SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Access control method that uses ACLs
NNTP
DNS hardening
baselining
DAC
2. NAC method where organizations must run the current hardware and operating systems
organizational unit
simple network management protocol
infrastructure based
simple authentication with security layer LDAPv3
3. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
DHCP hardening
FAT
anonymous authentication
DHCP
4. The process of establishing a standard for security
baselining
security template
simple mail transport protocol
DNS hardening
5. POP3 port
DAC
local - site - domain - OU
110
simple authentication with security layer LDAPv3
6. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
SNMP
DHCP hardening
OS hardening
NAC
7. DNS port
mandatory
53
storage area network
role-based
8. HTTP port
storage area network
500
open mail relay
80
9. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
encrypted file system
open mail relay
RBAC
lightweight directory access protocol
10. Microsoft software packages that contain one or more patches and can be applied without rebooting
simple network management protocol
simple authentication
simple authentication with security layer LDAPv3
hotfix
11. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
domain name service
TACACS
88
mandatory
12. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
network news transfer protocol
dynamic host configuration protocol
DMZ
FTP hardening
13. SNMP stand for...
DNS poisoning
infrastructure based
FAT
simple network management protocol
14. A cryptographic protocol that provides security for communications over networks such as the Internet
baselining
SSL
simple network management protocol
88
15. Most restrictive access control method that uses security labels to control access
MAC
SNMP
discretionary
389
16. Standard setup used when configuring machines - provide a starting point and consistent setup
MAC
configuration baselines
local - site - domain - OU
database hardening
17. TACACS
Terminal Access Controller Access-Control System
DAC
NAC
DNS poisoning
18. Label-based - hard coded access controls - at multiple levels - applied to all objects
NNTP
DHCP hardening
organizational unit
MAC
19. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
storage area network
lightweight directory access protocol
database hardening
anonymous authentication
20. Recommended LDAP authentication
DHCP hardening
DAC
simple authentication with security layer LDAPv3
role-based
21. Protocol for assigning dynamic IP addresses to devices on a network
161
local - site - domain - OU
DHCP
simple mail transport protocol
22. NAC stands for
endpoint based
network access control
SNMP
389
23. kerberos port
DAC
domain name service
389
88
24. SNMP port
500
least privileged principle
baselining
161
25. NNTP stands for
network news transfer protocol
hardening
system hardening
DNS hardening
26. LDAP authentication method that uses clear text
SSL
RBAC
simple authentication
open mail relay
27. Transferable access controls applied and controlled by the object owner
patches
RBAC
DAC
80
28. OU stands for...
organizational unit
dynamic host configuration protocol
TACACS
lightweight directory access protocol
29. A subnet on the network that separates the internal network from publicly exposed hosts
DMZ
NNTP
389
configuration management policy
30. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
OS hardening
DHCP hardening
MAC
NNTP
31. Four ways to implement group policies
local - site - domain - OU
discretionary
500
baselining
32. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
open mail relay
DNS hardening
hardening
TACACS
33. Defining the software and hardware components that can be used in an organization
discretionary
mandatory
configuration management policy
local - site - domain - OU
34. FTP ports
20 and 21
MAC
network access control
rule of least privilege
35. DHCP stands for...
23
DAC
simple network management protocol
dynamic host configuration protocol
36. SAN stands for...
500
MAC
endpoint based
storage area network
37. MAC stands for ____________ access control
NNTP
anonymous authentication
mandatory
SNMP
38. NAS stands for...
139
local - site - domain - OU
simple authentication
network attached storage
39. NNTP port
Terminal Access Controller Access-Control System
119
file and print sharing hardening
anonymous authentication
40. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
500
TACACS
security template
file and print sharing hardening
41. Define security settings and user's desktop environment on group of computers
discretionary
group policies
MAC
NNTP
42. Help to make sure devices meet security standards before they are allowed to connect to the network
DAC
file and print sharing hardening
SNMP
NAC
43. Start with the most secure environment - the loosen the controls as needed
domain name service
rule of least privilege
TACACS
119
44. Centrally managed NAC method requiring installation of software agents on each network client
RBAC
endpoint based
NAC
DNS hardening
45. RBAC stands for ____________ access control
role-based
DHCP
system hardening
RBAC
46. DAC stands for ____________ access control
discretionary
500
endpoint based
simple authentication
47. HTTP SSL port
443
dynamic host configuration protocol
110
DAC
48. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
open mail relay
hotfix
DAC
DHCP hardening
49. LDAP stands for...
SSL
storage area network
lightweight directory access protocol
53
50. DNS stands for...
configuration management policy
RBAC
domain name service
security template