Question 1

Which is NOT true about a buffer overflow attack?

Accepted Answer

A) Susceptibility to a buffer overflow is entirely contingent on software flaws. 
B) A hacker does not need a good working knowledge of some programming language to create a buffer overflow. 
C) A buffer overflow can load malicious data into memory and run it on a target machine. 
D) A careful programmer will write applications so the buffer will truncate or reject data that exceeds the buffer length. 
A) Susceptibility to a buffer overflow is entirely contingent on software flaws. 
B) A hacker does not need a good working knowledge of some programming language to create a buffer overflow. 
C) A buffer overflow can load malicious data into memory and run it on a target machine. 
D) A careful programmer will write applications so the buffer will truncate or reject data that exceeds the buffer length. B

Question 2

A program that self-replicates is,by definition,called a(n)____________.

Accepted Answer

virus

Question 3

Which of the following activities do security professionals recommend to limit the chances of becoming a target for a Trojan horse?

Accepted Answer

A) Only open e-mail attachments from friends or co-workers 
B) Prevent employees from downloading and installing any programs 
C) Only download jokes,animated Flash files,or utility programs from popular sites 
D) Download and install Windows updates and patches monthly 
A) Only open e-mail attachments from friends or co-workers 
B) Prevent employees from downloading and installing any programs 
C) Only download jokes,animated Flash files,or utility programs from popular sites 
D) Download and install Windows updates and patches monthly B

Question 4

Which is NOT a typical adverse result of a virus?

Accepted Answer

A) Deletion of files 
B) Changing system settings 
C) Increased network traffic 
D) Increased network functionality and responsiveness 
A) Deletion of files 
B) Changing system settings 
C) Increased network traffic 
D) Increased network functionality and responsiveness

Question 5

Which of the following is NOT a denial of service attack?

Accepted Answer

A) Ping of Death 
B) SYN flood 
C) Smurf attack 
D) Stack tweaking 
A) Ping of Death 
B) SYN flood 
C) Smurf attack 
D) Stack tweaking

Question 6

Which created a domestic "cyber terrorism" attack against a Unix distributor?

Accepted Answer

A) Blaster 
B) MyDoom 
C) Slammer 
D) W32.Storm.Worm 
A) Blaster 
B) MyDoom 
C) Slammer 
D) W32.Storm.Worm

Question 7

Configuring routers to not forward directed broadcast packets can help defend against a ____________ attack.

Accepted Answer

The answer of Configuring routers to not forward directed broadcast...

Question 8

Which method of defense against a SYN flood involves altering the response timeout?

Accepted Answer

A) Micro blocks 
B) RST cookies 
C) SYN cookies 
D) Stack tweaking 
A) Micro blocks 
B) RST cookies 
C) SYN cookies 
D) Stack tweaking

Question 9

A Distributed Reflection DoS attack takes advantage of the fact that most Internet routers communicate on port ____________.

Accepted Answer

The answer of A Distributed Reflection DoS attack takes advantage...

Question 10

What do many analysts believe was the reason for the MyDoom virus\worm?

Accepted Answer

A) A DoS attack against Microsoft.com 
B) A DoS attack targeting Microsoft Windows IIS servers 
C) An e-mail attack targeting Bill Gates 
D) A DDoS attack targeting Santa Cruz Operations 
A) A DoS attack against Microsoft.com 
B) A DoS attack targeting Microsoft Windows IIS servers 
C) An e-mail attack targeting Bill Gates 
D) A DDoS attack targeting Santa Cruz Operations

Question 11

Shutting down router and firewall ports 5554 and 9996 will block most damage from which of these?

Accepted Answer

A) Bagle 
B) Sasser 
C) Sobig 
D) Trojan horses 
A) Bagle 
B) Sasser 
C) Sobig 
D) Trojan horses

Question 12

Which attack causes Internet routers to attack the target systems without actually compromising the routers themselves?

Accepted Answer

A) Distributed Reflection Denial of Service 
B) ICMP flood 
C) SYN flood 
D) Tribal Flood Network 
A) Distributed Reflection Denial of Service 
B) ICMP flood 
C) SYN flood 
D) Tribal Flood Network

Question 13

One of the most common types of attacks via the Internet is:

Accepted Answer

A) Buffer overflow 
B) Denial of service 
C) IP spoofing 
D) Session hacking 
A) Buffer overflow 
B) Denial of service 
C) IP spoofing 
D) Session hacking

Question 14

Which presented itself as an e-mail from the system administrator informing the user of a virus infection and gave directions to open an e-mail attachment which would then scan for e-mail addresses and shared folders?

Accepted Answer

A) Bagle 
B) Minmail 
C) Sasser 
D) Sobig 
A) Bagle 
B) Minmail 
C) Sasser 
D) Sobig

Question 15

The spread of viruses can be minimized by all of the following EXCEPT:

Accepted Answer

A) using a virus scanner 
B) never opening attachments you are unsure of 
C) using a code word with friends to determine if attachments are legitimate 
D) immediately following instructions in security alerts e-mailed to you from Microsoft 
A) using a virus scanner 
B) never opening attachments you are unsure of 
C) using a code word with friends to determine if attachments are legitimate 
D) immediately following instructions in security alerts e-mailed to you from Microsoft

Question 16

A ____________ can help reduce system vulnerability by preventing disclosure of IP addresses much like a firewall.

