MIST 356 Exam 3

1.

1 point

In a(n) ________ attack, the user enters part of a database query instead of giving the expected input.

XSS

buffer overflow

SQL injection

login screen bypass

2.

1 point

________ is a family of operating systems that share interoperability at the kernel level.

LINUX

Both

Neither

UNIX

3.

1 point

For all applications, a basic rule is ________.

None of the above

never trust user input

sometimes trust user input

always trust user input

4.

1 point

________ is a version of ________ for PCs.

LINUX, UNIX

Both

Neither

UNIX, LINUX

5.

1 point

In ________ filtering, the firewall examines packets entering the network from the outside.

ingress

Both

egress

Neither

6.

1 point

Nearly all main border walls today use ________ filtering.

unified threat management

static packet inspection

stateful packet inspection

All of the above

7.

1 point

A(n) ________ is defined as an attack that comes before fixes are released.

worm

exploit

zero-day attack

anomaly attack

8.

1 point

A(n) ________ is a security weakness that makes a program vulnerable to attack.

attack vector

All of the above

vulnerability

exploit

9.

1 point

Attacks in which a user reaches a directory outside of the WWW root directory and its subdirectories is called a(n) ________ attack.

SQL injection

cross-site scripting

directory traversal

mobile code

10.

1 point

________ do not drop packets.

IDSs

All of the above drop packets.

IPSs

Firewalls

11.

1 point

The most popular way for hackers to take over hosts today is ________.

by taking over the user interface

by taking over the operating system

by taking over an application

by guessing the root password

12.

1 point

MMCs are administrative, used to manage ________ servers.

UNIX

All of the above

Apple

Microsoft

13.

1 point

Static packet filtering firewalls are limited to ________.

Both

Neither

inspecting packets for which there are good application proxy filtering rules

inspecting packets in isolation from their context

14.

1 point

Overall for firms, which is more time consuming to patch?

both are about equally time consuming to patch

operating systems

applications

None of the above

15.

1 point

Almost all main border firewalls use ________ filtering as their primary filtering mechanism.

None of the above

application proxy

unified threat management

static packet filtering

16.

1 point

What is the name for a small program that fixes a particular vulnerability?

service pack

work-around

version upgrade

patch

17.

1 point

If a firewall cannot keep up with traffic volume, it will ________.

drop packets it cannot process

continue passing all packets but slow operation

shut down, failing safely

pass any packets it cannot filter

18.

1 point

In a stack overflow attack, to where does the return address point?

to the return address entry in the stack entry

to the beginning of the stack entry's data area

to the next command in the program being hacked

to the end of the stack entry's data area

19.

1 point

The user reaches a webpage before logging in. This is a(n) ________ attack.

buffer overflow

login screen bypass

XSS

SQL injection attack

20.

1 point

An attacker types more data in a field than the programmer expected. This is a(n) ________ attack.

denial-of-service

buffer overflow

directory traversal

XSS

21.

1 point

The core part of the LINUX operating system is called ________.

GNU

the kernel

the foundation

UNIX

22.

1 point

Which of the following is the most dangerous because it can do more on a computer when it is executed?

Java

Javascript

VBscript

Active-X

23.

1 point

In a(n) ________ attack, information that a user enters is sent back to the user in a webpage.

XSS

buffer overflow

SQL injection attack

login screen bypass

24.

1 point

A connection between two programs on different computers is represented by its ________.

pair of sockets

pair of IP addresses

pair of port numbers

None of the above

25.

1 point

________ firewalls filter traffic passing between different parts of a site's network.

Border

Internal

Intermediate

None of the above

26.

1 point

SPI firewalls can conduct ________ inspection.

A) stateful packet

B) static packet filtering

C) Both A and B

D) Neither A nor B

27.

1 point

The super user account in UNIX is called ________.

administrator

root

MMC

kernel

28.

1 point

Assigning security measures to groups is better than assigning security measures to individuals within groups because ________.

Both

applying security measures to groups takes less time than applying them individually

Neither

applying security measures in groups reduces errors in assigning security settings

29.

1 point

________ are sets of specific actions to be taken to harden all hosts of a particular type and of particular versions within each type.

Procedures

Processes

Security baselines

none of the above

30.

1 point

A ________ firewall handles all traditional firewall functions (SPI, ACLs, etc.) as well as additional security functions such as antivirus filtering, spam filtering, application proxy filtering, and so forth.

None of the above

unified threat management

static packet inspection

stateful packet inspection