SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Most restrictive access control method that uses security labels to control access
network news transfer protocol
22
389
MAC
2. Issued by software vendors to fix bugs - address security issues or add functionality
patches
DNS poisoning
DAC
23
3. The process of establishing a standard for security
80
organizational unit
baselining
network attached storage
4. SSH port
22
system hardening
TACACS
hardening
5. A subnet on the network that separates the internal network from publicly exposed hosts
simple authentication with security layer LDAPv3
DMZ
Terminal Access Controller Access-Control System
SNMP
6. Recommended LDAP authentication
patches
simple authentication with security layer LDAPv3
hardening
110
7. LDAP port
NAC
configuration baselines
network attached storage
389
8. Locking down the system
patches
network news transfer protocol
least privileged principle
system hardening
9. Users granted least amount of access possible that enables them to complete their required work
least privileged principle
NNTP
network attached storage
simple authentication
10. Define security settings and user's desktop environment on group of computers
DNS hardening
group policies
hardening
file and print sharing hardening
11. Label-based - hard coded access controls - at multiple levels - applied to all objects
MAC
simple authentication with security layer LDAPv3
443
rule of least privilege
12. Help to make sure devices meet security standards before they are allowed to connect to the network
80
anonymous authentication
endpoint based
NAC
13. Standard setup used when configuring machines - provide a starting point and consistent setup
configuration baselines
encrypted file system
TACACS
file and print sharing hardening
14. Protocol for assigning dynamic IP addresses to devices on a network
DHCP
file and print sharing hardening
FAT
25
15. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
TACACS
lightweight directory access protocol
TACACS
FTP hardening
16. HTTP SSL port
infrastructure based
443
DAC
encrypted file system
17. EFS stands for...
encrypted file system
DHCP
hardening
dynamic host configuration protocol
18. HTTP port
service pack
25
80
storage area network
19. DHCP stands for...
dynamic host configuration protocol
service pack
FTP hardening
rule of least privilege
20. NAC stands for
DAC
RBAC
network access control
20 and 21
21. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
anonymous authentication
Terminal Access Controller Access-Control System
110
TACACS
22. POP3 port
hardware based
110
organizational unit
simple authentication
23. Access control method that uses ACLs
database hardening
DMZ
DAC
110
24. LDAP authentication method not recommended
simple mail transport protocol
SNMP
network news transfer protocol
anonymous authentication
25. A cryptographic protocol that provides security for communications over networks such as the Internet
SSL
MAC
encrypted file system
group policies
26. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
DNS hardening
simple authentication
database hardening
network access control
27. Four ways to implement group policies
local - site - domain - OU
20 and 21
NNTP
organizational unit
28. SMTP port
25
security template
NAC
simple authentication with security layer LDAPv3
29. Microsoft software packages that contain one or more patches and can be applied without rebooting
hotfix
FTP hardening
110
119
30. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
anonymous authentication
DNS poisoning
DHCP
local - site - domain - OU
31. kerberos port
DAC
DNS poisoning
88
RBAC
32. OU stands for...
lightweight directory access protocol
DHCP hardening
110
organizational unit
33. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
endpoint based
RBAC
DAC
lightweight directory access protocol
34. SAN stands for...
DNS poisoning
patches
NAC
storage area network
35. Defining the software and hardware components that can be used in an organization
configuration management policy
baselining
endpoint based
DHCP hardening
36. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
storage area network
139
80
file and print sharing hardening
37. FTP ports
DHCP
22
20 and 21
hardening
38. Centrally managed NAC method requiring installation of software agents on each network client
discretionary
endpoint based
139
network attached storage
39. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
MAC
Terminal Access Controller Access-Control System
file and print sharing hardening
OS hardening
40. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
simple network management protocol
network access control
TACACS
NAC
41. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
NNTP
baselining
DNS hardening
88
42. NAS stands for...
network attached storage
discretionary
80
NNTP
43. LDAP stands for...
DAC
lightweight directory access protocol
NNTP
simple authentication
44. NNTP port
119
20 and 21
88
161
45. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
mandatory
MAC
25
SNMP
46. SMTP port
simple mail transport protocol
security template
25
configuration baselines
47. IPSec port
500
DAC
domain name service
anonymous authentication
48. An accumulated set of software updates or hotfixes from Microsoft
configuration management policy
security template
DAC
service pack
49. Start with the most secure environment - the loosen the controls as needed
file and print sharing hardening
389
rule of least privilege
500
50. Making the OS less vulnerable to threats
53
database hardening
hardening
DNS hardening