Question 1

Which of the following is a network attack that manipulates host ARP tables to reroute LAN traffic?

Accepted Answer

A)  SYN flood 
B)  Ping flood 
C)  ARP poisoning 
D)  HTTP flood 
A)  SYN flood 
B)  Ping flood 
C)  ARP poisoning 
D)  HTTP flood

Question 2

IDS refers to ________.

Accepted Answer

A)  internal intrusion detection 
B)  internal interruption detection 
C)  instantaneous intrusion determination 
D)  industry intrusion detection 
A)  internal intrusion detection 
B)  internal interruption detection 
C)  instantaneous intrusion determination 
D)  industry intrusion detection

Question 3

Which of the following is the second primary DoS method used by attackers?

Accepted Answer

A)  Direct/indirect 
B)  Intermediary 
C)  Reflected 
D)  Sending malformed packets 
A)  Direct/indirect 
B)  Intermediary 
C)  Reflected 
D)  Sending malformed packets

Question 4

An open network can be legally accessed by anyone.

Accepted Answer

A) True 
 B)False

Question 5

To work with an access point, a station must know the access point's ________.

Accepted Answer

A)  MAC address 
B)  SSID 
C)  WPA 
D)  WEP 
A)  MAC address 
B)  SSID 
C)  WPA 
D)  WEP

Question 6

Promiscuous mode allows an attacker to receive messages addressed to other users.

Accepted Answer

A) True 
 B)False

Question 7

DoS attacks can cause harm by slowly degrading services over time.

Accepted Answer

A) True 
 B)False

Question 8

Evil twin access point attacks are less commonly found in public hot spots.

Accepted Answer

A) True 
 B)False

Question 9

Wireless LANs are not possible.

Accepted Answer

A) True 
 B)False

Question 10

A(n) ________ can be used to gather user data.

Accepted Answer

A)  static IP table 
B)  ARP tables 
C)  RTS frame 
D)  packet sniffer 
A)  static IP table 
B)  ARP tables 
C)  RTS frame 
D)  packet sniffer

Question 11

DoS attacks are one of the least common types of network attacks against corporations.

Accepted Answer

A) True 
 B)False

Question 12

Rate limiting can be used to reduce a certain type of traffic to a reasonable amount.

Accepted Answer

A) True 
 B)False

Question 13

A(n) ________ is a personal computer that has software to allow the computer to masquerade as an access point.

Accepted Answer

A)  switch port 
B)  access point 
C)  MAC access control point 
D)  evil twin access point 
A)  switch port 
B)  access point 
C)  MAC access control point 
D)  evil twin access point

Question 14

The name of the 802.1X standard is ________.

Accepted Answer

A)  IEEE 802.11 
B)  Port-based Access Control 
C)  Extensible Authentication Protocol 
D)  RADIUS 
A)  IEEE 802.11 
B)  Port-based Access Control 
C)  Extensible Authentication Protocol 
D)  RADIUS

Question 15

Wireless attacks focus on the ________.

Accepted Answer

A)  evil twin access point 
B)  switch port 
C)  access point 
D)  MAC access control point 
A)  evil twin access point 
B)  switch port 
C)  access point 
D)  MAC access control point

Question 16

The ________ standard provides access control to prevent illegitimate clients from associating with a network.

Accepted Answer

A)  802.1X 
B)  RADIUS 
C)  802.11 
D)  IEEE 802.11 
A)  802.1X 
B)  RADIUS 
C)  802.11 
D)  IEEE 802.11

Question 17

Black-holing an attacker is a poor long-term strategy because attackers can quickly change source IP addresses.

Accepted Answer

A) True 
 B)False

Question 18

________ tell wireless clients that you have received an RTS frame and that they should not transmit until the designated time expires.

Accepted Answer

A)  CTS frames 
B)  ARP replies 
C)  Packet injections 
D)  Deauthenticate messages 
A)  CTS frames 
B)  ARP replies 
C)  Packet injections 
D)  Deauthenticate messages

Question 19

RADIUS provides auditing of connections.

Accepted Answer

A) True 
 B)False

Question 20

802.1X is quite challenging to implement in wired LANs.

Accepted Answer

A) True 
 B)False

Which of the following is a network attack that manipulates host ARP tables to reroute LAN traffic?

IDS refers to ________.

Which of the following is the second primary DoS method used by attackers?

An open network can be legally accessed by anyone.

To work with an access point, a station must know the access point's ________.

Promiscuous mode allows an attacker to receive messages addressed to other users.

DoS attacks can cause harm by slowly degrading services over time.

Evil twin access point attacks are less commonly found in public hot spots.

Wireless LANs are not possible.

A(n) ________ can be used to gather user data.

DoS attacks are one of the least common types of network attacks against corporations.

Rate limiting can be used to reduce a certain type of traffic to a reasonable amount.

A(n) ________ is a personal computer that has software to allow the computer to masquerade as an access point.

The name of the 802.1X standard is ________.

Wireless attacks focus on the ________.

The ________ standard provides access control to prevent illegitimate clients from associating with a network.

Black-holing an attacker is a poor long-term strategy because attackers can quickly change source IP addresses.

________ tell wireless clients that you have received an RTS frame and that they should not transmit until the designated time expires.

RADIUS provides auditing of connections.

802.1X is quite challenging to implement in wired LANs.

The Threat Environment

Planning and Policy

Cryptography

Access Control

Firewalls

Host Hardening

Application Security

Data Protection

Incident and Disaster Response

Module a Networking Concepts

Filters

Exam 4: Secure Networks

Which of the following is a network attack that manipulates host ARP tables to reroute LAN traffic?

IDS refers to ________.

Which of the following is the second primary DoS method used by attackers?

An open network can be legally accessed by anyone.

To work with an access point, a station must know the access point's ________.

Promiscuous mode allows an attacker to receive messages addressed to other users.

DoS attacks can cause harm by slowly degrading services over time.

Evil twin access point attacks are less commonly found in public hot spots.

Wireless LANs are not possible.

A(n) ________ can be used to gather user data.

DoS attacks are one of the least common types of network attacks against corporations.

Rate limiting can be used to reduce a certain type of traffic to a reasonable amount.

A(n) ________ is a personal computer that has software to allow the computer to masquerade as an access point.

The name of the 802.1X standard is ________.

Wireless attacks focus on the ________.

The ________ standard provides access control to prevent illegitimate clients from associating with a network.

Black-holing an attacker is a poor long-term strategy because attackers can quickly change source IP addresses.

________ tell wireless clients that you have received an RTS frame and that they should not transmit until the designated time expires.

RADIUS provides auditing of connections.

802.1X is quite challenging to implement in wired LANs.

The Threat Environment

Planning and Policy

Cryptography

Access Control

Firewalls

Host Hardening

Application Security

Data Protection

Incident and Disaster Response

Module a Networking Concepts

Filters