• No results found

DNS B Active Directory

C. X.500 D. eDirectory Answer: A Explanation:

DNS is one of the most popular directory services in use today. DNS can identify an individual computer system on the Internet. DNS, as you may recall, maps IP addresses to domain names and to individual systems..

Incorrect answers:

B: Active Directory Microsoft implemented a directory service called Active Directory (AD) with Windows 2000. For Microsoft products, AD is the backbone for all security, access, and network implementations from here on out. AD allows full control of

Actualtests.com - The Power of Knowing other directory services, such as LDAP. AD functions are managed by one or more servers. These servers are connected in a tree structure that allows information to be shared or controlled through the entire AD structure.

C: The X.500 standard was implemented by the International Telecommunications Union (ITU), an international standards group, for directory services in the late 1980s. The X.500 directory structure was the basis for later models of directory structure, such as LDAP. The major problem in the industry in implementing a full-blown X.500 structure revolved around the complexity of the implementation. Novell was one of the first manufacturers to implement X.500 in its NetWare NDS product.

D: eDirectory is the backbone for Novell networks. eDirectory stores information on all system resources, users, and any other relevant information about systems attached to a NetWare server. eDirectory is an upgrade and replacement for NDS, and it has gained wide acceptance in the community.

Reference:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p. 243.

QUESTION 297:

Which of the following definitions refers to DNS?

A. It is a standardized directory access protocol that allows queries to be made of directories.

B. It is the backbone for all security, access, and network implementations from here on out.

C. It was implemented by the International Telecommunications Union (ITU). D. It can identify an individual computer system on the Internet.

Answer: D

Explanation:

DNS is one of the most popular directory services in use today. DNS can identify an individual computer system on the Internet. DNS, as you may recall, maps IP addresses to domain names and to individual systems.

Incorrect answers: A: This refers to LDAP

B: This refers to Active Directory C: This refers to X.500

References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p. 243.

QUESTION 298:

Choose the mechanism (standard) that is similar to SSLv3 (Secure Sockets Layer version 3).

Actualtests.com - The Power of Knowing A. TLS (Transport Layer Security).

B. MPLS (Multi-Protocol Label Switching).

C. SASL (Simple Authentication and Security Layer). D. MLS (Multi-Layer Switching).

Answer: A

Explanation:

Transport Layer Security is an end-to-end encryption protocol that is similar to and based on SSL version 3.0 except it uses stronger encryption, and not entirely interoperable. It is specified in ISO 10736 as part of the transport layer in a protocol stack;defined in RFC 2246.

Incorrect answers:

B: MPLS (Multi-Protocol Label Switching) is not similar to SSLv3.

C: Strong authentication over LDAP v3 is provided through Simple Authentication and Security Layer (SASL) communications defined in RFC 2222. This is not similar to SSLv3

D: Multi-Layer Switching is not the same as SSLv3. Reference:

Microsoft Corporation with Andy Ruth & Kurt Hudson, Security+ Certification Training Kit e-Book, Microsoft Press, Redmond, 2003, Chapter 8, Lesson 2

QUESTION 299:

You work as the security administrator at Certkiller .com. The Certkiller .com network must be configured to allow LDAP (Lightweight Directory Access Protocol) traffic.

Which ports must you open on the firewall to allow LDAP traffic?

A. Open ports 389 and 636 B. Open ports 389 and 139 C. Open ports 636 and 137 D. Open ports 137 and 139

Answer: A

Explanation:

The 'well known' LDAP ports are 389 for LDAP and 636 for LDAP SSL. Incorrect answers:

B: Port 139 is the NetBIOS session service port.

C: NetBIOS services occurs via ports 137, 138, and 139 D: Port 139 is the NetBIOS session service port.

References:

Actualtests.com - The Power of Knowing Sybex, 2004, p. 64

http://www.iana.org/assignments/port-numbers

QUESTION 300:

Choose the terminology that correctly refers to the start (top) of a LDAP (Lightweight Directory Access Protocol) directory.

A. Head B. Root C. Top D. Tree Answer: B Explanation:

LDAP directories are arranged as trees. The top of the hierarchy is called the LDAP root. Below the topmost 'root' node, country information appears, followed by entries for companies, states or national organizations. Next comes entries for organizational units, such as branch offices and departments. Finally we locate individuals, which in X.500 and LDAP include people, shared resources such as printers, and documents. An LDAP directory server thus makes it possible for a corporate user to find the information resources she needs anywhere on the enterprise network.

