Question 1

________ can be added or dropped from a tree list.

Accepted Answer

A)  Snap-ins 
B)  Administrative tools 
C)  Distributions 
D)  Shells 
A)  Snap-ins 
B)  Administrative tools 
C)  Distributions 
D)  Shells

Question 2

Compared with access permissions in UNIX, permissions in Windows are limited.

Accepted Answer

A) True 
 B)False

Question 3

The MMC is the place for administrative tools in a UNIX system.

Accepted Answer

A) True 
 B)False

Question 4

Which of the following is NOT necessarily an advantage provided by GPOs?

Accepted Answer

A)  Consistency 
B)  Reduced administrative costs 
C)  Compliance 
D)  Individuality 
A)  Consistency 
B)  Reduced administrative costs 
C)  Compliance 
D)  Individuality

Question 5

In MMCs, the tree pane lists ________.

Accepted Answer

A)  administrative applications 
B)  actions that can be taken on selected objects 
C)  all applications on the server 
D)  the directory of all users on the server 
A)  administrative applications 
B)  actions that can be taken on selected objects 
C)  all applications on the server 
D)  the directory of all users on the server

Question 6

A ________ approach to password cracking is to try all possible passwords on all accounts.

Accepted Answer

A)  brute-force 
B)  rainbow table 
C)  hybrid dictionary attack 
D)  dictionary attack 
A)  brute-force 
B)  rainbow table 
C)  hybrid dictionary attack 
D)  dictionary attack

Question 7

Windows has ________ different specialized permissions to assign.

Accepted Answer

A)  10 
B)  12 
C)  13 
D)  21 
A)  10 
B)  12 
C)  13 
D)  21

Question 8

Restricting physical access to a host and encrypting data, if appropriate, are two protections for hardening a host computer.

Accepted Answer

A) True 
 B)False

Question 9

The ________ registry of Windows stores passwords.

Accepted Answer

A)  SAM 
B)  NTLM 
C)  SHA 
D)  DES 
A)  SAM 
B)  NTLM 
C)  SHA 
D)  DES

Question 10

Operating systems have used progressively fewer and fewer secure hash functions.

Accepted Answer

A) True 
 B)False

Question 11

Which of the following is NOT a cracking method?

Accepted Answer

A)  Rainbow tables 
B)  A hybrid dictionary attack 
C)  A dictionary attack 
D)  WSUS 
A)  Rainbow tables 
B)  A hybrid dictionary attack 
C)  A dictionary attack 
D)  WSUS

Question 12

It is often considered that the value of data of a lost or stolen notebook is often greater than the hardware.

Accepted Answer

A) True 
 B)False

Question 13

In UNIX, the ________ command allows you to switch between administrator and a normal account.

Accepted Answer

A)  su 
B)  RunAs 
C)  rpm 
D)  Action 
A)  su 
B)  RunAs 
C)  rpm 
D)  Action

Question 14

________ is what makes the most sense for security for PCs in corporations.

Accepted Answer

A)  Completely automatic operation 
B)  Manual operation 
C)  Primarily manual operation with some automated operations 
D)  Automatic operations except for settings that individuals want to change 
A)  Completely automatic operation 
B)  Manual operation 
C)  Primarily manual operation with some automated operations 
D)  Automatic operations except for settings that individuals want to change

Question 15

UNIX calls command-line interfaces as ________.

Accepted Answer

A)  snap-ins 
B)  shells 
C)  distributions 
D)  trees 
A)  snap-ins 
B)  shells 
C)  distributions 
D)  trees

Question 16

When you have two operating systems, they each have their own areas of RAM, CPU processing, and hard disk space.

Accepted Answer

A) True 
 B)False

Question 17

A ________ is a list of pre-computed password hashes that are indexed.

Accepted Answer

A)  password database 
B)  rainbow table 
C)  hybrid dictionary 
D)  computer dictionary 
A)  password database 
B)  rainbow table 
C)  hybrid dictionary 
D)  computer dictionary

Question 18

An attacker has to have root permissions to access a shadow file.

Accepted Answer

A) True 
 B)False

Question 19

Audit policies would provide a(n) ________ for system events.

Accepted Answer

A)  rainbow table 
B)  log 
C)  audit trail 
D)  audit database 
A)  rainbow table 
B)  log 
C)  audit trail 
D)  audit database

Question 20

Antivirus protection is considered ________.

Accepted Answer

A)  unimportant these days 
B)  less important than in the past 
C)  critical 
D)  too expensive for most individual users 
A)  unimportant these days 
B)  less important than in the past 
C)  critical 
D)  too expensive for most individual users

________ can be added or dropped from a tree list.

Compared with access permissions in UNIX, permissions in Windows are limited.

The MMC is the place for administrative tools in a UNIX system.

Which of the following is NOT necessarily an advantage provided by GPOs?

In MMCs, the tree pane lists ________.

A ________ approach to password cracking is to try all possible passwords on all accounts.

Windows has ________ different specialized permissions to assign.

Restricting physical access to a host and encrypting data, if appropriate, are two protections for hardening a host computer.

The ________ registry of Windows stores passwords.

Operating systems have used progressively fewer and fewer secure hash functions.

Which of the following is NOT a cracking method?

It is often considered that the value of data of a lost or stolen notebook is often greater than the hardware.

In UNIX, the ________ command allows you to switch between administrator and a normal account.

________ is what makes the most sense for security for PCs in corporations.

UNIX calls command-line interfaces as ________.

When you have two operating systems, they each have their own areas of RAM, CPU processing, and hard disk space.

A ________ is a list of pre-computed password hashes that are indexed.

An attacker has to have root permissions to access a shadow file.

Audit policies would provide a(n) ________ for system events.

Antivirus protection is considered ________.

The Threat Environment

Planning and Policy

Cryptography

Secure Networks

Access Control

Firewalls

Application Security

Data Protection

Incident and Disaster Response

Module a Networking Concepts

Filters

Exam 7: Host Hardening

________ can be added or dropped from a tree list.

Compared with access permissions in UNIX, permissions in Windows are limited.

The MMC is the place for administrative tools in a UNIX system.

Which of the following is NOT necessarily an advantage provided by GPOs?

In MMCs, the tree pane lists ________.

A ________ approach to password cracking is to try all possible passwords on all accounts.

Windows has ________ different specialized permissions to assign.

Restricting physical access to a host and encrypting data, if appropriate, are two protections for hardening a host computer.

The ________ registry of Windows stores passwords.

Operating systems have used progressively fewer and fewer secure hash functions.

Which of the following is NOT a cracking method?

It is often considered that the value of data of a lost or stolen notebook is often greater than the hardware.

In UNIX, the ________ command allows you to switch between administrator and a normal account.

________ is what makes the most sense for security for PCs in corporations.

UNIX calls command-line interfaces as ________.

When you have two operating systems, they each have their own areas of RAM, CPU processing, and hard disk space.

A ________ is a list of pre-computed password hashes that are indexed.

An attacker has to have root permissions to access a shadow file.

Audit policies would provide a(n) ________ for system events.

Antivirus protection is considered ________.

The Threat Environment

Planning and Policy

Cryptography

Secure Networks

Access Control

Firewalls

Application Security

Data Protection

Incident and Disaster Response

Module a Networking Concepts

Filters