SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Telnet port
patches
NAC
network access control
23
2. Four ways to implement group policies
database hardening
80
local - site - domain - OU
group policies
3. SNMP stand for...
hardware based
simple network management protocol
119
DNS poisoning
4. SAN stands for...
DHCP hardening
110
storage area network
25
5. Standard setup used when configuring machines - provide a starting point and consistent setup
configuration baselines
dynamic host configuration protocol
DHCP hardening
encrypted file system
6. Help to make sure devices meet security standards before they are allowed to connect to the network
22
NAC
domain name service
25
7. FTP ports
20 and 21
500
storage area network
open mail relay
8. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
TACACS
88
DAC
organizational unit
9. Users granted least amount of access possible that enables them to complete their required work
500
least privileged principle
network access control
OS hardening
10. DNS stands for...
MAC
security template
DMZ
domain name service
11. NetBIOS port
FAT
88
139
dynamic host configuration protocol
12. Issued by software vendors to fix bugs - address security issues or add functionality
mandatory
hardening
patches
role-based
13. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
DHCP hardening
DNS hardening
139
discretionary
14. Start with the most secure environment - the loosen the controls as needed
rule of least privilege
20 and 21
DNS poisoning
storage area network
15. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
FAT
open mail relay
443
DNS poisoning
16. SSH port
SNMP
DAC
22
NAC
17. LDAP authentication method not recommended
baselining
dynamic host configuration protocol
anonymous authentication
encrypted file system
18. Access control method used by organizations that have a high turn over
patches
RBAC
mandatory
23
19. SMTP port
simple authentication with security layer LDAPv3
local - site - domain - OU
RBAC
25
20. MAC stands for ____________ access control
DHCP
mandatory
group policies
88
21. LDAP authentication method that uses clear text
system hardening
MAC
infrastructure based
simple authentication
22. OU stands for...
encrypted file system
organizational unit
database hardening
DAC
23. TACACS
RBAC
file and print sharing hardening
Terminal Access Controller Access-Control System
rule of least privilege
24. Microsoft software packages that contain one or more patches and can be applied without rebooting
389
hotfix
MAC
OS hardening
25. SMTP port
OS hardening
25
MAC
security template
26. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
DHCP hardening
rule of least privilege
TACACS
local - site - domain - OU
27. The process of establishing a standard for security
RBAC
TACACS
configuration management policy
baselining
28. A subnet on the network that separates the internal network from publicly exposed hosts
DMZ
88
161
storage area network
29. SNMP port
161
88
encrypted file system
NAC
30. Protocol for assigning dynamic IP addresses to devices on a network
hardening
DHCP
RBAC
rule of least privilege
31. NNTP stands for
security template
discretionary
DNS hardening
network news transfer protocol
32. SMTP stands for...
389
500
network access control
simple mail transport protocol
33. An accumulated set of software updates or hotfixes from Microsoft
service pack
DMZ
lightweight directory access protocol
group policies
34. NAS stands for...
139
88
network attached storage
23
35. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
DNS hardening
encrypted file system
group policies
patches
36. HTTP port
80
simple authentication with security layer LDAPv3
dynamic host configuration protocol
service pack
37. POP3 port
hotfix
anonymous authentication
110
local - site - domain - OU
38. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
RBAC
NNTP
FTP hardening
NAC
39. Locking down the system
system hardening
TACACS
FAT
least privileged principle
40. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
OS hardening
DAC
DAC
RBAC
41. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
encrypted file system
RBAC
hardware based
lightweight directory access protocol
42. Contain possible security settings that can control one or multiple computers
RBAC
security template
network attached storage
DHCP hardening
43. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
53
dynamic host configuration protocol
anonymous authentication
RBAC
44. Access control method that uses ACLs
110
simple authentication
rule of least privilege
DAC
45. kerberos port
88
dynamic host configuration protocol
MAC
80
46. A cryptographic protocol that provides security for communications over networks such as the Internet
SSL
139
hardening
RBAC
47. TACACS port
49
NNTP
MAC
configuration baselines
48. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
RBAC
DMZ
database hardening
22
49. Defining the software and hardware components that can be used in an organization
configuration management policy
FAT
lightweight directory access protocol
file and print sharing hardening
50. IPSec port
500
service pack
DMZ
80