SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Network Security
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Used to pass data from one VLAN to another
NIDS
router
firewalls
stateful inspection
2. A locked down/hardened host on the public side of the firewall highly exposed to attacks (i.e. web server - email server)
layered
bastion host
teardrop
tcp/ip hijacking
3. When a hacker takes over a TCP session between two machines - also known as session hijacking - foiled by the use of encrypted sessions
land attack
broadcast domain
tcp/ip hijacking
encrypt session key
4. IDS that relies on usage patterns and baseline operation - can ID new vulnerability - high rate of false alarms
behavior based
subnet
application gateway
DNS spoofing
5. A logical connection point allowing computers and software to communicate and exchange data
NIPS
private
port
firewalls
6. Firewall that intercepts and inspects messages before delivering them - placed between trusted and untrusted networks - degrade network traffic - also know as application gateway
proxy
DoS attacks
stateful inspection
active
7. Cable used most in networks - maximum speed 1Gbps - maximum length 100 meters - susceptible to tap
twisted pair
port
NIDS
proxy
8. Level 2 firewall often used to filter web traffic
proxy
null session
teardrop
NIDS network connections
9. Used by ISPs - single public network IP address is shared among many hosts on a private network - also known as PAT
port address translation
tcp/ip hijacking
proxy server
false positive
10. A feature of firewalls / routers that disguise the IP address of internal systems allowing connection to the Internet using one public address
layered
stateful inspection
hub
NAT
11. A DoS attack that subverts the normal "three way handshake" of TCP/IP by sending SYN packets - but no corresponding ACK packets
NIPS
SYN flood
twisted pair
layered
12. Firewall with several NICs connected to different networks
SYN flood
multi homed
knowledge based
NAT
13. Attack where an attacker intercepts traffic and tricks parties at either end into believing they are communicating with each other
active
port address translation
repeater
man in the middle
14. Promiscuous NIC to sniff passing traffic - admin NIC to send alerts to centralized management system
NIDS network connections
twisted pair
source - destination - protocol
null session
15. Examines a entire packet and determines action based on a complex set of rules
application gateway
broadcast domain
promiscuous
layered
16. Blocks all traffic from passing through the firewall except for traffic that is explicitly allowed - also known as restrictive access - best practice
twisted pair
knowledge based
deny by default
multi homed
17. Session hijacking countermeasure
PBX (Private Branch Exchange)
protocol
encrypt session key
split horizon DNS
18. Level 1 firewall that looks at the head of a packet - (not content) - operates rapidly - application independent - either allow or deny packets
packet filter
proxy
split horizon DNS
screened subnet
19. IPS response method - terminate process/session - block/reject and redirect network traffic
stateful inspection
smurf
active
ping flooding
20. An attacker redirects traffic by falsifying the IP address requested by ARP request
NAT
man in the middle
false negative
ARP poisoning
21. Multiple network defense components are placed throughout the organizations assets and the network is properly segmented
promiscuous
multi homed
NIDS
defense in depth
22. Firewall with two NICs - one internal and one external facing - NAT is often used with this firewall
dual homed
proxy
dynamic NAT
multi homed
23. Malicious insiders - connections that bypass the firewall (i.e. IM) - encrypted traffic/tunneling - social engineering - physical access are missed by ___________
firewalls
extranet
ARP
HIDS
24. A level 3 firewall that remembers / tracks network connections - maintains a state table - distinguish which side of a firewall a connection was initiated - higher security
stateful inspection
firewall architectures
cat5
coaxial
25. A set of rules computers use to communicate with each other across a network
proxy
deny by default
IP spoofing
protocol
26. Network configuration that permits selected outsiders access internal information systems
application gateway
network
firewall architectures
extranet
27. One process on every system - use local system resources - detect attacks that NIDS misses - examine data after decrypted - can be OS specific - more expensive
knowledge based
HIDS
land attack
firewall architectures
28. A flaw in TCP/IP to verify that a packet really comes from the addess indicated in the IP header leads to this attack
10Base5
static NAT
IP spoofing
extranet
29. Web servers - FTP servers - DNS servers - mail servers should be located on the _____________
false positive
DMZ
ping flooding
ARP
30. Known as thicknet - 10mbps - limited to 500 meters
NIDS
10Base5
application gateway
switch
31. DMZ implementation using two firewalls with different rule sets for the DMZ and intranet
man in the middle and replay
router
NIDS
layered
32. Ping flooding - ping of death - smurf - fraggle - SYN flood - land - teardrop - email flood
store and forward
DMZ
router
DoS attacks
33. Cable designed for transmission at higher speeds (100Mbps - 2Gbps) and longer distances (2km) - expensive -eliminates signal tapping
NIDS network connections
fiber optic
screened subnet
DoS attacks
34. Twisted pair cable with speed capability of 10Mbps
cat3
blind
null session
ARP poisoning
35. Connects two or more subnets - determines the best path to forward packets based on packet header and forwarding table information
teardrop
content filter
router
screened subnet
36. Take control of a session between a server and client - the users gets kicked off the session while the attacker inserts himself into the session by sending a reset request to the client
router
session hijacking
land attack
man in the middle and replay
37. A firewall that checks all layers of a packet including content - verifying an expected response to a current communication session - also call a deep packet inspection
stateful inspection
SYN flood
PBX (Private Branch Exchange)
static NAT
38. One private IP address is mapped to one public IP address
static NAT
fiber optic
ping of death
repeater
39. A logical division of a computer network - in which all nodes can reach each other by broadcast at the data link layer - equivalent to a VLAN
0 - 1023
coaxial
passive
broadcast domain
40. Capture and analyze network traffic - also known as packet analyzer - sniffer - network analyzer
protocol analyzer
proxy
broadcast domain
screened subnet
41. Crashing a computer by sending oversized packets (over 64 bytes) that it doesn't know how to handle
ping of death
behavior based
screened host
cat5
42. An attacker redirects valid request to malicious sites by feeding a DNS server altered records which are retained in its cache
firewalls
49 -152 - 65 -535
DNS spoofing
false negative
43. Bbenign activity reported as malicious
false positive
multiple interface firewall
49 -152 - 65 -535
false negative
44. An attack where fragmented UDP packets with odd offset values are sent to the victim - when the OS attempts to rebuild the fragments they overwrite each other and cause confusion
VLAN
10Base5
teardrop
SYN flood
45. IDS response method using logging and notification
proxy
passive
switch
application gateway
46. IP spoofing attack where the attacker can monitor packets and participate in bidirectional communication
allow by default
10Base5
informed
extranet
47. Evolved from IDS - monitors network traffic - detects and responds to attack on network
screened host
private
1024 - 49 -151
NIPS
48. Amplifies the signal of incoming packets before broadcasting them to the network
proxy
land attack
10Base5
repeater
49. Dynamic / private ports
1024 - 49 -151
dual homed
49 -152 - 65 -535
firewall architectures
50. A packet filtering firewall works at this layer of the OSI model
twisted pair
IP spoofing
hub
network
