SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
security template
system hardening
SSL
DHCP hardening
2. DAC stands for ____________ access control
baselining
infrastructure based
hardening
discretionary
3. Transferable access controls applied and controlled by the object owner
23
DAC
MAC
network attached storage
4. NAC stands for
network access control
dynamic host configuration protocol
FTP hardening
NAC
5. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
161
TACACS
88
NNTP
6. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
RBAC
25
NAC
open mail relay
7. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
TACACS
database hardening
security template
hardening
8. Standard setup used when configuring machines - provide a starting point and consistent setup
configuration baselines
RBAC
network attached storage
88
9. SNMP stand for...
simple network management protocol
simple authentication with security layer LDAPv3
anonymous authentication
119
10. HTTP port
80
500
dynamic host configuration protocol
lightweight directory access protocol
11. The process of establishing a standard for security
baselining
DAC
hardware based
dynamic host configuration protocol
12. NetBIOS port
TACACS
DHCP
139
group policies
13. LDAP authentication method not recommended
anonymous authentication
group policies
DAC
hardening
14. Contain possible security settings that can control one or multiple computers
23
simple authentication with security layer LDAPv3
25
security template
15. SAN stands for...
simple mail transport protocol
storage area network
49
service pack
16. NNTP stands for
baselining
network news transfer protocol
hardware based
hotfix
17. Four ways to implement group policies
group policies
local - site - domain - OU
endpoint based
open mail relay
18. Most restrictive access control method that uses security labels to control access
MAC
SNMP
hotfix
file and print sharing hardening
19. A cryptographic protocol that provides security for communications over networks such as the Internet
119
group policies
SSL
baselining
20. MAC stands for ____________ access control
SNMP
anonymous authentication
NNTP
mandatory
21. Microsoft software packages that contain one or more patches and can be applied without rebooting
simple network management protocol
hotfix
baselining
service pack
22. Telnet port
DAC
23
encrypted file system
139
23. NAS stands for...
simple mail transport protocol
NNTP
network attached storage
local - site - domain - OU
24. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
hardware based
simple mail transport protocol
RBAC
local - site - domain - OU
25. HTTP SSL port
500
RBAC
443
FTP hardening
26. DNS port
local - site - domain - OU
storage area network
139
53
27. Help to make sure devices meet security standards before they are allowed to connect to the network
least privileged principle
RBAC
NAC
DHCP hardening
28. Define security settings and user's desktop environment on group of computers
group policies
53
mandatory
RBAC
29. FTP ports
110
mandatory
20 and 21
baselining
30. kerberos port
RBAC
discretionary
88
110
31. A subnet on the network that separates the internal network from publicly exposed hosts
OS hardening
rule of least privilege
DMZ
DAC
32. Access control defined by roles or job functions
119
RBAC
49
DNS poisoning
33. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
patches
database hardening
DNS hardening
88
34. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
simple mail transport protocol
SSL
SNMP
139
35. RBAC stands for ____________ access control
SNMP
389
role-based
hardening
36. Label-based - hard coded access controls - at multiple levels - applied to all objects
MAC
25
system hardening
simple authentication
37. Access control method used by organizations that have a high turn over
23
DNS poisoning
DMZ
RBAC
38. An accumulated set of software updates or hotfixes from Microsoft
DNS hardening
service pack
RBAC
TACACS
39. SSH port
RBAC
local - site - domain - OU
22
MAC
40. SMTP stands for...
rule of least privilege
patches
network news transfer protocol
simple mail transport protocol
41. SMTP port
RBAC
25
139
service pack
42. OU stands for...
anonymous authentication
Terminal Access Controller Access-Control System
organizational unit
database hardening
43. TACACS port
49
patches
TACACS
NNTP
44. DNS stands for...
storage area network
domain name service
patches
baselining
45. IPSec port
service pack
TACACS
80
500
46. Protocol for assigning dynamic IP addresses to devices on a network
DHCP
NNTP
Terminal Access Controller Access-Control System
SSL
47. Defining the software and hardware components that can be used in an organization
simple mail transport protocol
DAC
configuration management policy
group policies
48. Issued by software vendors to fix bugs - address security issues or add functionality
patches
configuration management policy
hardening
NAC
49. SMTP port
DAC
443
20 and 21
25
50. SNMP port
161
FTP hardening
389
simple authentication