SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
20 and 21
hardware based
simple authentication
network news transfer protocol
2. Users granted least amount of access possible that enables them to complete their required work
least privileged principle
rule of least privilege
Terminal Access Controller Access-Control System
simple network management protocol
3. kerberos port
443
dynamic host configuration protocol
network news transfer protocol
88
4. FTP ports
role-based
database hardening
80
20 and 21
5. A cryptographic protocol that provides security for communications over networks such as the Internet
group policies
SSL
least privileged principle
network access control
6. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
open mail relay
FTP hardening
file and print sharing hardening
DNS hardening
7. Centrally managed NAC method requiring installation of software agents on each network client
domain name service
endpoint based
DAC
discretionary
8. DNS port
configuration baselines
simple mail transport protocol
baselining
53
9. SMTP port
TACACS
hardening
25
mandatory
10. Standard setup used when configuring machines - provide a starting point and consistent setup
FTP hardening
encrypted file system
configuration baselines
20 and 21
11. Label-based - hard coded access controls - at multiple levels - applied to all objects
SSL
MAC
mandatory
organizational unit
12. Making the OS less vulnerable to threats
simple authentication
MAC
hardening
dynamic host configuration protocol
13. NNTP stands for
MAC
network news transfer protocol
storage area network
mandatory
14. Defining the software and hardware components that can be used in an organization
security template
NAC
discretionary
configuration management policy
15. NNTP port
49
service pack
119
patches
16. Contain possible security settings that can control one or multiple computers
OS hardening
configuration management policy
security template
hardening
17. DHCP stands for...
simple mail transport protocol
MAC
dynamic host configuration protocol
53
18. A subnet on the network that separates the internal network from publicly exposed hosts
DMZ
endpoint based
RBAC
baselining
19. Transferable access controls applied and controlled by the object owner
110
88
DAC
lightweight directory access protocol
20. The process of establishing a standard for security
baselining
infrastructure based
500
49
21. File system that offers limited security and was primarily designed for desktop use
domain name service
rule of least privilege
DNS poisoning
FAT
22. OU stands for...
configuration management policy
organizational unit
22
88
23. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
simple authentication with security layer LDAPv3
NNTP
group policies
least privileged principle
24. RBAC stands for ____________ access control
role-based
23
80
MAC
25. SAN stands for...
storage area network
simple authentication
DAC
open mail relay
26. Microsoft software packages that contain one or more patches and can be applied without rebooting
simple mail transport protocol
NAC
22
hotfix
27. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
FTP hardening
infrastructure based
DNS poisoning
TACACS
28. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
configuration baselines
baselining
simple authentication with security layer LDAPv3
DHCP hardening
29. IPSec port
patches
500
dynamic host configuration protocol
NAC
30. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
25
OS hardening
139
TACACS
31. TACACS port
simple mail transport protocol
49
RBAC
MAC
32. Issued by software vendors to fix bugs - address security issues or add functionality
system hardening
139
local - site - domain - OU
patches
33. Four ways to implement group policies
80
local - site - domain - OU
role-based
53
34. MAC stands for ____________ access control
MAC
network access control
DNS hardening
mandatory
35. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
storage area network
RBAC
network news transfer protocol
group policies
36. Access control defined by roles or job functions
389
RBAC
49
baselining
37. Most restrictive access control method that uses security labels to control access
open mail relay
MAC
110
discretionary
38. Start with the most secure environment - the loosen the controls as needed
DHCP hardening
rule of least privilege
DAC
23
39. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
discretionary
hardware based
OS hardening
dynamic host configuration protocol
40. HTTP port
80
simple authentication with security layer LDAPv3
23
encrypted file system
41. LDAP authentication method that uses clear text
DAC
simple authentication
DNS poisoning
23
42. TACACS
SSL
least privileged principle
hardware based
Terminal Access Controller Access-Control System
43. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
DAC
simple authentication
encrypted file system
25
44. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
baselining
open mail relay
SNMP
domain name service
45. SMTP stands for...
DHCP hardening
RBAC
simple mail transport protocol
configuration baselines
46. Protocol for assigning dynamic IP addresses to devices on a network
TACACS
DHCP
rule of least privilege
53
47. Locking down the system
443
system hardening
rule of least privilege
domain name service
48. LDAP port
system hardening
389
discretionary
simple authentication
49. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
open mail relay
Terminal Access Controller Access-Control System
22
DNS hardening
50. Help to make sure devices meet security standards before they are allowed to connect to the network
MAC
discretionary
25
NAC