Incorrect answers:

A: The top of the hierarchy is called the root and not the head. C: This top is known as the root.

D: The whole directory is arranged as trees. And the top is called the root. Reference:

Microsoft Corporation with Andy Ruth & Kurt Hudson, Security+ Certification Training Kit e-Book, Microsoft Press, Redmond, 2003, Chapter 8, Lesson 2

http://www.intranetjournal.com/foundation/ldap.shtml

QUESTION 301:

Choose the terminology that correctly refers to the way in which the LDAP (Lightweight Directory Access Protocol) directory is structured.

A. As linked lists. B. As trees. C. As stacks. D. As queues. Answer: B Explanation:

Actualtests.com - The Power of Knowing based from an object-orientated access model built to directory enabled networking (DEN) standards.

The top of the hierarchy is called the LDAP root. The LDAP root server creates the hierarchy and the rest of the structure (and resources) branch out from that location. LDAP uses objects to represent computers, user accounts, shared resources, services, and so on.

Reference:

Microsoft Corporation with Andy Ruth & Kurt Hudson, Security+ Certification Training Kit e-Book, Microsoft Press, Redmond, 2003, Chapter 8, Lesson 2

QUESTION 302:

Which of the following statements are true regarding Vulnerabilities and Sniffing?

A. FTP is a protocol, a client, and a server. B. Security was based on the honor system.

C. As discussed earlier, SSH is a program that allows connections to be secured by encrypting the session between the client and the server.

D. The user ID and password are not encrypted and are subject to packet capture.

Answer: D

Explanation:

File sharing is accomplished by storing files on an assigned location on the server or workstation. When files are stored on a workstation, the connection is referred to as a peer-to-peer connection. The assigned location is typically a subdirectory located on one of the disk drives on the server or another workstation. In an FTP connection, a file can be uploaded from a client using the PUT command. A download with FTP is

accomplished using the GET command. Most modern servers and applications allow an application program to access shared files at the record level.

Incorrect answers:

A: This refers to FTP Connections B: This refers to Blind FTP/Anonymous C: This refers to FTP Secure

References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p. 135

QUESTION 303:

Which of the following definitions fit correctly to SSH?

A. It supports encapsulation in a single point-to-point environment

B. It was created by Cisco as a method of creating tunnels primarily for dial-up connections

Actualtests.com - The Power of Knowing D. It is a tunneling protocol originally designed for UNIX systems.

Answer: D

Explanation:

Secure Shell (SSH) is a tunneling protocol originally designed for UNIX systems. SSH uses encryption to establish a secure connection between two systems. SSH also provides security equivalent programs such as Telnet, FTP, and many of the other

communications-oriented programs under UNIX. Incorrect answers:

A: This refers to PPTP B:This refers to L2F C: This refers to L2TP References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p 122-125.

QUESTION 304:

Which of the following is not a tunneling protocol, but it is used in conjunction with tunneling protocols? A. PPTP B. L2F C. L2TP D. IPSec Answer: Explanation:

IPSec (Internet Protocol Security) is not a tunneling protocol, but it is used in conjunction with tunneling protocols. IPSec is oriented primarily toward LAN-to-LAN connections, rather than dial-up connections. IPSec provides secure authentication and encryption of data and headers.

Incorrect answers:

A: PPTP supports encapsulation in a single point-to-point environment. PPTP

encapsulates and encrypts PPP packets. This makes PPTP a favorite low-end protocol for networks. The negotiation between the two ends of a PPTP connection is done in the clear. Once the negotiation is performed, the channel is encrypted

B: L2F was created by Cisco as a method of creating tunnels primarily for dial-up

connections. L2F is similar in capability to PPP and should not be used over WANs. L2F does provide authentication, but it does not provide encryption.

C: Relatively recently, Microsoft and Cisco agreed to combine their respective tunneling protocols into one protocol: the Layer Two Tunneling Protocol (L2TP). L2TP is a hybrid of PPTP and L2F. L2TP is primarily a point-to-point protocol. L2TP supports multiple network protocols and can be used in networks besides TCP/IP. L2TP works over IPX,

Actualtests.com - The Power of Knowing SNA, and IP.

