SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Microsoft software packages that contain one or more patches and can be applied without rebooting
hotfix
88
DNS hardening
DHCP hardening
2. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
RBAC
23
DMZ
database hardening
3. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
simple authentication
hardware based
file and print sharing hardening
network access control
4. HTTP port
500
organizational unit
least privileged principle
80
5. LDAP authentication method that uses clear text
lightweight directory access protocol
simple network management protocol
hotfix
simple authentication
6. OU stands for...
53
23
domain name service
organizational unit
7. An accumulated set of software updates or hotfixes from Microsoft
161
security template
service pack
open mail relay
8. Recommended LDAP authentication
20 and 21
simple authentication with security layer LDAPv3
MAC
storage area network
9. Access control method that uses ACLs
rule of least privilege
DAC
161
RBAC
10. Protocol for assigning dynamic IP addresses to devices on a network
rule of least privilege
group policies
DHCP
lightweight directory access protocol
11. SAN stands for...
25
simple authentication
domain name service
storage area network
12. Standard setup used when configuring machines - provide a starting point and consistent setup
configuration baselines
service pack
MAC
25
13. Most restrictive access control method that uses security labels to control access
DAC
group policies
MAC
rule of least privilege
14. NNTP port
500
infrastructure based
encrypted file system
119
15. DNS stands for...
simple mail transport protocol
80
simple network management protocol
domain name service
16. Defining the software and hardware components that can be used in an organization
SNMP
dynamic host configuration protocol
configuration management policy
25
17. TACACS port
patches
49
dynamic host configuration protocol
RBAC
18. kerberos port
119
88
domain name service
389
19. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
MAC
rule of least privilege
network access control
FTP hardening
20. Four ways to implement group policies
database hardening
local - site - domain - OU
security template
RBAC
21. Transferable access controls applied and controlled by the object owner
open mail relay
role-based
DAC
389
22. Telnet port
MAC
configuration management policy
TACACS
23
23. Help to make sure devices meet security standards before they are allowed to connect to the network
NAC
MAC
role-based
patches
24. FTP ports
DNS poisoning
DAC
20 and 21
simple mail transport protocol
25. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
88
DAC
open mail relay
49
26. NAC stands for
network access control
domain name service
DAC
RBAC
27. A subnet on the network that separates the internal network from publicly exposed hosts
network access control
DAC
DMZ
endpoint based
28. Access control defined by roles or job functions
NAC
DAC
RBAC
simple authentication
29. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
TACACS
NNTP
389
least privileged principle
30. The process of establishing a standard for security
119
23
baselining
DNS hardening
31. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
MAC
DAC
OS hardening
anonymous authentication
32. Users granted least amount of access possible that enables them to complete their required work
service pack
simple network management protocol
DAC
least privileged principle
33. NetBIOS port
network news transfer protocol
DMZ
139
group policies
34. SNMP stand for...
simple network management protocol
161
NNTP
500
35. IPSec port
simple authentication
hardening
DMZ
500
36. NAC method where organizations must run the current hardware and operating systems
110
TACACS
configuration management policy
infrastructure based
37. MAC stands for ____________ access control
open mail relay
DNS poisoning
mandatory
network attached storage
38. Making the OS less vulnerable to threats
hardening
role-based
23
least privileged principle
39. Access control method used by organizations that have a high turn over
RBAC
anonymous authentication
SSL
simple network management protocol
40. A cryptographic protocol that provides security for communications over networks such as the Internet
SSL
hardening
Terminal Access Controller Access-Control System
110
41. SNMP port
161
DAC
OS hardening
least privileged principle
42. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
139
TACACS
local - site - domain - OU
DAC
43. LDAP stands for...
domain name service
least privileged principle
network access control
lightweight directory access protocol
44. Define security settings and user's desktop environment on group of computers
22
OS hardening
group policies
TACACS
45. Locking down the system
system hardening
lightweight directory access protocol
dynamic host configuration protocol
least privileged principle
46. Centrally managed NAC method requiring installation of software agents on each network client
80
NNTP
endpoint based
configuration management policy
47. HTTP SSL port
network news transfer protocol
TACACS
configuration baselines
443
48. NAS stands for...
MAC
network attached storage
NNTP
simple mail transport protocol
49. Issued by software vendors to fix bugs - address security issues or add functionality
161
simple mail transport protocol
RBAC
patches
50. DNS port
file and print sharing hardening
53
161
MAC