DHomesb Chapter 8 – CCNA Discovery: Networking for Home and
Small Businesses (Version 4.0)
1. A flood of packets with invalid source-IP addresses requests
a connection on the network. The server busily tries to respond, resulting in
valid requests being ignored. What type of attack occurred?
Trojan horse
brute force
ping of death
SYN flooding
2. What environment would be best suited for a two-firewall
network design?
a large corporate environment
a home environment with 10 or fewer hosts
a home environment that needs VPN access
a smaller, less congested business environment
3. While surfing the Internet, a user notices a box
claiming a prize has been won. The user opens the box unaware that a program is
being installed. An intruder now accesses the computer and retrieves personal
information. What type of attack occurred?
worm
virus
Trojan horse
denial of service
4. Which two statements are true concerning anti-spam
software? (Choose two.)
Anti-spam software can be loaded on either the end-user PC
or the ISP server, but not both.
When anti-spam software is loaded, legitimate e-mail may be
classified as spam by mistake.
Installing anti-spam software should be a low priority on
the network.
Even with anti-spam software installed, users should be
careful when opening e-mail attachments.
Virus warning e-mails that are not identified as spam via
anti-spam software should be forwarded to other users immediately.
5. What type of advertising is typically annoying and
associated with a specific website that is being visited?
adware
popups
spyware
tracking cookies
6. What part of the security policy states what
applications and usages are permitted or denied?
identification and authentication
remote access
acceptable use
incident handling
7. To which part of the network does the wireless access
point part of a Linksys integrated router connect?
DMZ
external
internal
a network other than the wired network
8. Identify three techniques used in social engineering.
(Choose three.)
fishing
vishing
phishing
spamming
pretexting
junk mailing
9. What is a widely distributed approach to marketing on
the Internet that advertises to as many individual users as possible via IM or
e-mail?
brute force
spam
spyware
tracking cookies
10. Which acronym refers to an area of the network that is
accessible by both internal, or trusted, as well as external, or untrusted,
host devices?
SPI
DMZ
ISR
ISP
11. During a pretexting event, how is a target typically
contacted?
by e-mail
by phone
in person
through another person
12. Refer to the graphic. What is the purpose of the
Internet Filter option of Filter IDENT (Port 113. on the Linksys
integrated router?
to require a user ID and password to access the router
to prevent outside intruders from attacking the router
through the Internet
to require a pre-programmed MAC address or IP address to
access the router
to disable tracking of internal IP addresses so they cannot
be spoofed by outside devices
13. What is a major characteristic of a Worm?
malicious software that copies itself into other executable
programs
tricks users into running the infected software
a set of computer instructions that lies dormant until
triggered by a specific event
exploits vulnerabilities with the intent of propagating
itself across a network
14. What term is used to describe a dedicated hardware
device that provides firewall services?
server-based
integrated
personal
appliance-based
15. What best practice relates to wireless access point
security?
activation of a popup stopper
a change of the default IP address
an update in the antivirus software definitions
physically securing the cable between the access point and
client
16. Which statement is true about port forwarding within a
Linksys integrated router?
Only external traffic that is destined for specific
internal ports is permitted. All other traffic is denied.
Only external traffic that is destined for specific
internal ports is denied. All other traffic is permitted.
Only internal traffic that is destined for specific
external ports is permitted. All other traffic is denied.
Only internal traffic that is destined for specific
external ports is denied. All other traffic is permitted.
17. What statement is true about security configuration on
a Linksys integrated router?
A DMZ is not supported.
The router is an example of a server-based firewall.
The router is an example of an application-based firewall.
Internet access can be denied for specific days and times.
18. What is one function that is provided by a
vulnerability analysis tool?
It provides various views of possible attack paths.
It identifies missing security updates on a computer.
It identifies wireless weak points such as rogue access
points.
It identifies all network devices on the network that do
not have a firewall installed.
It identifies MAC and IP addresses that have not been
authenticated on the network.
19. Which statement is true regarding anti-virus
software?
Only e-mail programs need to be protected.
Only hard drives can be protected.
Only after a virus is known can an anti-virus update be
created for it.
Only computers with a direct Internet connection need it.
20. Many best practices exist for wired and wireless
network security. The list below has one item that is not a best practice.
Identify the recommendation that is not a best practice for wired and wireless
security.
Periodically update anti-virus software.
Be aware of normal network traffic patterns.
Periodically update the host operating system.
Activate the firewall on a Linksys integrated router.
Configure login permissions on the integrated router.
Disable the wireless network when a vulnerability analysis
is being performed.
21. Refer to the graphic. In the Linksys Security menu,
what does the SPI Firewall Protection option Enabled provide?
It prevents packets based on the application that makes the
request.
It allows packets based on approved internal MAC or IP
addresses.
It requires that packets coming into the router be
responses to internal host requests.
It translates an internal address or group of addresses
into an outside, public address.
No comments:
Post a Comment