SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. FTP ports
139
hardware based
20 and 21
group policies
2. File system that offers limited security and was primarily designed for desktop use
FAT
DAC
NNTP
encrypted file system
3. kerberos port
80
88
organizational unit
security template
4. SMTP port
encrypted file system
network attached storage
25
organizational unit
5. Issued by software vendors to fix bugs - address security issues or add functionality
patches
TACACS
RBAC
storage area network
6. DHCP stands for...
FAT
dynamic host configuration protocol
hardware based
25
7. MAC stands for ____________ access control
service pack
22
mandatory
NAC
8. LDAP authentication method that uses clear text
22
simple authentication
119
role-based
9. NNTP stands for
hardening
service pack
DNS hardening
network news transfer protocol
10. DAC stands for ____________ access control
simple authentication with security layer LDAPv3
discretionary
network news transfer protocol
23
11. LDAP port
configuration management policy
389
anonymous authentication
SNMP
12. The process of establishing a standard for security
22
DAC
baselining
storage area network
13. Making the OS less vulnerable to threats
80
hardening
simple mail transport protocol
22
14. HTTP port
rule of least privilege
network attached storage
80
DHCP
15. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
hardware based
group policies
20 and 21
80
16. Access control defined by roles or job functions
baselining
RBAC
simple authentication with security layer LDAPv3
hotfix
17. POP3 port
FTP hardening
encrypted file system
25
110
18. EFS stands for...
system hardening
configuration management policy
encrypted file system
139
19. TACACS port
49
SSL
file and print sharing hardening
infrastructure based
20. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
TACACS
DAC
NAC
system hardening
21. Defining the software and hardware components that can be used in an organization
389
25
DAC
configuration management policy
22. Centrally managed NAC method requiring installation of software agents on each network client
endpoint based
simple mail transport protocol
network access control
domain name service
23. Help to make sure devices meet security standards before they are allowed to connect to the network
119
DNS poisoning
domain name service
NAC
24. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
NNTP
DNS poisoning
file and print sharing hardening
SNMP
25. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
organizational unit
database hardening
lightweight directory access protocol
service pack
26. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
network news transfer protocol
TACACS
dynamic host configuration protocol
network access control
27. Most restrictive access control method that uses security labels to control access
group policies
mandatory
simple authentication with security layer LDAPv3
MAC
28. Start with the most secure environment - the loosen the controls as needed
49
DMZ
least privileged principle
rule of least privilege
29. HTTP SSL port
443
SNMP
MAC
simple network management protocol
30. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
49
DHCP hardening
TACACS
DAC
31. Access control method that uses ACLs
endpoint based
DNS poisoning
DAC
hardening
32. DNS port
MAC
infrastructure based
storage area network
53
33. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
simple mail transport protocol
file and print sharing hardening
RBAC
organizational unit
34. OU stands for...
FTP hardening
49
MAC
organizational unit
35. A subnet on the network that separates the internal network from publicly exposed hosts
DMZ
simple mail transport protocol
139
least privileged principle
36. Contain possible security settings that can control one or multiple computers
TACACS
443
security template
system hardening
37. NAC method where organizations must run the current hardware and operating systems
infrastructure based
OS hardening
group policies
system hardening
38. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
hotfix
DNS hardening
MAC
FTP hardening
39. TACACS
NAC
Terminal Access Controller Access-Control System
443
network news transfer protocol
40. Protocol for assigning dynamic IP addresses to devices on a network
DHCP
network news transfer protocol
mandatory
53
41. Microsoft software packages that contain one or more patches and can be applied without rebooting
encrypted file system
network access control
hotfix
DHCP
42. Users granted least amount of access possible that enables them to complete their required work
least privileged principle
DHCP
network attached storage
hardware based
43. Define security settings and user's desktop environment on group of computers
group policies
161
hotfix
network attached storage
44. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
DNS hardening
patches
161
NAC
45. Label-based - hard coded access controls - at multiple levels - applied to all objects
simple authentication with security layer LDAPv3
network news transfer protocol
MAC
mandatory
46. DNS stands for...
MAC
domain name service
local - site - domain - OU
least privileged principle
47. A cryptographic protocol that provides security for communications over networks such as the Internet
simple mail transport protocol
open mail relay
SSL
22
48. Four ways to implement group policies
local - site - domain - OU
anonymous authentication
DAC
discretionary
49. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
49
group policies
file and print sharing hardening
389
50. SNMP port
configuration baselines
file and print sharing hardening
network attached storage
161
