SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. NetBIOS port
discretionary
139
open mail relay
DMZ
2. Defining the software and hardware components that can be used in an organization
lightweight directory access protocol
DHCP
simple authentication with security layer LDAPv3
configuration management policy
3. DHCP stands for...
baselining
DHCP hardening
dynamic host configuration protocol
DAC
4. SNMP port
80
161
encrypted file system
dynamic host configuration protocol
5. A subnet on the network that separates the internal network from publicly exposed hosts
DMZ
23
open mail relay
database hardening
6. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
161
file and print sharing hardening
simple mail transport protocol
TACACS
7. Standard setup used when configuring machines - provide a starting point and consistent setup
DMZ
TACACS
configuration baselines
500
8. IPSec port
RBAC
system hardening
139
500
9. Making the OS less vulnerable to threats
network attached storage
network news transfer protocol
hardening
system hardening
10. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
FAT
patches
20 and 21
DHCP hardening
11. Locking down the system
25
TACACS
system hardening
TACACS
12. NNTP stands for
open mail relay
network news transfer protocol
DMZ
80
13. EFS stands for...
mandatory
RBAC
encrypted file system
110
14. DAC stands for ____________ access control
SNMP
discretionary
22
Terminal Access Controller Access-Control System
15. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
simple network management protocol
system hardening
open mail relay
file and print sharing hardening
16. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
security template
25
SNMP
configuration management policy
17. Microsoft software packages that contain one or more patches and can be applied without rebooting
hotfix
443
discretionary
storage area network
18. Help to make sure devices meet security standards before they are allowed to connect to the network
domain name service
NAC
dynamic host configuration protocol
23
19. Most restrictive access control method that uses security labels to control access
Terminal Access Controller Access-Control System
23
security template
MAC
20. A cryptographic protocol that provides security for communications over networks such as the Internet
hardening
SSL
DAC
RBAC
21. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
RBAC
anonymous authentication
discretionary
dynamic host configuration protocol
22. DNS port
simple authentication
network news transfer protocol
discretionary
53
23. Protocol for assigning dynamic IP addresses to devices on a network
DHCP
SNMP
RBAC
DAC
24. HTTP SSL port
TACACS
443
25
simple mail transport protocol
25. NNTP port
DNS hardening
119
simple authentication with security layer LDAPv3
SSL
26. Start with the most secure environment - the loosen the controls as needed
25
rule of least privilege
service pack
simple authentication with security layer LDAPv3
27. Define security settings and user's desktop environment on group of computers
DAC
NAC
MAC
group policies
28. kerberos port
FAT
encrypted file system
88
simple mail transport protocol
29. SMTP port
configuration management policy
500
25
endpoint based
30. SAN stands for...
storage area network
SSL
endpoint based
MAC
31. Transferable access controls applied and controlled by the object owner
DAC
domain name service
anonymous authentication
patches
32. Four ways to implement group policies
mandatory
local - site - domain - OU
MAC
443
33. LDAP stands for...
SNMP
SSL
domain name service
lightweight directory access protocol
34. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
patches
dynamic host configuration protocol
database hardening
TACACS
35. LDAP port
389
organizational unit
DHCP
local - site - domain - OU
36. Issued by software vendors to fix bugs - address security issues or add functionality
23
patches
FAT
DHCP hardening
37. FTP ports
DNS hardening
20 and 21
infrastructure based
simple mail transport protocol
38. SNMP stand for...
simple network management protocol
MAC
NAC
RBAC
39. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
lightweight directory access protocol
53
configuration baselines
OS hardening
40. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
simple authentication
TACACS
OS hardening
25
41. The process of establishing a standard for security
organizational unit
rule of least privilege
DAC
baselining
42. Access control method used by organizations that have a high turn over
DNS hardening
network news transfer protocol
RBAC
DNS poisoning
43. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
endpoint based
file and print sharing hardening
simple authentication
hardware based
44. An accumulated set of software updates or hotfixes from Microsoft
service pack
lightweight directory access protocol
25
20 and 21
45. TACACS
security template
Terminal Access Controller Access-Control System
139
role-based
46. TACACS port
TACACS
49
500
service pack
47. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
TACACS
simple mail transport protocol
service pack
open mail relay
48. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
25
hardware based
DNS hardening
DHCP hardening
49. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
NAC
hardening
22
DNS poisoning
50. Recommended LDAP authentication
DHCP hardening
local - site - domain - OU
patches
simple authentication with security layer LDAPv3
