SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Os Hardening
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Recommended LDAP authentication
88
DHCP
network attached storage
simple authentication with security layer LDAPv3
2. NAS stands for...
80
storage area network
network attached storage
NNTP
3. Bind MAC addresses of network devices to IP address - monitor logs - apply security patches - use IDS and strong authentication to detect rogue servers
DAC
DHCP hardening
service pack
49
4. SAN stands for...
lightweight directory access protocol
storage area network
25
system hardening
5. Enable and monitor logs - perform regular backups - use file encryption - enable account lockout and strong user name and password
endpoint based
file and print sharing hardening
22
dynamic host configuration protocol
6. Four ways to implement group policies
dynamic host configuration protocol
local - site - domain - OU
open mail relay
anonymous authentication
7. Issued by software vendors to fix bugs - address security issues or add functionality
53
RBAC
infrastructure based
patches
8. A remote authentication protocol used to communicate with an authentication server commonly used in UNIX networks.
hardware based
389
20 and 21
TACACS
9. NNTP stands for
network news transfer protocol
simple mail transport protocol
88
role-based
10. LDAP stands for...
lightweight directory access protocol
TACACS
RBAC
FAT
11. MAC stands for ____________ access control
configuration baselines
hardware based
RBAC
mandatory
12. NAC method where organizations must run the current hardware and operating systems
DNS poisoning
rule of least privilege
infrastructure based
configuration management policy
13. RBAC stands for ____________ access control
DAC
role-based
encrypted file system
DNS hardening
14. Centrally managed NAC method requiring installation of software agents on each network client
file and print sharing hardening
DAC
endpoint based
service pack
15. DNS port
group policies
database hardening
53
role-based
16. Access control method used by organizations that have a high turn over
least privileged principle
RBAC
DAC
file and print sharing hardening
17. Is a UDP-based network protocol - used mostly in network management systems to monitor network-attached devices for conditions that warrant administrative attention
file and print sharing hardening
53
SNMP
DAC
18. Disable default accounts and passwords - regular backups - enable auditing features - monitor user privileges - implement authentication for users and applications
local - site - domain - OU
RBAC
database hardening
system hardening
19. Define security settings and user's desktop environment on group of computers
389
simple network management protocol
DAC
group policies
20. Users granted least amount of access possible that enables them to complete their required work
88
DAC
DMZ
least privileged principle
21. DAC stands for ____________ access control
dynamic host configuration protocol
hardware based
domain name service
discretionary
22. Label-based - hard coded access controls - at multiple levels - applied to all objects
TACACS
MAC
DMZ
configuration baselines
23. Microsoft software packages that contain one or more patches and can be applied without rebooting
rule of least privilege
20 and 21
hotfix
service pack
24. A DNS server is fed altered or spoofed records that are retained and then duplicated elsewhere
DNS poisoning
security template
MAC
NNTP
25. Access control defined by roles or job functions
OS hardening
20 and 21
TACACS
RBAC
26. Protocol for assigning dynamic IP addresses to devices on a network
NAC
DHCP hardening
DHCP
DMZ
27. Misconfiguration of an email server that could allow it to be used by an attacker to spread spam
SSL
encrypted file system
open mail relay
20 and 21
28. TACACS port
49
dynamic host configuration protocol
least privileged principle
25
29. SMTP port
discretionary
configuration management policy
119
25
30. LDAP authentication method not recommended
network attached storage
anonymous authentication
local - site - domain - OU
lightweight directory access protocol
31. kerberos port
88
simple authentication
domain name service
110
32. FTP ports
20 and 21
DMZ
infrastructure based
MAC
33. Telnet port
23
NAC
infrastructure based
53
34. Contain possible security settings that can control one or multiple computers
database hardening
MAC
security template
49
35. Used to deliver news articles to users on the Internet - vulnerable to DoS attacks
DAC
25
hotfix
NNTP
36. SMTP port
hardening
domain name service
25
storage area network
37. EFS stands for...
DAC
23
encrypted file system
Terminal Access Controller Access-Control System
38. Defining the software and hardware components that can be used in an organization
DAC
FAT
infrastructure based
configuration management policy
39. A cryptographic protocol that provides security for communications over networks such as the Internet
SNMP
389
SSL
53
40. LDAP port
DAC
389
file and print sharing hardening
configuration baselines
41. OU stands for...
organizational unit
DHCP hardening
mandatory
500
42. NAC stands for
MAC
MAC
least privileged principle
network access control
43. TACACS
simple mail transport protocol
system hardening
local - site - domain - OU
Terminal Access Controller Access-Control System
44. Help to make sure devices meet security standards before they are allowed to connect to the network
configuration management policy
NAC
open mail relay
443
45. Allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network
hotfix
network news transfer protocol
role-based
TACACS
46. An accumulated set of software updates or hotfixes from Microsoft
DAC
dynamic host configuration protocol
80
service pack
47. Restrict zone transfers to designated servers - restrict users via ACLs who can query zone records - do not use recursive queries
organizational unit
88
DNS hardening
80
48. HTTP SSL port
NAC
443
DMZ
25
49. NAC method requiring installation of a network appliance to monitor network devices and limit connectivity should non compliant activity be detected
baselining
hardware based
DAC
RBAC
50. File system that offers limited security and was primarily designed for desktop use
DAC
443
NNTP
FAT
