SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Start with the most secure environment - the loosen the controls as needed
patches
rule of least privilege
DNS hardening
DAC
2. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
file and print sharing hardening
RBAC
DAC
security template
3. HTTP SSL port
MAC
119
hardware based
443
4. OU stands for...
baselining
organizational unit
file and print sharing hardening
DHCP
5. SMTP stands for...
161
domain name service
simple mail transport protocol
simple authentication with security layer LDAPv3
6. SSH port
25
80
22
simple network management protocol
7. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
25
FTP hardening
network news transfer protocol
DNS hardening
8. DNS port
NAC
53
storage area network
configuration management policy
9. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
500
DHCP hardening
TACACS
NNTP
10. POP3 port
encrypted file system
DNS poisoning
110
FTP hardening
11. HTTP port
rule of least privilege
80
simple network management protocol
network news transfer protocol
12. SNMP stand for...
network news transfer protocol
simple network management protocol
DHCP
encrypted file system
13. NAC stands for
TACACS
SSL
database hardening
network access control
14. DAC stands for ____________ access control
TACACS
file and print sharing hardening
discretionary
NAC
15. LDAP authentication method that uses clear text
DNS poisoning
FAT
389
simple authentication
16. LDAP authentication method not recommended
mandatory
dynamic host configuration protocol
anonymous authentication
SNMP
17. Making the OS less vulnerable to threats
dynamic host configuration protocol
hardening
53
configuration management policy
18. The process of establishing a standard for security
hardening
baselining
configuration management policy
infrastructure based
19. EFS stands for...
22
TACACS
encrypted file system
OS hardening
20. Protocol for assigning dynamic IP addresses to devices on a network
MAC
hardening
DHCP
file and print sharing hardening
21. Telnet port
500
23
storage area network
DHCP hardening
22. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
TACACS
389
service pack
infrastructure based
23. SMTP port
25
53
encrypted file system
88
24. SAN stands for...
25
rule of least privilege
network attached storage
storage area network
25. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
database hardening
hotfix
NNTP
88
26. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
119
file and print sharing hardening
patches
SNMP
27. DHCP stands for...
Terminal Access Controller Access-Control System
dynamic host configuration protocol
RBAC
RBAC
28. Recommended LDAP authentication
simple mail transport protocol
RBAC
simple authentication with security layer LDAPv3
RBAC
29. TACACS
database hardening
role-based
Terminal Access Controller Access-Control System
domain name service
30. FTP ports
FTP hardening
DNS hardening
FAT
20 and 21
31. IPSec port
system hardening
500
389
anonymous authentication
32. Issued by software vendors to fix bugs - address security issues or add functionality
encrypted file system
patches
25
simple network management protocol
33. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
MAC
hardware based
FTP hardening
service pack
34. RBAC stands for ____________ access control
80
rule of least privilege
DNS poisoning
role-based
35. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
MAC
DAC
group policies
FTP hardening
36. TACACS port
NAC
49
OS hardening
DHCP hardening
37. DNS stands for...
network attached storage
domain name service
389
DHCP
38. SNMP port
DNS poisoning
hardware based
FTP hardening
161
39. Label-based - hard coded access controls - at multiple levels - applied to all objects
endpoint based
FAT
FTP hardening
MAC
40. kerberos port
DNS hardening
TACACS
baselining
88
41. Four ways to implement group policies
hardware based
Terminal Access Controller Access-Control System
MAC
local - site - domain - OU
42. File system that offers limited security and was primarily designed for desktop use
FAT
SNMP
baselining
simple mail transport protocol
43. Define security settings and user's desktop environment on group of computers
DAC
group policies
OS hardening
system hardening
44. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
simple authentication
119
simple authentication with security layer LDAPv3
RBAC
45. Most restrictive access control method that uses security labels to control access
DHCP hardening
discretionary
least privileged principle
MAC
46. Centrally managed NAC method requiring installation of software agents on each network client
endpoint based
TACACS
161
MAC
47. Contain possible security settings that can control one or multiple computers
RBAC
discretionary
storage area network
security template
48. LDAP stands for...
hardening
infrastructure based
20 and 21
lightweight directory access protocol
49. A cryptographic protocol that provides security for communications over networks such as the Internet
20 and 21
mandatory
DAC
SSL
50. Transferable access controls applied and controlled by the object owner
storage area network
network news transfer protocol
configuration baselines
DAC