Exam 12: Securing Tcp/Ip Environments

Which of the following terms means restricting who may view or use certain resources, including access to bandwidth or a computer, as well as access to information?

Which of the following is a specially "hardened" software service or software/hardware product that erects a barrier to inspect and control traffic flow between networks?

Which type of attack includes SYN Flood, broadcast amplification attacks, and buffer overflow?

Match each item with a statement below. a.threat b.remote logon service c.PING sweep d.computer forensics e.port scanner f.handler g.session hijacking h.security policy i.honeypot -the process of examining the "footprints" that an attacker leaves behind

Match each item with a statement below. a.threat b.remote logon service c.PING sweep d.computer forensics e.port scanner f.handler g.session hijacking h.security policy i.honeypot -a special-purpose software tool that cycles through all possible TCP and UDP port addresses looking for open ports that then can be probed for access or exploited for vulnerabilities

A(n) ____________________ consists of creating hashed values for all words in a specialized dictionary of terms, then comparing those values to the hashed values in password files.

Which of the following types of attacks serves the purpose of masquerading as an authorized user in order to gain access to a system?

Proxy server software permits internal network addresses to be "translated" into public network addresses when packets leave inside networks so only public IP addresses are exposed on the public Internet.

Which of the following reveals a system vulnerability and is often documented, either by the manufacturer or by an attacker?

Strictly speaking, VPNs use tunneling protocols; therefore, they need to encrypt tunneled traffic.

Which of the following is an area that's accessible to both outsiders and insiders, but which establishes a buffer area between what's completely inside and outside a network boundary?

Which of the following is unsolicited and unwanted software that takes up stealthy unauthorized and uninvited residence on a computer?

Which type of attacks are designed to interrupt or completely disrupt operations of a network device or network communications?

Which of the following is an undocumented and illicit point of entry into an operating system or application added by a system's programmers to bypass normal security?

Briefly describe IP service implementation vulnerabilities, and insecure IP protocols and services.

A(n) ____________________ model excludes users from access to resources, by default, and then adds whatever users need access to such resources as exceptions to the general exclusionary rule.

Briefly describe the following types of attacks: DoS, man-in-the-middle, and IP service.

What is meant by the term buffer overflow?

____________________ attacks are DoS attacks that are launched from numerous devices.

In a(n) ____________________ attack, a service is inundated with requests, or malformed service requests, which cause a server to hang or freeze, preventing it from responding to input.