SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
110
simple network management protocol
DHCP hardening
DAC
2. Most restrictive access control method that uses security labels to control access
MAC
endpoint based
DHCP
rule of least privilege
3. LDAP port
389
hotfix
anonymous authentication
TACACS
4. The process of establishing a standard for security
DAC
80
baselining
139
5. EFS stands for...
system hardening
25
encrypted file system
lightweight directory access protocol
6. SMTP port
hardware based
80
SNMP
25
7. SMTP stands for...
network attached storage
500
DMZ
simple mail transport protocol
8. SMTP port
patches
DHCP hardening
25
139
9. File system that offers limited security and was primarily designed for desktop use
SSL
NAC
FAT
organizational unit
10. DAC stands for ____________ access control
RBAC
service pack
discretionary
DHCP
11. TACACS port
group policies
49
25
least privileged principle
12. LDAP stands for...
lightweight directory access protocol
dynamic host configuration protocol
SSL
DNS hardening
13. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
baselining
49
DNS poisoning
endpoint based
14. Making the OS less vulnerable to threats
hardening
22
TACACS
local - site - domain - OU
15. Four ways to implement group policies
443
local - site - domain - OU
161
49
16. Centrally managed NAC method requiring installation of software agents on each network client
389
domain name service
RBAC
endpoint based
17. A cryptographic protocol that provides security for communications over networks such as the Internet
SSL
encrypted file system
DAC
mandatory
18. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
389
hotfix
FAT
file and print sharing hardening
19. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
TACACS
MAC
NAC
RBAC
20. NNTP stands for
NNTP
patches
network news transfer protocol
local - site - domain - OU
21. NAC stands for
TACACS
lightweight directory access protocol
hardware based
network access control
22. RBAC stands for ____________ access control
security template
25
role-based
network attached storage
23. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
hardware based
NAC
storage area network
DAC
24. Access control defined by roles or job functions
OS hardening
RBAC
mandatory
organizational unit
25. Start with the most secure environment - the loosen the controls as needed
500
hardware based
23
rule of least privilege
26. Label-based - hard coded access controls - at multiple levels - applied to all objects
MAC
DNS poisoning
organizational unit
OS hardening
27. Transferable access controls applied and controlled by the object owner
configuration management policy
DAC
hardware based
role-based
28. NAS stands for...
20 and 21
rule of least privilege
group policies
network attached storage
29. NetBIOS port
discretionary
SNMP
MAC
139
30. Microsoft software packages that contain one or more patches and can be applied without rebooting
hotfix
DMZ
MAC
22
31. LDAP authentication method that uses clear text
DAC
baselining
simple authentication
25
32. Locking down the system
simple authentication with security layer LDAPv3
DNS hardening
system hardening
RBAC
33. DNS port
rule of least privilege
53
TACACS
open mail relay
34. MAC stands for ____________ access control
hardening
SSL
DAC
mandatory
35. Telnet port
infrastructure based
security template
DNS hardening
23
36. A subnet on the network that separates the internal network from publicly exposed hosts
DMZ
DHCP hardening
53
MAC
37. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
configuration management policy
25
simple mail transport protocol
open mail relay
38. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
simple authentication with security layer LDAPv3
DAC
service pack
161
39. Recommended LDAP authentication
network attached storage
domain name service
simple authentication with security layer LDAPv3
RBAC
40. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
DHCP hardening
security template
DNS hardening
infrastructure based
41. kerberos port
storage area network
88
configuration management policy
DAC
42. Users granted least amount of access possible that enables them to complete their required work
baselining
least privileged principle
49
DHCP hardening
43. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
network news transfer protocol
SSL
RBAC
23
44. SNMP port
DMZ
service pack
lightweight directory access protocol
161
45. HTTP port
443
80
least privileged principle
88
46. Access control method used by organizations that have a high turn over
RBAC
80
TACACS
119
47. SNMP stand for...
hardening
simple mail transport protocol
lightweight directory access protocol
simple network management protocol
48. NAC method where organizations must run the current hardware and operating systems
443
80
role-based
infrastructure based
49. IPSec port
500
simple network management protocol
TACACS
discretionary
50. Protocol for assigning dynamic IP addresses to devices on a network
security template
DHCP
hotfix
simple authentication