Security + Exams Questions 167 (G) Part 4 Q76-Q99
Authored by Rehan Ahmed
Computers
12th Grade
Used 6+ times
AI Actions
Add similar questions
Adjust reading levels
Convert to real-world scenario
Translate activity
More...
Content View
Student View
24 questions
Show all answers
1.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
After a recent vulnerability scan, a security engineer needs to harden the routers within the corporate network. Which of the following is the most appropriate to disable?
Console access
Routing protocols
VLANs
Web-based administration
Answer explanation
Disabling web-based administration is crucial for hardening routers, as it reduces the attack surface by preventing unauthorized remote access. Other options like console access and routing protocols are necessary for network functionality.
2.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
A security administrator needs a method to secure data in an environment that includes some form of checks so track any changes. Which of the following should the administrator set up to achieve this goal?
SPF
GPO
NAC
FIM
Answer explanation
FIM (File Integrity Monitoring) is designed to track changes to files and data, providing checks to secure data integrity. This makes it the best choice for the administrator's needs.
3.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
An administrator is reviewing a single server's security logs and discovers the following: Which of the following best describes the action captured in this log file?
Brute-force attack
Privilege escalation
Failed password audit
Forgotten password by the user
Answer explanation
The log indicates multiple failed login attempts, characteristic of a brute-force attack where an attacker tries various passwords to gain unauthorized access.
4.
MULTIPLE SELECT QUESTION
30 sec • 1 pt
A security engineer is implementing FDE for all laptops in an organization. Which of the following are the most important for the engineer to consider as part of the planning process? (Choose two.)
Key escrow
Digital signatures
Data tokenization
Public key management
TPM presence
Answer explanation
Key escrow is crucial for recovering encryption keys, while TPM presence ensures hardware-based security for FDE. Both are essential for effective full disk encryption implementation.
5.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
A security analyst scans a company's public network and discovers a host is running a remote desktop that can be used to access the production network. Which of the following changes should the security analyst recommend?
Changing the remote desktop port to a non-standard number
Setting up a VPN and placing the jump server inside the firewall
Using a proxy for web connections from the remote desktop server
Connecting the remote server to the domain and increasing the password length
Answer explanation
Setting up a VPN and placing the jump server inside the firewall provides a secure access method, protecting the production network from unauthorized access, unlike merely changing the port or other options.
6.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
An enterprise has been experiencing attacks focused on exploiting vulnerabilities in older browser versions with well-known exploits. Which of the following security solutions should be configured to best provide the ability to monitor and block these known signature-based attacks?
ACL
DLP
IDS
IPS
Answer explanation
Explanation:
IPS: An IPS actively monitors network traffic and can detect malicious packets based on predefined signatures, allowing it to not only identify attacks but also actively block them from reaching the target system. This makes it ideal for preventing attacks that utilize well-known exploits.
7.
MULTIPLE CHOICE QUESTION
30 sec • 1 pt
Security controls in a data center are being reviewed to ensure data is properly protected and that human life considerations are included. Which of the following best describes how the controls should be set up?
Remote access points should fail closed.
Logging controls should fail open.
Safety controls should fail open.
Logical security controls should fail closed.
Answer explanation
Safety controls should fail open to ensure that in the event of a failure, human life is prioritized and access is maintained for emergency situations, while other controls can be designed to fail closed for security.
Access all questions and much more by creating a free account
Create resources
Host any resource
Get auto-graded reports
Continue with Google
Continue with Email
Continue with Classlink
Continue with Clever
or continue with
Microsoft
%20(1).png)
Apple
Others
Already have an account?
