1D0-571 Sample Questions Answers

The netstat command and a packet sniffer

The ps command and a network scanner

The ping command and User Manager

The iptables command and Windows desktop firewall

Enable stateful multi-layer inspection on the packet filter

Implement caching on the network proxy server

Enable authentication on the network proxy server

Implement a screening router on the network DMZ

It is a passive FTP session, which is easier for firewalls to process.

It is an active FTP session, which is necessary in order to support IPv6.

It is an extended passive FTP session, which is necessary to support IPv6.

It is an active FTP session, which is supported by all FTP clients.

An overview of the security policy and suggestions for the next response plan

Estimates of how much the attack cost the company, and a list of the applications used by the attacker

The time and date of the attack, and the names of employees who were contacted during the response

The network resources involved in the attack, and recommendations for thwarting future attacks

CGI scripts

Database connections

Flash or Silverlight animation files

LDAP servers

Kernel modules

Shared libraries

Boot sector files

System32 DLL files

A trojan has attacked the system.

A SQL injection attack has occurred.

A spyware application has been installed.

A root kit has been installed on the system.

Reinstall the LDAP service on the server so that it is updated and more secure.

Install an application that creates checksums of the contents on the hard disk.

Create a login script for the administrative account that records logins to a separate server.

Create a dummy administrator account on the system so that a potential hacker is distracted from the real login account.

Authentication databases, including directory servers

Intrusion detection systems, especially those placed on sensitive networks

Log files on firewall systems

Firewall settings for desktop systems

Application layer

Network layer

Session layer

Transport layer

A man-in-the-middle attack

A brute-force attack

A connection-hijacking attackC.A connection-hijacking attack

A spoofing attackD.A spoofing attack

Using a VLAN on a firewall to enable masquerading of private IP addresses

Prioritizing voice and video data to reduce congestion

Inspecting packets in all layers of the OSI/RM with a packet filter

Using Quality of Service (QoS) on a proxy-oriented firewall

- Buffer overflow

- Work with the Web developer to solve the problem

- SQL injection

- Work with a database administrator to solve the problem

- Denial of service

- Contact the organization that wrote the code for the Web server

- Man-in-the-middle attack

- Contact the company auditor

Data encrypted using symmetric-key encryption is subject to corruption during transport.

Symmetric-key encryption operates slower than asymmetric-key encryption.

Symmetric-key encryption does not provide the service of data confidentiality.

Keys created using symmetric-key encryption are difficult to distribute securely.

Brute force

Denial of service

Botnet

Buffer overflow