References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p 122-125.

QUESTION 305:

Which of the following definitions fit correctly to IPSec?

A. It supports encapsulation in a single point-to-point environment

B. It was created by Cisco as a method of creating tunnels primarily for dial-up connections

C. It is primarily a point-to-point protocol

D. It is not a tunneling protocol, but it is used in conjunction with tunneling protocols.

Answer: D

Explanation:

IPSec (Internet Protocol Security) is not a tunneling protocol, but it is used in conjunction with tunneling protocols. IPSec is oriented primarily toward LAN-to-LAN connections, rather than dial-up connections. IPSec provides secure authentication and encryption of data and headers.

Incorrect answers: A: This refers to PPTP B:This refers to L2F C: This refers to L2TP References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p 122-125.

QUESTION 306:

Which of the following definitions fit correctly to L2F?

A. It supports encapsulation in a single point-to-point environment

B. It was created by Cisco as a method of creating tunnels primarily for dial-up connections

C. It is primarily a point-to-point protocol

D. It is a tunneling protocol originally designed for UNIX systems.

Answer: B

Explanation:

L2F was created by Cisco as a method of creating tunnels primarily for dial-up

connections. L2F is similar in capability to PPP and should not be used over WANs. L2F does provide authentication, but it does not provide encryption.

Actualtests.com - The Power of Knowing Incorrect answers: A: This refers to PPTP C:This refers to L2TP D: This refers to SSH References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p 122-125.

QUESTION 307:

Which of the following definitions fit correctly to L2TP?

A. It supports encapsulation in a single point-to-point environment

B. It was created by Cisco as a method of creating tunnels primarily for dial-up connections

C. It is primarily a point-to-point protocol

D. It is a tunneling protocol originally designed for UNIX systems.

Answer: C

Explanation:

Relatively recently, Microsoft and Cisco agreed to combine their respective tunneling protocols into one protocol: the Layer Two Tunneling Protocol (L2TP). L2TP is a hybrid of PPTP and L2F. L2TP is primarily a point-to-point protocol. L2TP supports multiple network protocols and can be used in networks besides TCP/IP. L2TP works over IPX, SNA, and IP.

Incorrect answers: A: This refers to PPTP B:This refers to L2F D: This refers to SSH References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Sybex, Alameda, 2004, p 122-125.

QUESTION 308:

Choose the protocol that is most vulnerable to packet sniffing attacks aimed at intercepting username and password information.

A. SSH (Secure Shell)

B. SSL (Secure Sockets Layer) C. FTP (File Transfer Protocol)

D. HTTPS (Hypertext Transfer Protocol over Secure Sockets Layer)

Actualtests.com - The Power of Knowing Explanation:

FTP has a major flaw. The user ID and password are not encrypted and are subject to packet capture.

Incorrect answers:

A: Secure Shell (SSH) is a replacement for rlogin in Unix/Linux that includes security. rlogin allowed one host to establish a connection with another with no real security being employed ;SSH replaces it with slogin and digital certificates.

B: Secure Socket Layer (SSL) is a protocol that secures messages by operating between the Application layer (HTTP) and the Transport layer.

D: Secure Hypertext Transfer Protocol (S-HTTP) is a protocol used for secure communications between a web server and a web browser.

References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004, p 130

QUESTION 309:

You work as the security administrator at Certkiller .com. You must secure the FTP (File Transfer Protocol) server by allowing only authorized users access to it. How will you accomplish this task?

A. Allow blind authentication.

B. Do not allow anonymous authentication. C. Redirect FTP to a different port.

D. Provide the FTP server's address to only those users that must access it.

Answer: B

Explanation:

Early FTP servers did not offer security. Security was based on the honor system. Most logons to an FTP site used the anonymous logon. By convention, the logon ID was the user's email address, and the password was anonymous.

Incorrect answers:

A: Blind FTP is synonymous to anonymous FTP and allowing blind FTP is not the way to ensure that only authorized users access the FTP server.

C: Redirection will not prevent unauthorized access.

D: This is impractical as it will not prevent unauthorized access. Reference:

Microsoft Corporation with Andy Ruth & Kurt Hudson, Security+ Certification Training Kit e-Book, Microsoft Press, Redmond, 2003, Chapter 11, Lesson 1

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004, p 137

QUESTION 310:

Actualtests.com - The Power of Knowing anonymous FTP (File Transfer Protocol) read/write access.

