Deck 7: Host Hardening

A) Processes
B) Security baselines
C) Procedures
D) None of the above

A) an individual host
B) a group of hosts
C) Both A and B
D) Neither A nor B

A) snap-in
B) management application
C) administrative application
D) Action

A) client versions of Microsoft Windows
B) UNIX
C) Both A and B
D) Neither A nor B

A) Apple
B) Microsoft
C) UNIX
D) All of the above

A) Host hardening
B) Host bulwarking
C) Host shielding
D) None of the above

A) map the entire internal network
B) reroute traffic to cause a local DoS
C) Both A and B
D) Neither A nor B

A) Encrypting data on the host
B) Read operating system log files
C) Both A and B
D) Neither A nor B

A) MMCs are produced by Microsoft.
B) MMCs are located under the Start / Management menu choice.
C) MMCs use GUIs.
D) MMCs are relatively easy to learn to use.

A) Server software firewalls
B) The ability to encrypt data
C) Both A and B
D) Neither A nor B

A) server
B) host
C) client
D) None of the above

A) Minimizing applications on the host
B) Having a good border firewall
C) Both A and B
D) Neither A nor B

A) objects on which actions can be taken
B) actions that can be taken on the selected object
C) Both A and B
D) Neither A nor B

A) UNIX
B) Windows Server
C) Both A and B
D) Neither A nor B

A) exploit
B) zero-day attack
C) worm
D) anomaly attack

A) shells
B) GUIs
C) Both A and B
D) Neither A nor B

A) the foundation
B) UNIX
C) GNU
D) the kernel

A) attack vector
B) exploit
C) vulnerability
D) All of the above

A) UNIX
B) LINUX
C) Both A and B
D) Neither A nor B

A) purchasing
B) using
C) Both A and B
D) Neither A nor B

A) Work-around
B) Patch
C) Service pack
D) Version upgrade

A) LINUX, UNIX
B) UNIX, LINUX
C) Both A and B
D) Neither A nor B

A) exploit, vulnerability
B) vulnerability, exploit
C) Both A and B
D) Neither A nor B

A) work-around
B) service pack
C) Both A and B
D) Neither A nor B

A) Work-arounds
B) Patches
C) Version upgrades
D) All of the above are types of fixes for vulnerabilities

A) as little as possible, and only when needed
B) as his or her main account, for auditability
C) his or her main account, for the permissions it provides
D) None of the above. The Windows systems administrator should never user the Administrator account.

A) cheaper
B) less accurate
C) Both A and B
D) Neither A nor B

A) many
B) a few
C) no

A) total or nearly total
B) substantial but not nearly total
C) little
D) no

A) RunAs
B) su
C) rlogin
D) None of the above

A) root
B) Administrator
C) MMC
D) Super

A) RunAs
B) su
C) rlogin
D) None of the above

A) Vulnerability management servers
B) Manual downloads
C) Patch management servers
D) All of the above

A) applying security measures to groups takes less time than applying them individually
B) applying security measures in groups reduces errors in assigning security settings
C) Both A and B
D) Neither A nor B

A) Computer Management
B) Security
C) Permissions
D) Local Permissions

A) root
B) administrator
C) MMC
D) kernel

A) allow permissions
B) deny permissions
C) Both A and B
D) Neither A nor B

A) A dictionary attack
B) A hybrid dictionary attack
C) A combinatorial attack
D) Brute-force guessing

A) the account that owns the file or directory
B) a group associated with the directory
C) everyone else
D) All of the above

A) increases
B) reduces
C) inheritance does not significantly change the labor costs in assigning permissions
D) None of the above

A) 3
B) 6
C) 100
D) almost an unlimited number

A) 6
B) 8
C) 20
D) 100

A) A dictionary attack
B) A hybrid dictionary attack
C) A combinatorial attack
D) Brute-force guessing

A) complex
B) reusable
C) dictionary
D) one-time

A) execute
B) write
C) read
D) modify

A) Read
B) Write
C) List folder contents
D) Execute

A) Modify
B) All
C) Read & execute
D) List folder contents

A) Windows
B) UNIX
C) Both A and B
D) Neither A nor B

A) fewer
B) more
C) about the same number of
D) None of the above