Sabtu, 26 Maret 2011

IT Essential v4.1 Chapter 9

1. What must be done to ensure that the anti-virus software on a computer is able to detect and eradicate the most recent viruses?
*Download the latest signature files on a regular basis.
2. Which type of software is downloaded onto the computer of a user without the knowledge of the user and causes information about various products to be displayed on the user’s monitor?
*adware
3. Which threat to security uses traffic from zombie computers to overwhelm servers?
*DDoS
4. Which two items can be downloaded from the Microsoft website to help protect Windows XP? (Choose two.)
*service packs
*security patches
5. Which two characteristics describe a worm? (Choose two.)
*Is self-replicating.
*Travels to new computers without any intervention or knowledge of the user.
6. What is the best method for a company to secure data being transmitted across the Internet between remote sites?
*Use computers secured with smartcard authentication.
7. What is the preferred wireless encryption technique if the wireless clients support it?
*WPA
8. A fingerprint reader is an example of which security technology?
*biometric
9. Which type of authentication is evidenced by the use of a small chip on a card that contains user identification data such as bank account numbers and digital signatures?
*smart card
10. Which type of program causes banners and ads to appear on the desktop without any user intervention?
*adware
11. A technician has downloaded the latest Windows XP updates from the Microsoft website. What should the technician do before installing the updates?
*Create a restore point.
12. An attacker has managed to decode the encrypted messages of a wireless network. The network uses Windows XP and Cisco equipment. The security protocol that is used is WEP with 64-bit encryption. Which action can be recommended to the technician for securing the network?
*Upgrade to the LEAP wireless security protocol.
13. An employee for a small company inadvertently allows a visitor to see their username and password. At home, the visitor then uses this information to gain access to the company network. This is an example of what type of threat?
*social engineering
14. Where is the safest place to store backups?
*locked server room
15. A bank is upgrading the hard drives in a server. What should be done to the old hard drives to permanently remove any confidential data?
*Destroy the hard drives with a hammer.
16. Which two statements are true about username and password standards? (Choose two.)
*The username naming convention should be kept simple.
*Rules about password expiration and lockout should be defined.
17. When setting up a new wireless access point, which basic security measure should be taken?
*Disable SSID broadcast.
18. Which three suggestions are good security password policies that a company or individual should follow? (Choose three.)
*Password length should be limited to five characters.
*Passwords should have an expiration period.
*A mix of letters, numbers, and other characters should be used.
19. An attacker claiming to be a bank representative contacts a potential victim via e-mail and requests disclosure of vital account information. Which security attack is being implemented?
*phishing
20. A network administrator is looking for a technology that includes both hardware and software authentication. Which technology could the administrator use?
*Trusted Platform Module (TPM)
21. Which statement accurately describes the WEP standard?
*WEP is a first generation security standard for wireless communication.
22. What are two examples of malware? (Choose two.)
*spyware
*grayware
23. Which three security storage features are supported by the TPM hardware module? (Choose three.)
*encryption keys
*digital certificates
*passwords
24. A financial organization is donating computers to a local charity. What is the best method to remove all data from the hard drives in the computers?
*Use data wiping software and delete any hard drive partitions.
25. Which wireless security technology is a good choice when using Cisco equipment in conjunction with operating systems such as Windows and Linux?
*LEAP
26. Which best practice should be included in a password protection policy?
*Implement lockout rules upon consecutive unsuccessful attempts at accessing the system.
27. Which is the best procedure to secure a laptop left at the office while the user is away for an extended period of time?
*Place the laptop in a locked security cage designed to store computer equipment.

Tidak ada komentar:

Posting Komentar