Prelim Exam MIT

1.

1 point

Which of the following can distribute itself without using a host file?

Worm

Logic bomb

Trojan horse.

Virus

2.

1 point

The system administrator of the company has resigned. When the administrator's user ID is deleted, the system suddenly begins deleting files. What type of malicious code is this?

Virus

Worm

Logic bomb

Trojan horse

3.

1 point

Which of the following provides the strongest form of authentication?

token

biometrics

username and password

one time password

4.

1 point

Which type of attack can easily break a user's password if the user uses simple and meaningful things such as pet names or birthdays for their passwords?

Dictionary attack

Random guess attack

Brute Force attack

Role Based Access Control attack

Spoofing attack

5.

1 point

Which types of attachments should be filtered from e-mails to minimize the danger of viruses?

Sound files

Executable files

Text files

Image files

6.

1 point

With regard to viruses and hoaxes, which of the following is TRUE? (Choose the best answer)

Hoaxes are harmless pranks and should be ignored

Hoaxes can help educate user about a virus

Hoaxes can create as much damage as a real virus

Hoaxes carry a malicious payload and can be destructive.

7.

1 point

What type set to go off following a preset time interval, the program can record system keystrokes in a text file and e-mail it to the author, and will also delete system logs every five days or whenever a backup is performed?

Back door

Virus

Worm

Logic bomb

8.

1 point

Which of the following is the best defense against man in the middle attacks?

A firewall

Strong passwords

Strong encryption

Strong authentication

9.

1 point

Which of the following network mapping tools uses ICMP (Internet Control Message Protocol)?

ping scanner

map scanner

port scanner

10.

1 point

Which of the following is most common method of accomplishing DDoS (Distributed Denial of Service) attacks?

Internal host computers simultaneously failing.

Overwhelming and shutting down multiple services on a server.

Multiple servers or routers monopolizing and over whelming the bandwidth of a particular server or router.

An individual e-mail address list being used to distribute a virus.

11.

1 point

In which of the following does someone use an application to capture and manipulate packets as they are passing through your network?

DDos

Spoofing

Back Door

Man in the Middl

12.

1 point

What is a piece of malicious code that has no productive purpose but can replicate itself and exist only to damage computer systems or create further vulnerabilities called?

Virus

Worm

Trojan Horse

SYN flood

Logic Bomb

13.

1 point

Which of the following occurs when a string of data is sent to a buffer that is larger than the buffer was designed to handle?

Blue Screen of Death

Brute Force attack

Spoofing attack

Buffer overflow

SYN flood

Man in the middle attack

14.

1 point

Which of the following provides a WLAN (Wireless Local Area Network) with the level of security associated with a LAN (Local Area Network)?

ISDN (Integrated Services Digital Network)

WEP (Wired Equivalent Privacy)

VPN (Virtual Private Network)

ISSE (Information Systems Security Engineering)

15.

1 point

How many ports in TCP/IP (Transmission Control Protocol/Internet Protocol) are vulnerable to being scanned, exploited, or attached?

1,204

32

16,777,216

65,535

16.

1 point

Which of the following determines which operating system is installed on a system by analyzing its response to certain network traffic?

Host hijacking.

OS (Operating System) scanning.

Fingerprinting

Reverse engineering.

17.

1 point

You work as the security administrator at wwwspcf.com. You want to configure the SPCF network to allow only HTTP (Hypertext Transfer Protocol) traffic for outbound Internet connections. You also want to set permissions to allow only certain users to browse the web. Which of the following should you use?

A protocol analyzer

A packet filtering firewall

A proxy server

A stateful firewall

18.

1 point

Which of the following represents the best method for securing a web browser?

Do not upgrade, as new versions tend to have more security flaws.

Connect to the Internet using only a VPN (Virtual Private Network) connection.

Disable any unused features of the web browser.

Implement a filtering policy for illegal, unknown and undesirable sites.

19.

1 point

On a firewall, which ports must be open in order to allow FTP (File Transfer Protocol) traffic?

80 and 443

161 and 162

20 and 21

25 and 110

20.

1 point

Which of the following attacks uses ICMP (Internet Control Message Protocol) and improperly formatted MTUs (Maximum Transmission Unit) to crash a target computer?

