Which of the following is most likely to make systems vulnerable to MITM attacks?

Authentication misconfiguration on routers

Use of the wrong operating systems

Which of the following is the best way to protect your organization from revealing sensitive information through dumpster diving?

Teach employees the value of not disclosing restricted information over the telephone to unknown parties

Establish a policy requiring employees to change passwords every 30 to 60 days

Add a new firewall to the network

Shred all sensitive documentation

Which of the following is a best practice for network security procedures?

Regularly updating and patching systems

What is the main principle of cryptography?

To secure information through encoding

What is the primary purpose of developing security policies?

To establish rules and guidelines for network security

Which of the following is a weakness in WEP related to the IV?

The IV is only 24 bits in size, which makes it possible that two or more data frames will be transmitted with the same IV, thereby resulting in an IV collision that an attacker can use to determine information about the network.

The IV is a static value, which makes it relatively easy for an attacker to brute force the WEP key from captured traffic

The IV is transmitted in plaintext and can be easily seen in captured traffic.

There is no weakness in WEP related to the IV.

When you use Java, the JVM isolates the Java applet to a sandbox when it executes. What does this do to provide additional security?

This prevents the Java applet from communicating to servers other than the one from which it was downloaded.

This prevents the Java applet from accessing data on the client's hard drive

This prevents the Java applet from failing in such a way that the Java applet is unable to execute.

This prevents the Java applet from failing in such a way that it affects another application

To allow its employees remote access to the corporate network, a company has implemented a hardware VPN solution. Why is this considered a secure remote access solution?

Because a VPN uses encryption to make its data secure

Because only the company's employees will know the address to connect to in order to use the VPN.

Because VPNs use the Internet to transfer data.

Because a VPN uses compression to make its data secure.

What types of computers might you expect to find located on an intranet?

SQL 2000 servers and User workstations

Publicly accessible DNS servers and Public Web servers

Public Web servers and SQL 2000 servers

User workstations and Publicly accessible DNS servers

Josh has asked for a clarification of what a firmware update is. How could you briefly describe for him the purpose of firmware updates?

Firmware updates are control software- or BIOS-type updates that are installed to improve the functionality or extend the life of the device involved.

Firmware updates are device-specific command sets that must be upgraded to continue operation.

Firmware updates update the mechanical function of the device.

Firmware updates are minor fixes, and are not usually necessary

Your FTP server was just compromised. When you examine the settings, you find that the server allows Anonymous access. However, you know that this is a default condition in most FTP servers, and must dig further for the problem. Where else might you check?

Effective permissions for the anonymous access

Access permissions on server's file structure

You have downloaded a CD ISO image and want to verify its integrity. What should you do?

Create an MD5 sum and compare it to the MD5 sum listed where the image was downloaded

Burn the image and see if it works

Create an MD4 sum and compare it to the MD4 sum listed where the image was downloaded.

You are the first person to arrive at a crime scene. An investigator and crime scene technician arrive afterwards to take over the investigation. Which of the following tasks will the crime scene technician be responsible for performing?

Tag, bag, and inventory evidence.

Reestablish a perimeter as new evidence presents itself

Ensure that any documentation and evidence they possessed is handed over to the investigator.

You are manager of the IT department and have designed a new security policy that addresses the IT staff's responsibilities to users, equipment, and data. The policy only affects the IT staff. It deals with such issues as routine backups of data, network security changes, and audits of data on servers. Now that the new policy is written, which of the following should you do next?

Obtain authorization from senior management.

Publish the policy and make it available for all users to read.

Obtain authorization from other members of the IT staff.

Provide a copy of the policy to legal counsel, and have them review its content and wording.

Exam CNSA

Authored by widi jaelani

Information Technology (IT)

University

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

35 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 3 pts

Which is the most important reason for the removal of unused, unnecessary, or unneeded protocols, services, and applications?

Increased security

Increased performance

Less need for administration

Less machine resource use

MULTIPLE CHOICE QUESTION

30 sec • 3 pts

Why is network security important for organizations?

It increases network speed

It protects sensitive information

It reduces electricity usage

It simplifies network configurations

MULTIPLE CHOICE QUESTION

30 sec • 3 pts

Which of the following best describes 'encryption'?

Speeding up data transmission

Compressing data for storage

Creating user-friendly software

Converting data into a secure code

MULTIPLE CHOICE QUESTION

30 sec • 3 pts

The act of attempting to appear to be someone you're not in order to gain access to a system is known as which of the following?

Spoofing

DDoS

Replay

Sniffing

MULTIPLE CHOICE QUESTION

30 sec • 3 pts

Which term refers to the protection of networked systems from misuse or unauthorized access?

Network Optimization

Network Monitoring

Network Security

Network Analysis

MULTIPLE CHOICE QUESTION

30 sec • 3 pts

Which of the following is an example of a social engineering attack?

Firewall breach

Phishing

SQL Injection

Man-in-the-Middle attack

MULTIPLE CHOICE QUESTION

30 sec • 3 pts

Which of the following is considered an attack vector?

USB drive

Monitor

Keyboard

Printer

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

40 questions

Latihan Soal Sistem Komputer - Kelas 7

Quiz

•

7th Grade - University

40 questions

Kuis 1 technopreneurship

Quiz

•

University

33 questions

Thiết bị và giao thức mạng (Lớp 12)

Quiz

•

12th Grade - University

30 questions

THI TÌM HIỂU VỀ KĨ NĂNG SỐ CƠ BẢN

Quiz

•

6th Grade - University

30 questions

Empowerment Technologies Long Quiz

Quiz

•

12th Grade - University

35 questions

Kiến thức về thông tin và dữ liệu (Lớp 10)

Quiz

•

10th Grade - University

40 questions

Quiz Informatika Kelas VII

Quiz

•

7th Grade - University

40 questions

AI U1 and U2

Quiz

•

University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Information Technology (IT)

18 questions

Informative or Argumentative essay

Quiz

•

5th Grade - University

20 questions

Disney Trivia

Quiz

•

University

5 questions

Human Impacts: How Do People Disrupt Ecosystems?

Interactive video

•

4th Grade - University

7 questions

Human Body Systems Overview (Updated 2024)

Interactive video

•

11th Grade - University

20 questions

Context Clues

Quiz

•

KG - University

7 questions

Comparing Fractions

Interactive video

•

1st Grade - University

20 questions

10.4 Exponential Functions

Quiz

•

8th Grade - University

30 questions

PSYCH 250: Exam 3

Quiz

•

University

Exam CNSA

Which is the most important reason for the removal of unused, unnecessary, or unneeded protocols, services, and applications?

Why is network security important for organizations?

Which of the following best describes 'encryption'?

The act of attempting to appear to be someone you're not in order to gain access to a system is known as which of the following?

Which term refers to the protection of networked systems from misuse or unauthorized access?

Which of the following is an example of a social engineering attack?

Which of the following is considered an attack vector?

Which of the following is most likely to make systems vulnerable to MITM attacks?

Which of the following is the best way to protect your organization from revealing sensitive information through dumpster diving?

What type of threat involves exploiting software flaws to gain unauthorized access?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)