SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. DNS port
53
DMZ
NNTP
mandatory
2. Issued by software vendors to fix bugs - address security issues or add functionality
encrypted file system
patches
25
DNS poisoning
3. File system that offers limited security and was primarily designed for desktop use
TACACS
FAT
119
configuration baselines
4. HTTP port
network access control
80
configuration management policy
OS hardening
5. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
hardware based
OS hardening
23
lightweight directory access protocol
6. SNMP stand for...
open mail relay
DHCP
139
simple network management protocol
7. Access control defined by roles or job functions
MAC
443
RBAC
group policies
8. Telnet port
system hardening
patches
23
80
9. EFS stands for...
hardening
MAC
DHCP hardening
encrypted file system
10. Locking down the system
endpoint based
161
hotfix
system hardening
11. SMTP port
DNS hardening
25
DAC
mandatory
12. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
hardware based
DNS poisoning
FTP hardening
hardening
13. LDAP authentication method not recommended
domain name service
20 and 21
simple network management protocol
anonymous authentication
14. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
NAC
simple mail transport protocol
hardening
SNMP
15. The process of establishing a standard for security
simple network management protocol
MAC
baselining
domain name service
16. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
RBAC
SSL
file and print sharing hardening
simple authentication
17. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
simple mail transport protocol
network news transfer protocol
open mail relay
23
18. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
119
DMZ
hardening
DHCP hardening
19. MAC stands for ____________ access control
DNS poisoning
mandatory
configuration management policy
DHCP hardening
20. DHCP stands for...
RBAC
25
hardware based
dynamic host configuration protocol
21. HTTP SSL port
OS hardening
443
configuration baselines
80
22. NetBIOS port
RBAC
139
110
service pack
23. Defining the software and hardware components that can be used in an organization
configuration management policy
local - site - domain - OU
OS hardening
DAC
24. NAC stands for
network access control
80
configuration management policy
network attached storage
25. IPSec port
infrastructure based
group policies
500
161
26. OU stands for...
file and print sharing hardening
RBAC
organizational unit
least privileged principle
27. RBAC stands for ____________ access control
lightweight directory access protocol
OS hardening
role-based
TACACS
28. kerberos port
88
OS hardening
FAT
23
29. NAC method where organizations must run the current hardware and operating systems
389
simple mail transport protocol
Terminal Access Controller Access-Control System
infrastructure based
30. Recommended LDAP authentication
simple authentication with security layer LDAPv3
simple network management protocol
mandatory
service pack
31. SMTP stands for...
TACACS
DAC
open mail relay
simple mail transport protocol
32. TACACS
DNS poisoning
SNMP
161
Terminal Access Controller Access-Control System
33. LDAP port
389
80
group policies
simple authentication with security layer LDAPv3
34. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
network attached storage
TACACS
25
lightweight directory access protocol
35. A cryptographic protocol that provides security for communications over networks such as the Internet
RBAC
service pack
hardware based
SSL
36. Standard setup used when configuring machines - provide a starting point and consistent setup
configuration baselines
23
baselining
network access control
37. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
161
rule of least privilege
database hardening
DMZ
38. Help to make sure devices meet security standards before they are allowed to connect to the network
NAC
DAC
FAT
139
39. Access control method that uses ACLs
88
configuration baselines
DAC
SSL
40. NAS stands for...
network attached storage
NNTP
TACACS
rule of least privilege
41. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
mandatory
RBAC
hardening
discretionary
42. LDAP authentication method that uses clear text
simple authentication
MAC
configuration baselines
DNS hardening
43. DNS stands for...
OS hardening
domain name service
DMZ
configuration management policy
44. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
161
DAC
simple network management protocol
file and print sharing hardening
45. Centrally managed NAC method requiring installation of software agents on each network client
network access control
file and print sharing hardening
endpoint based
FAT
46. Protocol for assigning dynamic IP addresses to devices on a network
encrypted file system
NAC
storage area network
DHCP
47. An accumulated set of software updates or hotfixes from Microsoft
service pack
lightweight directory access protocol
443
23
48. DAC stands for ____________ access control
119
139
RBAC
discretionary
49. TACACS port
organizational unit
discretionary
49
161
50. FTP ports
open mail relay
discretionary
local - site - domain - OU
20 and 21