Smurf attack

Ping of death attack

TCP SYN (Transmission Control Protocol / Synchronized) attack

Man in the middle attack

21.

1 point

What should the minimum length of a password be to deter dictionary password cracks?

10 characters

8 characters

10 characters

6 characters

22.

1 point

Which of the following is the major difference between a worm and a Trojan horse?

Worms are a form of malicious code while Trojan horses are not.

Worms are spread via e-mail while Trojan horses are not.

Worms are self replicating while Trojan horses are not.

There is no difference.

23.

1 point

Which of the following is the most important step that should be taken in response to a security breach?

encryption

authentication

containment

intrusion

24.

1 point

What would a user's best plan of action be on receiving an e-mail message warning of a virus that may have accidentally been sent in the past, and suggesting that the user to delete a specific file if it appears on the user's computer?

Check for the file, delete it immediately and copy the e-mail to all distribution lists.

Check for the file and delete it immediately.

Report the contents of the message to the network administrator.

Ignore the message. This is a virus hoax and no action is required.

25.

1 point

You work as a security administrator at www.spcf.edu.ph. On examining the server's list of protocols that are bound and active on each network interface card, you notice a relatively large number of protocols. What should you do to ensure network security?

Unnecessary protocols should be disabled on all server and client machines on a network as they pose great risk.

Unnecessary protocols do not pose a significant to the system and should be left intact for compatibility reasons.

Using port filtering ACLs (Access Control List) at firewalls and routers is sufficient to stop malicious attacks on unused protocols

There are no unneeded protocols on most systems because protocols are chosen during the installation.

26.

1 point

You are the security administrator at HAU. You detect intruders accessing your internal network. The source IP (Internet Protocol) addresses originate from trusted networks. What type of attack are you experiencing?

smurfing

social engineering

TCP/IP (Transmission Control Protocol/Internet Protocol) hijacking

spoofing

27.

1 point

What is the process of forging an IP (Internet Protocol) address to impersonate another machine called?

replay

TCP/IP (Transmission Control Protocol/Internet Protocol) hijacking

man in the middle

IP (Internet Protocol) spoofing

28.

1 point

Malicious port scanning determines the

fingerprint of the operating system

physical cabling topology of a network

computer name

user ID and passwords

29.

1 point

Which of the following ports does a DNS (Domain Name Service) server require?

21

53

55

23

30.

1 point

Which of the following attacks exploits the session initiation between the Transport Control Program (TCP) client and server in a network?

Buffer Overflow

Birthday Attack

Smurf

SYN Attack

31.

1 point

Which of the following attacks attempts to crack passwords?

SMURF

Spamming

Dictionary

Teardrop

32.

1 point

Which of the following is the most costly method of an authentication?

Biometrics

Passwords

Shared secrets

Tokens

33.

1 point

Which of the following can be used to track a user's browsing habits on the Internet?

Digital certificates

Web server cache

ActiveX controls

Cookies

34.

1 point

What is the first step in implementing a firewall?

Blocking unwanted incoming traffic

Blocking unwanted outgoing traffic

Protecting against DDoS (Distributed Denial of Service) attacks

Developing a firewall policy

35.

1 point

Which of the following can be deterred against by increasing the keyspace and complexity of a password?

dictionary

inference

frontal

brute force

36.

1 point

What do intruders use most often to gain unauthorized-access to a system? A process where an attacker attempts to acquire information about your network and system by talking to people in the organization.

social engineering.

Trojan horse.

brute force attack

key logging

37.

1 point

Which of the following is an effective method of preventing computer viruses from spreading?

Prevent the execution of .vbs files.

Require root/administrator access to run programs.

Install a host based IDS (Intrusion Detection System)

Enable scanning of e-mail attachments.

38.

1 point

Which of the attacks can involve the misdirection of the domain name resolution and Internet traffic?

DoS (Denial of Service)

Brute force attack

Spoofing

Reverse DNS (Domain Name Service

39.

1 point

What is an application that appears to perform a useful function but instead contains some sort of malicious code called?

Virus

Trojan Horse

Worm

Logic Bomb

SYN flood

40.

1 point

Which of the following provides the best protection against an intercepted password?

VPN (Virtual Private Network).

PPTP (Point-to-Point Tunneling Protocol).

One time password.

Complex password requirement.