SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Centrally managed NAC method requiring installation of software agents on each network client
119
endpoint based
patches
network news transfer protocol
2. Access control method used by organizations that have a high turn over
161
lightweight directory access protocol
configuration management policy
RBAC
3. Issued by software vendors to fix bugs - address security issues or add functionality
patches
open mail relay
storage area network
DAC
4. NAS stands for...
network attached storage
DAC
security template
least privileged principle
5. HTTP port
80
network attached storage
dynamic host configuration protocol
RBAC
6. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
DHCP hardening
DNS poisoning
security template
80
7. A subnet on the network that separates the internal network from publicly exposed hosts
139
organizational unit
RBAC
DMZ
8. SSH port
DHCP
simple mail transport protocol
role-based
22
9. Users granted least amount of access possible that enables them to complete their required work
database hardening
role-based
23
least privileged principle
10. SAN stands for...
storage area network
119
simple mail transport protocol
file and print sharing hardening
11. Defining the software and hardware components that can be used in an organization
configuration management policy
25
rule of least privilege
file and print sharing hardening
12. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
hotfix
RBAC
database hardening
NNTP
13. NAC method where organizations must run the current hardware and operating systems
network access control
mandatory
FAT
infrastructure based
14. NNTP port
hardware based
119
domain name service
DHCP
15. EFS stands for...
encrypted file system
TACACS
MAC
configuration management policy
16. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
DNS poisoning
OS hardening
baselining
161
17. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
DAC
service pack
database hardening
139
18. Making the OS less vulnerable to threats
hardening
TACACS
simple authentication with security layer LDAPv3
DHCP hardening
19. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
139
MAC
DAC
SNMP
20. LDAP port
49
group policies
22
389
21. Label-based - hard coded access controls - at multiple levels - applied to all objects
dynamic host configuration protocol
OS hardening
MAC
RBAC
22. SMTP port
25
23
FTP hardening
MAC
23. POP3 port
simple mail transport protocol
110
domain name service
hardware based
24. DNS stands for...
MAC
110
domain name service
encrypted file system
25. Telnet port
hardening
FTP hardening
rule of least privilege
23
26. SMTP stands for...
DAC
least privileged principle
simple mail transport protocol
hardening
27. Recommended LDAP authentication
simple authentication with security layer LDAPv3
database hardening
mandatory
patches
28. TACACS
NAC
Terminal Access Controller Access-Control System
FTP hardening
88
29. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
119
system hardening
RBAC
443
30. An accumulated set of software updates or hotfixes from Microsoft
RBAC
hardware based
service pack
TACACS
31. Start with the most secure environment - the loosen the controls as needed
49
rule of least privilege
25
least privileged principle
32. Locking down the system
security template
DHCP hardening
role-based
system hardening
33. FTP ports
group policies
20 and 21
security template
49
34. Access control method that uses ACLs
simple network management protocol
DAC
file and print sharing hardening
Terminal Access Controller Access-Control System
35. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
20 and 21
mandatory
local - site - domain - OU
open mail relay
36. HTTP SSL port
TACACS
endpoint based
Terminal Access Controller Access-Control System
443
37. Microsoft software packages that contain one or more patches and can be applied without rebooting
389
hotfix
NNTP
49
38. LDAP stands for...
local - site - domain - OU
lightweight directory access protocol
discretionary
OS hardening
39. SNMP port
161
open mail relay
role-based
network news transfer protocol
40. Four ways to implement group policies
local - site - domain - OU
500
119
network news transfer protocol
41. Standard setup used when configuring machines - provide a starting point and consistent setup
RBAC
configuration baselines
DNS hardening
organizational unit
42. Most restrictive access control method that uses security labels to control access
RBAC
MAC
infrastructure based
NNTP
43. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
389
simple mail transport protocol
file and print sharing hardening
dynamic host configuration protocol
44. Transferable access controls applied and controlled by the object owner
rule of least privilege
NNTP
DAC
22
45. DNS port
DNS poisoning
53
simple authentication
open mail relay
46. A cryptographic protocol that provides security for communications over networks such as the Internet
MAC
simple authentication
389
SSL
47. OU stands for...
rule of least privilege
20 and 21
baselining
organizational unit
48. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
lightweight directory access protocol
FTP hardening
anonymous authentication
MAC
49. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
hardware based
lightweight directory access protocol
TACACS
SNMP
50. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
49
security template
group policies
DAC
