SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. NetBIOS port
security template
DAC
53
139
2. LDAP port
389
20 and 21
simple authentication
role-based
3. IPSec port
500
configuration baselines
DNS hardening
DMZ
4. NNTP port
119
RBAC
80
simple network management protocol
5. LDAP authentication method that uses clear text
simple authentication
49
FTP hardening
25
6. Four ways to implement group policies
local - site - domain - OU
storage area network
simple authentication with security layer LDAPv3
RBAC
7. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
hardware based
139
least privileged principle
network attached storage
8. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
group policies
119
DNS poisoning
DHCP
9. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
hardening
simple mail transport protocol
500
TACACS
10. LDAP authentication method not recommended
TACACS
23
anonymous authentication
53
11. Reduce the possibility of a breach by locking down the file system - controlling software installation and use - limiting access - disabling unnecessary services and applying patches -
OS hardening
storage area network
rule of least privilege
NNTP
12. SNMP port
119
RBAC
161
TACACS
13. File system that offers limited security and was primarily designed for desktop use
DAC
FAT
Terminal Access Controller Access-Control System
anonymous authentication
14. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
TACACS
49
MAC
119
15. Access control method used by organizations that have a high turn over
hardware based
mandatory
TACACS
RBAC
16. Start with the most secure environment - the loosen the controls as needed
20 and 21
simple authentication
domain name service
rule of least privilege
17. SSH port
22
53
group policies
network attached storage
18. DNS port
53
22
RBAC
49
19. Access control method that uses ACLs
simple authentication
domain name service
DNS hardening
DAC
20. DNS stands for...
domain name service
TACACS
OS hardening
storage area network
21. Defining the software and hardware components that can be used in an organization
encrypted file system
configuration management policy
domain name service
network access control
22. SMTP port
Terminal Access Controller Access-Control System
25
anonymous authentication
DNS poisoning
23. Highly configurable - discretionary - job based access control - more flexible that MAC - more precise that groups
RBAC
DMZ
mandatory
DAC
24. HTTP port
configuration management policy
MAC
80
500
25. RBAC stands for ____________ access control
baselining
role-based
RBAC
DAC
26. Protocol for assigning dynamic IP addresses to devices on a network
DAC
baselining
DHCP
22
27. The process of establishing a standard for security
least privileged principle
baselining
endpoint based
mandatory
28. NNTP stands for
network news transfer protocol
119
endpoint based
storage area network
29. TACACS
storage area network
Terminal Access Controller Access-Control System
DAC
open mail relay
30. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
FTP hardening
NNTP
25
FAT
31. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
DNS hardening
simple mail transport protocol
NNTP
88
32. Issued by software vendors to fix bugs - address security issues or add functionality
lightweight directory access protocol
patches
OS hardening
88
33. HTTP SSL port
Terminal Access Controller Access-Control System
119
443
dynamic host configuration protocol
34. OU stands for...
OS hardening
organizational unit
simple mail transport protocol
RBAC
35. NAS stands for...
network attached storage
hardware based
TACACS
endpoint based
36. DAC stands for ____________ access control
hardware based
database hardening
service pack
discretionary
37. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
DHCP hardening
161
SNMP
role-based
38. Access permissions applied by the owner of an object using ACLs - commonly found on PCs
25
DAC
TACACS
domain name service
39. A subnet on the network that separates the internal network from publicly exposed hosts
RBAC
group policies
simple network management protocol
DMZ
40. Centrally managed NAC method requiring installation of software agents on each network client
DAC
mandatory
simple authentication with security layer LDAPv3
endpoint based
41. NAC stands for
network access control
group policies
25
configuration baselines
42. SAN stands for...
storage area network
FAT
hotfix
least privileged principle
43. Standard setup used when configuring machines - provide a starting point and consistent setup
database hardening
SSL
configuration baselines
hotfix
44. Define security settings and user's desktop environment on group of computers
139
group policies
organizational unit
network attached storage
45. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
25
DNS hardening
file and print sharing hardening
security template
46. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
database hardening
configuration baselines
119
system hardening
47. SMTP port
configuration baselines
security template
organizational unit
25
48. Isolate directories - place server in DMZ - disallow anonymous access - audit logs - and review contents for unauthorized material
22
20 and 21
23
FTP hardening
49. SNMP stand for...
49
simple network management protocol
network news transfer protocol
storage area network
50. A cryptographic protocol that provides security for communications over networks such as the Internet
configuration baselines
DMZ
network attached storage
SSL
