Question 1

A sophisticated denial of service attack that is spread out to many attacking computer systems is called a ____.

Accepted Answer

A)  DDOS 
B)  DOS 
C)  DDOD 
D)  DOD 
A)  DDOS 
B)  DOS 
C)  DDOD 
D)  DOD A

Question 2

Discuss the process of guessing a password.

Accepted Answer

Guessing a password can be a completely random approach. Just typing in words or combinations of letters, numbers, and symbols until one of them works, however, does not stand much of a chance at success. Often it is not even necessary to crack a password, as the user has made it easy for you to determine the password with little effort. This could be as simple as the user placing a sticky note on the bottom of their keyboard with their username and password written out clearly. Perhaps the user has created a password that is composed of information commonly known about the individual, such as their birthday, children or pet names, favorite color, nickname, or other personally relevant information. Does the user have a custom license plate? That should go on the list of possible passwords too. These are all examples of a weak password.

Question 3

A(n) ____________________ will take action on its own to handle the problem without user intervention, such as interrupting the offending traffic.

Accepted Answer

active IDS

Question 4

Describe host-based intrusion detection.

Accepted Answer

In host-based intrusion detection, every

Question 5

The command ____ translates certain names into their associated IP addresses or port numbers.

Accepted Answer

A)  netstat -n 
B)  netstat -r -n 
C)  netstat -a 
D)  netstat -a -n 
A)  netstat -n 
B)  netstat -r -n 
C)  netstat -a 
D)  netstat -a -n

Question 6

A(n) ____________________ describes the steps needed to execute the policy.

Accepted Answer

The answer of A(n) ____________________ describes the steps needed to...

Question 7

In order to inform the users of their rights and responsibilities while using computers on an institutions network a(n) ____ is made available.

Accepted Answer

A)  Internet Rights Policy 
B)  Acceptable Use Policy 
C)  Internet Abuse Policy 
D)  Standard Rights Policy 
A)  Internet Rights Policy 
B)  Acceptable Use Policy 
C)  Internet Abuse Policy 
D)  Standard Rights Policy

Question 8

Describe the educational, diagnostics, network baseline measurements, and security reasons to capture network traffic.

Accepted Answer

For educational purposes. Taking the tim

Question 9

One way around the switch-based limitation is to use a managed switch that allows a ____ to be designated.

Accepted Answer

A)  block port 
B)  pan port 
C)  management port 
D)  mirror port 
A)  block port 
B)  pan port 
C)  management port 
D)  mirror port

Question 10

How do you prevent booting from a USB thumb drive?

Accepted Answer

The problem with this is that the USB th

Question 11

Match between columns
                        Premises: Composed of information commonly known about the individual
Typically the most time consuming way to crack a password
Uses a list of common passwords to try to crack an unknown password
Examines network traffic for known attack signatures
The technique of examining the network traffic entering a network or a computer and determining if the traffic is malicious in nature

Accepted Answer

The Answer of Snort and Intrusion detection and Dictionary attack is...

Question 12

Security policies and procedures should be static.

Accepted Answer

A) True 
 B)False

Question 13

A ____ is an alert given when normal, non-malicious traffic happens to match one or more rules for malicious traffic.

Accepted Answer

A)  false negative 
B)  true negative 
C)  true positive 
D)  false positive 
A)  false negative 
B)  true negative 
C)  true positive 
D)  false positive

Question 14

Capturing packets is also referred to as ____.

Accepted Answer

A)  packet stiffing 
B)  packet sniffing 
C)  packet hiding 
D)  packet blocking 
A)  packet stiffing 
B)  packet sniffing 
C)  packet hiding 
D)  packet blocking

Question 15

A(n) ____________________ examines traffic and notes suspicious behavior in a log and may also notify a network manager through email, instant message, or some other communication.

Accepted Answer

The answer of A(n) ____________________ examines traffic and notes suspicious...

Question 16

Cracking a password can take many different routes.

Accepted Answer

A) True 
 B)False

Question 17

Packet sniffing is possible through the use of a special mode of operation in the network adapter called ____________________ mode.

Accepted Answer

The answer of Packet sniffing is possible through the use...

Question 18

When the network adapter is placed into promiscuous mode, it allows all received packets to pass up into the TCP/IP stack.

Accepted Answer

A) True 
 B)False

Question 19

The ____ technique tries all combinations of letters, numbers, and symbols until eventually landing on the correct password.

Accepted Answer

A)  dictionary 
B)  brute force 
C)  computed hash 
D)  linear hash 
A)  dictionary 
B)  brute force 
C)  computed hash 
D)  linear hash

Question 20

The most common approaches to password ____________________ are guessing, brute force, and dictionary attacks.

Accepted Answer

The answer of The most common approaches to password ____________________...

Exam 23: Security Software

A sophisticated denial of service attack that is spread out to many attacking computer systems is called a ____.

Discuss the process of guessing a password.

A(n) ____________________ will take action on its own to handle the problem without user intervention, such as interrupting the offending traffic.

Describe host-based intrusion detection.

The command ____ translates certain names into their associated IP addresses or port numbers.

A(n) ____________________ describes the steps needed to execute the policy.

In order to inform the users of their rights and responsibilities while using computers on an institutions network a(n) ____ is made available.

Describe the educational, diagnostics, network baseline measurements, and security reasons to capture network traffic.

One way around the switch-based limitation is to use a managed switch that allows a ____ to be designated.

How do you prevent booting from a USB thumb drive?

Security policies and procedures should be static.

A ____ is an alert given when normal, non-malicious traffic happens to match one or more rules for malicious traffic.

Capturing packets is also referred to as ____.

A(n) ____________________ examines traffic and notes suspicious behavior in a log and may also notify a network manager through email, instant message, or some other communication.

Cracking a password can take many different routes.

Packet sniffing is possible through the use of a special mode of operation in the network adapter called ____________________ mode.

When the network adapter is placed into promiscuous mode, it allows all received packets to pass up into the TCP/IP stack.

The ____ technique tries all combinations of letters, numbers, and symbols until eventually landing on the correct password.

The most common approaches to password ____________________ are guessing, brute force, and dictionary attacks.

What Is a Computer Network

Network Topology

Networking Hardware

Ethernet Technology

Token-Ring, Fddi, and Other Lan Technologies

Network Design and Troubleshooting Scenarios

Low-Level Protocols

The Tcpip Protocols

Ipxspx, Appletalk, and Other Network Protocols

Switching and Routing

Network Management and Security

Electronic Mail

Ftp and Telnet

Multimedia Networking

The Internet

Writing a Network Application

An Introduction to Networking With Windows

Windows Domains

Unix and Linux

Other Network Operating Systems

Cryptography and Security

Security Hardware

Forensic Techniques

Filters