QUESTION 31
Which of the following security measures presents the most risk?

QUESTION 32
You have determined that the company Web server has several vulnerabilities, including a buffer overflow that has resulted in an attack. The Web server uses PHP and has direct connections to an Oracle database server. It also uses many CGI scripts.
Which of the following is the most effective way to respond to this attack?

QUESTION 33
The best way to thwart a dictionary attack is by enforcing a:

QUESTION 34
Which task should you perform first when considering where to place equipment?

QUESTION 35
Which step in security policy implementation ensures that security policy will change as technology advances?

QUESTION 36
To implement a successful security system, you should:

QUESTION 37
A disgruntled employee has discovered that the company Web server is not protected against particular buffer overflow vulnerability.
The disgruntled employee has created an application to take advantage of this vulnerability and secretly obtain sensitive data from the Web server’s hard disk. This application sends a set of packets to the Web server that causes it to present an unauthenticated terminal with root privileges.
What is the name for this particular type of attack?

QUESTION 38
What is the primary use of hash (one-way) encryption in networking?

QUESTION 39
Consider the following series of commands from a Linux system:
iptables -A input -p icmp -s 0/0 -d 0/0 -j REJECT
Which explanation best describes the impact of the resulting firewall ruleset?

QUESTION 40
You have been assigned to provide security measures for your office’s reception area. Although the company needs to provide security measures, costs must be kept to a minimum.
Which of the following tools is the most appropriate choice?

QUESTION 41
Which of the following organizations provides regular updates concerning security breaches and issues?

QUESTION 42
Your firewall is configured to forbid all internal traffic from going out to the Internet. You want to allow internal clients to access all Web traffic.
At a minimum, what ports must you open in regards to the internal systems?

QUESTION 43
Which component works with an operating system to increase its security ability?

QUESTION 44
Which security management concept is the ability for a department to accurately determine the costs of using various networking security services?

QUESTION 45
You have been asked to encrypt a large file using a secure encryption algorithm so you can send it via e-mail to your supervisor. Encryption speed is important. The key will not be transmitted across a network.
Which form of encryption should you use?

QUESTION 46
All servers assume that a valid IP address belongs to the computer that sent it. Because TCP/IP contains no built-in authentication, a hacker can assume the identity of another device.
If your security depends entirely upon the TCP/IP identity, which type of attack can allow a hacker to gain access to your system?

QUESTION 47
What is the primary strength of symmetric-key encryption?

QUESTION 48
Which term is used to describe the activity of a hacker who enters a computer network and begins mapping the contents of the system?

QUESTION 49
The vast majority of hackers are which type of attacker?