SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. HTTP port
DAC
80
443
DAC
2. A cryptographic protocol that provides security for communications over networks such as the Internet
RBAC
25
SSL
service pack
3. The process of establishing a standard for security
group policies
20 and 21
baselining
simple mail transport protocol
4. Access control method used by organizations that have a high turn over
110
simple authentication
RBAC
DAC
5. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
MAC
simple mail transport protocol
open mail relay
NNTP
6. DAC stands for ____________ access control
DMZ
service pack
simple authentication with security layer LDAPv3
discretionary
7. Locking down the system
139
domain name service
Terminal Access Controller Access-Control System
system hardening
8. Issued by software vendors to fix bugs - address security issues or add functionality
25
patches
network news transfer protocol
119
9. NAS stands for...
389
network attached storage
443
infrastructure based
10. Help to make sure devices meet security standards before they are allowed to connect to the network
25
NAC
49
network news transfer protocol
11. Start with the most secure environment - the loosen the controls as needed
rule of least privilege
DMZ
security template
infrastructure based
12. Transferable access controls applied and controlled by the object owner
DAC
role-based
least privileged principle
network attached storage
13. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
SNMP
DHCP hardening
FTP hardening
anonymous authentication
14. DHCP stands for...
FAT
119
80
dynamic host configuration protocol
15. An accumulated set of software updates or hotfixes from Microsoft
file and print sharing hardening
DAC
service pack
role-based
16. LDAP port
database hardening
patches
389
configuration baselines
17. SSH port
22
DHCP
dynamic host configuration protocol
lightweight directory access protocol
18. kerberos port
88
local - site - domain - OU
NAC
domain name service
19. POP3 port
161
110
139
FAT
20. A subnet on the network that separates the internal network from publicly exposed hosts
DMZ
organizational unit
443
DNS poisoning
21. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
DHCP hardening
23
open mail relay
patches
22. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
23
network attached storage
TACACS
hardening
23. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
endpoint based
NAC
DNS hardening
dynamic host configuration protocol
24. Defining the software and hardware components that can be used in an organization
dynamic host configuration protocol
configuration management policy
TACACS
RBAC
25. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
mandatory
anonymous authentication
NNTP
simple mail transport protocol
26. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
88
119
TACACS
20 and 21
27. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
FTP hardening
least privileged principle
infrastructure based
configuration baselines
28. Define security settings and user's desktop environment on group of computers
FTP hardening
group policies
simple network management protocol
443
29. Four ways to implement group policies
local - site - domain - OU
RBAC
infrastructure based
simple authentication with security layer LDAPv3
30. File system that offers limited security and was primarily designed for desktop use
simple network management protocol
25
anonymous authentication
FAT
31. IPSec port
dynamic host configuration protocol
500
role-based
group policies
32. NetBIOS port
443
389
local - site - domain - OU
139
33. LDAP authentication method not recommended
database hardening
139
anonymous authentication
lightweight directory access protocol
34. Contain possible security settings that can control one or multiple computers
security template
open mail relay
DAC
network attached storage
35. Making the OS less vulnerable to threats
hardening
RBAC
500
encrypted file system
36. SMTP port
group policies
rule of least privilege
network attached storage
25
37. MAC stands for ____________ access control
mandatory
baselining
161
OS hardening
38. Standard setup used when configuring machines - provide a starting point and consistent setup
security template
DMZ
configuration baselines
53
39. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
simple network management protocol
RBAC
file and print sharing hardening
389
40. FTP ports
group policies
security template
389
20 and 21
41. Most restrictive access control method that uses security labels to control access
domain name service
dynamic host configuration protocol
endpoint based
MAC
42. LDAP stands for...
lightweight directory access protocol
service pack
119
SNMP
43. TACACS
RBAC
119
storage area network
Terminal Access Controller Access-Control System
44. SMTP port
25
mandatory
infrastructure based
TACACS
45. LDAP authentication method that uses clear text
simple authentication
139
local - site - domain - OU
110
46. Users granted least amount of access possible that enables them to complete their required work
encrypted file system
least privileged principle
simple mail transport protocol
110
47. HTTP SSL port
SNMP
443
domain name service
DHCP hardening
48. NAC stands for
database hardening
group policies
configuration baselines
network access control
49. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
service pack
NAC
simple mail transport protocol
database hardening
50. Access control defined by roles or job functions
DMZ
389
20 and 21
RBAC
