Busy. Please wait.
or

show password
Forgot Password?

Don't have an account?  Sign up 
or

Username is available taken
show password

why


Make sure to remember your password. If you forget it there is no way for StudyStack to send you a reset link. You would need to create a new account.
We do not share your email address with others. It is only used to allow you to reset your password. For details read our Privacy Policy and Terms of Service.


Already a StudyStack user? Log In

Reset Password
Enter the associated with your account, and we'll email you a link to reset your password.

Remove ads
Don't know
Know
remaining cards
Save
0:01
To flip the current card, click it or press the Spacebar key.  To move the current card to one of the three colored boxes, click on the box.  You may also press the UP ARROW key to move the card to the "Know" box, the DOWN ARROW key to move the card to the "Don't know" box, or the RIGHT ARROW key to move the card to the Remaining box.  You may also click on the card displayed in any of the three boxes to bring that card back to the center.

Pass complete!

"Know" box contains:
Time elapsed:
Retries:
restart all cards




share
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.

  Normal Size     Small Size show me how

Security Plus 2

COMPTIA Security+ 2

QuestionAnswer
A VPN using IPSec in the tunnel mode will provide encryption for what? Payload and message header.
After an Operating System install, what should you do to the administrator and guest account? Rename the admin account and disable the guest account.
Controlling access to information systems and associated networks is necessary for the preservation of their what? Confidentiality, integrity, and availability.
What correctly identifies some of the contents of a users X.509 certificate? User’s public key, CA distinguished name, and the type of symmetric algorithm used for encryption.
System administrators and hackers use what technique to review network traffic to determine what services are running? Sniffer
The action of determining which Operating System is installed on a system by analyzing it’s response to certain network traffic is called? Finger printing
What encryption scheme relies on both the sender and receiver to use different keys to encrypt and decrypt messages? Asymmetric
A user wants to send an e-mail and ensure that the message is not tampered with while in transit. What feature of modern cryptographic systems will facilitate this need? Integrity
Non-repudiation is generally used to do what? Prevent the sender or the receiver from denying that the communication between them has occurred.
Why are unique user ID’s critical in the review of audit trails? To establish individual accountability.
You are the first to arrive at a crime scene. An investigator and crime scene technician arrive afterwards. What does the crime scene technician need to do Tag, bag, and inventory evidence.
You are the first to arrive at a crime scene where a hacker is accessing unauthorized data on a file server from across the network. What should you do? Detach the network cable from the server to prevent the hacker from accessing further data.
When hosting a web server with CGI scripts, the directories for public view should have what type of permissions? The execute permission.
An FTP bounce attack is generally used to what? Establish a connection between the FTP server and another computer.
What determines if a user is presented with a dialog box prior to downloading an Active X component? User’s browser settings.
What is a common type of attack on web servers? Buffer overflow
What kind of encryption does Block Cipher use? Symmetric
What kind of attack are hashed passwords vulnerable to? Dictionary or brute force
What network mapping tool uses ICMP? Ping scanner
What would be the most effective hardware device in preventing network traffic sniffing? Use switches NOT hubs.
When configuring high-end switches that support VLANs you should be concerned about what two main security risks? MAC Addresses can be spoofed, and the VLAN Trunking Protocol (VTP) can be attacked so that all VTP clients erase their valid VLAN information databases.
What are TCP wrappers used for? Controlling access to selected services.
What is required to use S/MIME? Digital certificate
What strategy should be used when configuring the rules for a secure firewall? Default deny or deny-by-default.
Data integrity is what? A method of securing traffic that ensures all data is sequenced and numbered.
What is not a characteristic of DEN (Directory Enabled Networking)? It is inferior to SNMP.
The most common form of authentication is the use of what? Passwords
The goal of TCP hijacking is what? Taking over legitimate TCP connection
When implementing Kerberos authentication, what factors must be accounted for? Kerberos requires a centrally managed database of all user and resource passwords.
NetBus and Back Orifice are each considered an example of what? Illicit server
A virus that hides itself by intercepting disk access requests is? Stealth
What encryption key is used to verify a digital signature? The signer’s public key.
What protocol is most similar to SSLv3? TLS (Transport Layer Security)
Which RRAS industry standard authentication protocol could be used to encrypt passwords? CHAP
Discouraging employees from misusing company e-mail is best handled by? Creating a network security policy.
An administrator wants to set up a system for the internal network that will examine all packets for known attack signatures. What type of system will be setup? Networked base IDS.
Created by: uop2001