Unit 7 Quiz

9 September 2022
4.7 (114 reviews)
20 test answers

Unlock all answers in this set

Unlock answers (16)
question
Which Domain Name System (DNS) attack replaces a fraudulent IP address for a symbolic name? A. DNS forwarding B. DNS Masking C. DNS replay D. DNS Poisoning
answer
D. DNS Poisoning
question
Aideen sent an email to her supervisor explaining the Domain Name System Security Extensions (DNSSEC). Which of the following statements would Aideen have NOT included in her email? A. It can prevent a DNS transfer attack. B. It is fully supported in BIND9. C. It adds message header information. D. It adds additional resource records.
answer
A. It can prevent a DNS transfer attack.
question
What functions of a switch does a software defined network separate? A. Host and virtual B. Control plane and physical plane C. Network level and resource level D. RAM and hard drive
answer
B. Control plane and physical plane
question
DNSSEC adds additional _____ and message header information, which can be used to verify that the requested data has not been altered in transmission. A. resource records B. hash sequences C. zone transfers D. field flags
answer
A. resource records
question
Which of the following TCP/IP protocols do not relate to security? A. IP B. HTTPS C. FTP D. SNMP
answer
A. IP
question
Which of these is NOT correct about an SSL/TLS accelerator? A. It is a separate hardware card that inserts into a web server. B. It contains one or more co-processors to handle SSL/TLS processing. C. It can be installed as a "virtual SSL/TLS server" alongside a forward proxy server. D. It replaces FTP using Secure Sockets Layer (FTPS) as a file transport layer resting "on top" of SSL/TLS.
answer
D. It replaces FTP using Secure Sockets Layer (FTPS) as a file transport layer resting "on top" of SSL/TLS.
question
Which of these is the most secure protocol for transferring files? A. TCP B. FTPS C. FTP D. SFTP
answer
D. SFTP
question
Which of the following can be used to prevent a buffer overflow attack? A. DEP B. DNS C. FIM D. VPN
answer
A. DEP
question
Which type of device log contains the most beneficial security data? A. switch log B. firewall log C. router log D. email log
answer
B. firewall log
question
Which of the following is NOT a security concern of virtualized environments? A. Physical security appliances are not always designed to protect virtual systems. B. Virtual machines must be protected from both the outside world and from other virtual machines on the same physical computer. C. Virtual servers are less expensive than their physical counterparts. D. Live migration can immediately move one virtualized server to another hypervisor.
answer
C. Virtual servers are less expensive than their physical counterparts.
question
Which type of cloud is offered to specific organizations that have common concerns? A. public cloud B. private cloud C. community cloud D. hybrid cloud
answer
C. community cloud
question
Which type of log can provide details regarding requests for specific files on a system? A. SysFile log B. event log C. access log D. audit log
answer
C. access log
question
Which application stores the user's desktop inside a virtual machine that resides on a server and is accessible from multiple locations? A. Application cell B. VDI C. Container D. VDE
answer
B. VDI
question
What is the recommended secure protocol for voice and video applications? A. Network Time Protocol (NTP) B. Hypertext Transport Protocol Secure (HTTPS) C. Secure Real-time Transport Protocol (SRTP) D. Secure/Multipurpose Internet Mail Extensions (S/MIME)
answer
C. Secure Real-time Transport Protocol (SRTP)
question
Catriona needed to monitor network traffic. She did not have the resources to install an additional device on the network. Which of the following solutions would meet her needs? A. Correlation engine B. Aggregation switch C. Port mirroring D. Network tap
answer
C. Port mirroring
question
Which of the following is NOT a service model in cloud computing? A. Software as a Service (SaaS) B. Platform as a Service (PaaS) C. Hardware as a Service (HaaS) D. Infrastructure as a Service (IaaS)
answer
C. Hardware as a Service (HaaS)
question
Eachna is showing a new security intern the log file from a firewall. Which of the following entries would she tell him do not need to be investigated? A. successful logins B. suspicious outbound connections C. IP addresses that are being rejected and dropped D. Probes to obscure port numbers
answer
A. successful logins
question
Which version of Simple Network Management Protocol (SNMP) is considered the most secure? A. SNMPv4 B. SNMPv3 C. SNMPv5 D. SNMPv2
answer
B. SNMPv3
question
Which type of hypervisor does not run on an underlying operating system? A. Type III B. Type IV C. Type I D. Type II
answer
C. Type I
question
Kyle asked his supervisor which type of computing model was used when the enterprise first started. She explained that the organization purchased all the hardware and software necessary to run the company. What type of model was she describing to Kyle? A. Off-premises B. Hosted services C. On-premises D. Virtual services
answer
C. On-premises