Choose the important factor which you should consider and be aware of.

A. The upload and download directory for each user. B. The detailed logging information for each user. C. The storage and distribution of unlicensed software.

D. Less server connections and network bandwidth utilization.

Answer: C

Explanation:

Anonymous FTP is based on good faith. But if it used to take advantage of the non-secure logon, then answer C would seem to be the best answer.

Incorrect answers:

A: This is the legitimate use of an FTP site. B

: You need to have a logon for any FTP (without anonymous access enabled) you want to access.

D: This is not the answer. Reference:

Microsoft Corporation with Andy Ruth & Kurt Hudson, Security+ Certification Training Kit e-Book, Microsoft Press, Redmond, 2003, Chapter 11, Lesson 1

QUESTION 311:

You work as the security administrator at Certkiller .com. You are investigating the consequences of networks attacks aimed at FTP servers.

Which of the following states the aim of a FTP (File Transfer Protocol) bounce attack?

A. The attack aims to exploit a buffer overflow vulnerability on the FTP server. B. The attack aims to reboot the FTP server.

C. The attack aims to store and distribute malicious code.

D. The attack aims to establish a connection between the FTP server and another computer.

Answer: D

Explanation:

FTP bounce is a method that attackers use to protect their identity when scanning your network, by bouncing the scan off a vulnerable FTP server. In some implementations of FTP daemons, the PORT command can be misused to open a connection to a port of the attacker's choosing on a machine that the attacker could not have accessed directly. Incorrect answers:

A: In an attack, the buffer overflow condition can be used to damage files, change data, acquire confidential information, or execute code on the target computer. The attacker

Actualtests.com - The Power of Knowing might even be able to gain full control over the target system.

B: Rebooting the server is not the aim of a FTP bounce attack.

C: The primary aim of a FTP bounce attack is to establish an illegitimate connection not storing and distributing malicious code. This is secondary.

References:

http://www.cert.org/advisories/CA-1997-27.html

Microsoft Corporation with Andy Ruth & Kurt Hudson, Security+ Certification Training Kit e-Book, Microsoft Press, Redmond, 2003, Chapter 11, Lesson 1

QUESTION 312:

You work as the security administrator at Certkiller .com. The Certkiller .com network must be configured to allow FTP (File Transfer Protocol) traffic. Which ports must you open on the firewall to allow FTP traffic?

A. Open ports 20 and 21. B. Open ports 25 and 110. C. Open ports 80 and 443. D. Open ports 161 and 162.

Answer: A

Explanation:

In basic FTP operations, port 20 is the data port and port 21 is the command port. Incorrect answers:

B: Port 25 is for SMTP. Port 110 is for POP3

C: Port 80 is used by HTTP (used for the World Wide Web) and port 443 for HTTPS (used for secure web connections)

D: Ports 161 and 162 are used for SNMP messages and traps respectively. References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004, p 64

http://www.iana.org/assignments/port-numbers

QUESTION 313:

Choose the ports that are used to access the FTP (File Transfer Protocol) protocol.

A. Ports 80 and 443. B. Ports 20 and 21. C. Ports 21 and 23. D. Ports 20 and 80. Answer: B Explanation:

Actualtests.com - The Power of Knowing In basic FTP operations, port 20 is the data port and port 21 is the command port. Incorrect answers:

A: Port 80 is used by HTTP (used for the World Wide Web) and port 443 for HTTPS (used for secure web connections)

C: Port 23 is used by Telnet. D: Port 80 is used by HTTP. References:

Mike Pastore and Emmett Dulaney, Security+ Study Guide, 2nd Edition, Alameda, Sybex, 2004, p 64

http://www.iana.org/assignments/port-numbers

QUESTION 314:

Which of the following Wireless standards has a maximum transmission speed of 54 Mbps? (Chose all that apply)

A. 802.11 B. 802.11a C. 802.11b D. 802.11g

Answer: B, D

IEEE 802.11a and IEEE 802.11g has transmission speeds of up to 54 Mbps. Incorrect Answers:

A: IEEE 802.11, the original standard for wireless networks operates at a maximum

Related documents