Test your basic knowledge |

Comptia Security +: Os Hardening

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. The process of establishing a standard for security






2. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected






3. Standard setup used when configuring machines - provide a starting point and consistent setup






4. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications






5. POP3 port






6. HTTP SSL port






7. LDAP authentication method not recommended






8. A cryptographic protocol that provides security for communications over networks such as the Internet






9. SMTP port






10. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups






11. LDAP port






12. Access control method used by organizations that have a high turn over






13. Four ways to implement group policies






14. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers






15. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention






16. TACACS






17. HTTP port






18. Defining the software and hardware components that can be used in an organization






19. Telnet port






20. SSH port






21. LDAP stands for...






22. Access control defined by roles or job functions






23. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere






24. Locking down the system






25. FTP ports






26. IPSec port






27. NetBIOS port






28. Start with the most secure environment - the loosen the controls as needed






29. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks






30. An accumulated set of software updates or hotfixes from Microsoft






31. Microsoft software packages that contain one or more patches and can be applied without rebooting






32. Centrally managed NAC method requiring installation of software agents on each network client






33. Making the OS less vulnerable to threats






34. OU stands for...






35. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password






36. Label-based - hard coded access controls - at multiple levels - applied to all objects






37. Most restrictive access control method that uses security labels to control access






38. SMTP stands for...






39. SMTP port






40. NNTP stands for






41. Contain possible security settings that can control one or multiple computers






42. NAS stands for...






43. Protocol for assigning dynamic IP addresses to devices on a network






44. EFS stands for...






45. Define security settings and user's desktop environment on group of computers






46. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -






47. RBAC stands for ____________ access control






48. NAC stands for






49. LDAP authentication method that uses clear text






50. NNTP port