Accepted Answer

The answer of A ____________ can help reduce system vulnerability...

Question 17

Which of the following denial of service attacks results from a client's failure to respond to the server's reply to a request for connection?

Accepted Answer

A) ICMP flood 
B) SYN flood 
C) Tribal flood 
D) UDP flood 
A) ICMP flood 
B) SYN flood 
C) Tribal flood 
D) UDP flood

Question 18

Which copies itself into the Windows directory and creates a registry key to load itself at startup?

Accepted Answer

A) Bagle 
B) MyDoom 
C) Sasser 
D) Slammer 
A) Bagle 
B) MyDoom 
C) Sasser 
D) Slammer

Question 19

Which created a buffer overflow attack against a Windows flaw called the DCOM RPC vulnerability?

Accepted Answer

A) Blaster 
B) MyDoom 
C) Slammer 
D) SoBig 
A) Blaster 
B) MyDoom 
C) Slammer 
D) SoBig

Question 20

The Distributed Denial of Service attack initiated by the ____________ worm is considered by many to be a clear example of cyber-terrorism.

Accepted Answer

The answer of The Distributed Denial of Service attack initiated...

Which is NOT true about a buffer overflow attack?

A program that self-replicates is,by definition,called a(n)____________.

Which of the following activities do security professionals recommend to limit the chances of becoming a target for a Trojan horse?

Which is NOT a typical adverse result of a virus?

Which of the following is NOT a denial of service attack?

Which created a domestic "cyber terrorism" attack against a Unix distributor?

Configuring routers to not forward directed broadcast packets can help defend against a ____________ attack.

Which method of defense against a SYN flood involves altering the response timeout?

A Distributed Reflection DoS attack takes advantage of the fact that most Internet routers communicate on port ____________.

What do many analysts believe was the reason for the MyDoom virus\worm?

Shutting down router and firewall ports 5554 and 9996 will block most damage from which of these?

Which attack causes Internet routers to attack the target systems without actually compromising the routers themselves?

One of the most common types of attacks via the Internet is:

Which presented itself as an e-mail from the system administrator informing the user of a virus infection and gave directions to open an e-mail attachment which would then scan for e-mail addresses and shared folders?

The spread of viruses can be minimized by all of the following EXCEPT:

A ____________ can help reduce system vulnerability by preventing disclosure of IP addresses much like a firewall.

Which of the following denial of service attacks results from a client's failure to respond to the server's reply to a request for connection?

Which copies itself into the Windows directory and creates a registry key to load itself at startup?

Which created a buffer overflow attack against a Windows flaw called the DCOM RPC vulnerability?

The Distributed Denial of Service attack initiated by the ____________ worm is considered by many to be a clear example of cyber-terrorism.

Introduction to Network Security

Fundamentals of Firewalls

Firewall Practical Applications

Intrusion-Detection Systems

Encryption

Virtual Private Networks

Operating System Hardening

Defending Against Virus Attacks

Defending Against Trojan Horses,spyware,and Adware

Security Policies

Assessing a System

Security Standards

Choosing Defense Strategies

Filters

Exam 2: Types of Attacks

Which is NOT true about a buffer overflow attack?

A program that self-replicates is,by definition,called a(n)____________.

Which of the following activities do security professionals recommend to limit the chances of becoming a target for a Trojan horse?

Which is NOT a typical adverse result of a virus?

Which of the following is NOT a denial of service attack?

Which created a domestic "cyber terrorism" attack against a Unix distributor?

Configuring routers to not forward directed broadcast packets can help defend against a ____________ attack.

Which method of defense against a SYN flood involves altering the response timeout?

A Distributed Reflection DoS attack takes advantage of the fact that most Internet routers communicate on port ____________.

What do many analysts believe was the reason for the MyDoom virus\worm?

Shutting down router and firewall ports 5554 and 9996 will block most damage from which of these?

Which attack causes Internet routers to attack the target systems without actually compromising the routers themselves?

One of the most common types of attacks via the Internet is:

Which presented itself as an e-mail from the system administrator informing the user of a virus infection and gave directions to open an e-mail attachment which would then scan for e-mail addresses and shared folders?

The spread of viruses can be minimized by all of the following EXCEPT:

A ____________ can help reduce system vulnerability by preventing disclosure of IP addresses much like a firewall.

Which of the following denial of service attacks results from a client's failure to respond to the server's reply to a request for connection?

Which copies itself into the Windows directory and creates a registry key to load itself at startup?

Which created a buffer overflow attack against a Windows flaw called the DCOM RPC vulnerability?

The Distributed Denial of Service attack initiated by the ____________ worm is considered by many to be a clear example of cyber-terrorism.

Introduction to Network Security

Fundamentals of Firewalls

Firewall Practical Applications

Intrusion-Detection Systems

Encryption

Virtual Private Networks

Operating System Hardening

Defending Against Virus Attacks

Defending Against Trojan Horses,spyware,and Adware

Security Policies

Assessing a System

Security Standards

Choosing Defense Strategies

Filters