network and server failure tolerant.

23) D) The attacker exploits an action undertaken by the victim in order to gain access.

24) False

25) False

26) A) sha256sum

27) A) Iptables

28) True

29) True

30) True

31) D) gpedit.msc

32) True

33) False

34) D) It used a shared encryption key for all clients, and the key might never change.

35) C) principle of least privilege

36) True

37) False

38) True

39) True

40) True

0 0
Add a comment
Know the answer?
Add Answer to:
Question 21 In order to prevent ports that are serving network hosts from being considered as...
Your Answer:

Post as a guest

Your Name:

What's your source?

Earn Coins

Coins can be redeemed for fabulous gifts.

Log In

Sign Up

Not the answer you're looking for? Ask your own homework help question. Our experts will answer your question WITHIN MINUTES for Free.
Similar Homework Help Questions

  • Question 1 1 point possible (graded) True or False: Because IoT is an ecosystem, IoT Security...

    Question 1 1 point possible (graded) True or False: Because IoT is an ecosystem, IoT Security is not just device security. True False Question 2 1 point possible (graded) When comparing IoT malware to traditional viruses, worms, or spam, which of these statements are true? (Select three) Conventional anti-virus or anti-spam schemes work well for IoT malware detection and prevention. IoT malware has much less user interaction. IoT malware is hard to kill due to lack of direct interface with...

  • Question 26 In the TCP/IP model, what layer combines the responsibilities of the Application, Presentation, and...

    Question 26 In the TCP/IP model, what layer combines the responsibilities of the Application, Presentation, and Session layers from the OSI model? a. Internet b. Application c. Transport d. Link 1.25 points Question 27 In the TCP/IP model, what layer is considered so simple that it is ignored entirely? a. Network b. Data Link c. Application d. Physical 1.25 points Question 28 In the United States, who is able to activate the Emergency Alert System at the national level? a....

  • Question 7(1 point) An attacker to a network is using social engineering to attack a network....

    Question 7(1 point) An attacker to a network is using social engineering to attack a network. This means which of the following? (Select all that apply) a b C d The attacker uses a dictionary attack. The attacker uses packet sniffing. The attacker claims to be from network support. The attacker is sifting through discarded trash. Question 8(1 point) The network administrator suspects that packet sniffing is being used to capture data packets in the network. The network administrator is...

  • QUESTION 1 Which generation of wireless network technology uses the packet-switched IP network? a. 3G b....

    QUESTION 1 Which generation of wireless network technology uses the packet-switched IP network? a. 3G b. 4G c. 5G d. All of the above 2.5 points    QUESTION 2 Which layer of the TCP/IP hierarchy is responsible for obtaining the correct address for a message’s destination? a. Application b. Link c. Network d. Transport 2.5 points    QUESTION 3 The UPDATE statement is used to update table names. True False 2.5 points    QUESTION 4 Which of the following is...

  • QUESTION 1 1.      A certificate authority is a trusted third party that is responsible for issuing and...

    QUESTION 1 1.      A certificate authority is a trusted third party that is responsible for issuing and revoking certificates within the public key infrastructure. True False 10 points    QUESTION 2 1.      Access control systems can be deployed as stand-alone systems. True False 10 points    QUESTION 3 1.      Which is the most critical factor in the success of a Access Control system? a. Network integration b. Availability c. Accuracy d. User acceptance 10 points    QUESTION 4 1.      Haptic is a concept pertaining...

  • Chapter 06 Applied Cryptography 1. How is integrity provided? A. Using two-way hash functions and digital...

    Chapter 06 Applied Cryptography 1. How is integrity provided? A. Using two-way hash functions and digital signatures B. Using one-way hash functions and digital signatures C. By applying a digital certificate D. By using asymmetric encryption 2. Which term refers to the matching of a user to an account through previously shared credentials? A. Nonrepudiation B. Digital signing C. Authentication D. Obfuscation 3. Which term refers to an arranged group of algorithms? A. Crypto modules B. Cryptographic service providers (CSPs)...

  • Computer Security Help 21) The process of keeping a backup copy of each file being worked...

    Computer Security Help 21) The process of keeping a backup copy of each file being worked on by backing it up every few minutes is called ________. A) file backup B) file/folder backup C) image backup D) shadowing 22) Attacks other than application level attacks usually fail to get through SPI firewalls. True False Save 23) Normally, there is no limit on how long shadowing may maintain backed up files. True False 24) Java applets are large Java programs. Question...

  • Quiz 5 Chapter 21 Multiple Choice Identify the choice that best completes the statement or newer...

    Quiz 5 Chapter 21 Multiple Choice Identify the choice that best completes the statement or newer the question 1. In this chapter, media is defined as a type of communication. b. a type of ink. c. data storage devices. d. A and C 2. What statement is not correct? a. A personal computer is a single user electronic data processing device. b. A personal computer and peripheral devices are hardware. c. Output devices allow data to be entered into the...

  • ANY ANSWER IS GREATLY APPRECIATED!! THANKS QUESTION 1 Which type of network documentation is essential in...

    ANY ANSWER IS GREATLY APPRECIATED!! THANKS QUESTION 1 Which type of network documentation is essential in order to escalate high priority issues to the correct team or person? Support resource map Contact information Security Policy Simple Network Management Procedure 1 points    QUESTION 2 While maintaining cabling in an IDF with hundreds of patch cables, you are having trouble locating the other end of a cable that is connected to a patch panel. What tool will be he most helpful...

  • Question 6 After a problem and its symptoms have been identified, a theory regarding a probable...

    Question 6 After a problem and its symptoms have been identified, a theory regarding a probable cause should be established. True False 1.25 points Question 7 An open electrical circuit as a result of a failed circuit breaker is considered to be what type of failure system? a. fail-tolerant b. fail-close c. fail-open d. fail-dynamic 1.25 points Question 8 At what layer of the OSI model do the IP, ICMP, and ARP protocols operate? a. Application b. Session c. Transport...

ADVERTISEMENT
Free Homework Help App
Download From Google Play
Scan Your Homework
to Get Instant Free Answers
Need Online Homework Help?
Ask a Question
Get Answers For Free
Most questions answered within 3 hours.
ADVERTISEMENT
ADVERTISEMENT