SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Standard setup used when configuring machines - provide a starting point and consistent setup
configuration baselines
SNMP
SSL
rule of least privilege
2. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
OS hardening
simple mail transport protocol
hardware based
configuration baselines
3. LDAP port
database hardening
110
389
23
4. SNMP stand for...
simple authentication
simple network management protocol
RBAC
simple mail transport protocol
5. Most restrictive access control method that uses security labels to control access
DHCP hardening
MAC
RBAC
25
6. DNS stands for...
NAC
domain name service
open mail relay
TACACS
7. Transferable access controls applied and controlled by the object owner
DAC
open mail relay
NAC
22
8. DHCP stands for...
SSL
DHCP
dynamic host configuration protocol
RBAC
9. NAS stands for...
network attached storage
group policies
22
DAC
10. DNS port
configuration management policy
53
database hardening
service pack
11. SMTP port
25
hotfix
lightweight directory access protocol
443
12. Label-based - hard coded access controls - at multiple levels - applied to all objects
service pack
Terminal Access Controller Access-Control System
MAC
25
13. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
SNMP
DHCP hardening
anonymous authentication
25
14. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
119
NNTP
hardening
DMZ
15. Start with the most secure environment - the loosen the controls as needed
500
22
rule of least privilege
25
16. MAC stands for ____________ access control
mandatory
discretionary
49
NAC
17. HTTP port
patches
80
OS hardening
security template
18. IPSec port
443
RBAC
500
discretionary
19. NetBIOS port
network access control
139
161
DNS poisoning
20. Access control method used by organizations that have a high turn over
RBAC
mandatory
group policies
DHCP hardening
21. POP3 port
DAC
80
110
53
22. Making the OS less vulnerable to threats
hardening
MAC
rule of least privilege
23
23. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
389
TACACS
open mail relay
dynamic host configuration protocol
24. A subnet on the network that separates the internal network from publicly exposed hosts
119
DMZ
110
23
25. Telnet port
DMZ
baselining
139
23
26. Microsoft software packages that contain one or more patches and can be applied without rebooting
simple authentication with security layer LDAPv3
SNMP
configuration baselines
hotfix
27. Access control defined by roles or job functions
RBAC
25
SSL
TACACS
28. A cryptographic protocol that provides security for communications over networks such as the Internet
20 and 21
SSL
open mail relay
group policies
29. SNMP port
open mail relay
configuration baselines
mandatory
161
30. Protocol for assigning dynamic IP addresses to devices on a network
DHCP
rule of least privilege
storage area network
simple authentication with security layer LDAPv3
31. NNTP port
119
mandatory
SNMP
simple mail transport protocol
32. Defining the software and hardware components that can be used in an organization
configuration management policy
DAC
443
20 and 21
33. SMTP stands for...
RBAC
OS hardening
database hardening
simple mail transport protocol
34. An accumulated set of software updates or hotfixes from Microsoft
80
161
local - site - domain - OU
service pack
35. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
80
baselining
database hardening
mandatory
36. Help to make sure devices meet security standards before they are allowed to connect to the network
database hardening
53
NAC
open mail relay
37. DAC stands for ____________ access control
domain name service
simple network management protocol
discretionary
mandatory
38. Define security settings and user's desktop environment on group of computers
group policies
rule of least privilege
25
network news transfer protocol
39. Recommended LDAP authentication
Terminal Access Controller Access-Control System
simple mail transport protocol
simple authentication with security layer LDAPv3
security template
40. TACACS port
SNMP
mandatory
49
MAC
41. FTP ports
network access control
baselining
20 and 21
group policies
42. Issued by software vendors to fix bugs - address security issues or add functionality
FAT
lightweight directory access protocol
Terminal Access Controller Access-Control System
patches
43. Centrally managed NAC method requiring installation of software agents on each network client
configuration management policy
endpoint based
49
139
44. NAC stands for
storage area network
simple authentication
network access control
161
45. TACACS
49
Terminal Access Controller Access-Control System
infrastructure based
mandatory
46. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
service pack
25
DNS poisoning
RBAC
47. NAC method where organizations must run the current hardware and operating systems
110
Terminal Access Controller Access-Control System
file and print sharing hardening
infrastructure based
48. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
DNS hardening
rule of least privilege
443
Terminal Access Controller Access-Control System
49. EFS stands for...
49
110
infrastructure based
encrypted file system
50. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
anonymous authentication
open mail relay
20 and 21
organizational unit