SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
23
simple network management protocol
RBAC
file and print sharing hardening
2. Telnet port
RBAC
SNMP
139
23
3. Defining the software and hardware components that can be used in an organization
FAT
configuration management policy
discretionary
baselining
4. Transferable access controls applied and controlled by the object owner
DAC
119
FTP hardening
domain name service
5. DNS stands for...
FTP hardening
configuration management policy
system hardening
domain name service
6. POP3 port
110
DHCP hardening
DMZ
service pack
7. Microsoft software packages that contain one or more patches and can be applied without rebooting
network access control
hotfix
119
25
8. HTTP SSL port
local - site - domain - OU
443
FAT
80
9. Making the OS less vulnerable to threats
hardening
RBAC
88
domain name service
10. The process of establishing a standard for security
110
baselining
23
139
11. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
encrypted file system
DAC
DNS hardening
389
12. FTP ports
49
20 and 21
encrypted file system
161
13. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
49
DHCP hardening
group policies
role-based
14. SMTP stands for...
simple authentication
configuration management policy
simple mail transport protocol
storage area network
15. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
rule of least privilege
storage area network
DAC
OS hardening
16. Centrally managed NAC method requiring installation of software agents on each network client
least privileged principle
endpoint based
local - site - domain - OU
25
17. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
network access control
25
simple authentication with security layer LDAPv3
DNS hardening
18. Label-based - hard coded access controls - at multiple levels - applied to all objects
hardening
MAC
500
49
19. NetBIOS port
139
49
endpoint based
FAT
20. Help to make sure devices meet security standards before they are allowed to connect to the network
NAC
network news transfer protocol
161
database hardening
21. DHCP stands for...
network access control
dynamic host configuration protocol
SNMP
25
22. Standard setup used when configuring machines - provide a starting point and consistent setup
hardening
open mail relay
organizational unit
configuration baselines
23. An accumulated set of software updates or hotfixes from Microsoft
443
service pack
least privileged principle
23
24. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
20 and 21
simple network management protocol
DNS poisoning
database hardening
25. Locking down the system
88
SNMP
system hardening
encrypted file system
26. A cryptographic protocol that provides security for communications over networks such as the Internet
OS hardening
25
local - site - domain - OU
SSL
27. Protocol for assigning dynamic IP addresses to devices on a network
23
DAC
simple authentication
DHCP
28. NNTP stands for
rule of least privilege
network news transfer protocol
discretionary
53
29. Most restrictive access control method that uses security labels to control access
MAC
25
49
network news transfer protocol
30. Users granted least amount of access possible that enables them to complete their required work
open mail relay
least privileged principle
simple network management protocol
161
31. SNMP stand for...
389
storage area network
DAC
simple network management protocol
32. OU stands for...
organizational unit
local - site - domain - OU
DHCP hardening
DNS poisoning
33. SMTP port
endpoint based
storage area network
security template
25
34. Four ways to implement group policies
baselining
local - site - domain - OU
139
MAC
35. NNTP port
organizational unit
open mail relay
119
baselining
36. A subnet on the network that separates the internal network from publicly exposed hosts
role-based
infrastructure based
DMZ
MAC
37. Access control method that uses ACLs
DAC
anonymous authentication
discretionary
DHCP hardening
38. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
anonymous authentication
RBAC
DAC
mandatory
39. EFS stands for...
endpoint based
mandatory
encrypted file system
RBAC
40. LDAP port
infrastructure based
role-based
389
simple authentication
41. DNS port
lightweight directory access protocol
25
hardening
53
42. Start with the most secure environment - the loosen the controls as needed
rule of least privilege
TACACS
configuration management policy
organizational unit
43. NAC stands for
MAC
TACACS
network access control
TACACS
44. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
TACACS
least privileged principle
161
hardware based
45. TACACS
OS hardening
Terminal Access Controller Access-Control System
80
NNTP
46. Issued by software vendors to fix bugs - address security issues or add functionality
database hardening
53
110
patches
47. LDAP authentication method not recommended
23
anonymous authentication
hardware based
patches
48. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
storage area network
open mail relay
hotfix
FTP hardening
49. TACACS port
rule of least privilege
simple authentication with security layer LDAPv3
49
Terminal Access Controller Access-Control System
50. Define security settings and user's desktop environment on group of computers
139
DAC
group policies
RBAC
