Term
| Which of the following may significantly reduce data loss if multiple drives fail at the same time? |
|
Definition
|
|
Term
| Which of the following should be considered to mitigate data theft when using CAT5 wiring? |
|
Definition
|
|
Term
| To help prevent unauthorized access to PCs, a security administrator implements screen savers that lock the PC after five minutes of inactivity. Which of the following controls is being described in this situation? |
|
Definition
|
|
Term
| Pete, a network administrator, is capturing packets on the network and notices that a large amount of the traffic on the LAN is SIP and RTP protocols. Which of the following should he do to segment that traffic from the other traffic? |
|
Definition
|
|
Term
| Which of the following IP addresses would be hosts on the same subnet given the subnet mask 255.255.255.224? |
|
Definition
|
|
Term
| Which of the following algorithms has well documented collisions? |
|
Definition
|
|
Term
| Which of the following is BEST used as a secure replacement for TELNET? |
|
Definition
|
|
Term
| An email client says a digital signature is invalid and the sender cannot be verified. The recipient is concerned with which of the following concepts? |
|
Definition
|
|
Term
| Which of the following is an effective way to ensure the BEST temperature for all equipment within a datacenter? |
|
Definition
| Hot or cool aisle containment |
|
|
Term
| Which of the following transportation encryption protocols should be used to ensure maximum security between a web browser and a web server? |
|
Definition
|
|
Term
| Developers currently have access to update production servers without going through an approval process. Which of the following strategies would BEST mitigate this risk? |
|
Definition
|
|
Term
| Which of the following is a difference between TFTP and FTP? |
|
Definition
| TFTP utilizes UDP and FTP uses TCP. |
|
|
Term
| Matt, an administrator, notices a flood fragmented packet and retransmits from an email server. After disabling the TCP offload setting on the NIC, Matt sees normal traffic with packets flowing in sequence again. Which of the following utilities was he MOST likely using to view this issue? |
|
Definition
|
|
Term
| Which of the following is characterized by an attacker attempting to map out an organization’s staff hierarchy in order to send targeted emails? |
|
Definition
|
|
Term
| Which of the following would a security administrator implement in order to discover comprehensive security threats on a network? |
|
Definition
|
|
Term
| Which of the following is an example of a false positive? |
|
Definition
| Anti-virus identifies a benign application as malware. |
|
|
Term
| Data execution prevention is a feature in most operating systems intended to protect against which type of attack? |
|
Definition
|
|
Term
| Use of group accounts should be minimized to ensure which of the following? |
|
Definition
| Individual accountability |
|
|
Term
| Privilege creep among long-term employees can be mitigated by which of the following procedures? |
|
Definition
|
|
Term
| In which of the following scenarios is PKI LEAST hardened? |
|
Definition
| A malicious CA certificate is loaded on all the clients. |
|
|
Term
| Configuring the mode, encryption methods, and security associations are part of which of the following? |
|
Definition
|
|
Term
| Which of the following assessments would Pete, the security administrator, use to actively test that an application’s security controls are in place? |
|
Definition
|
|
Term
| A security administrator has just finished creating a hot site for the company. This implementation relates to which of the following concepts? |
|
Definition
|
|
Term
| In the initial stages of an incident response, Matt, the security administrator, was provided the hard drives in question from the incident manager. Which of the following incident response procedures would he need to perform in order to begin the analysis? |
|
Definition
Take hashes
Capture the system image |
|
|
Term
| Which of the following is used to certify intermediate authorities in a large PKI deployment? |
|
Definition
|
|
