NEW QUESTION 1
Where are user accounts and passwords stored in a decentralized privilege management environment?

• A. On a central authentication serve
• B. On more than one serve
• C. On each serve
• D. On a server configured for decentralized privilege managemen

Answer: C

NEW QUESTION 2
During a scheduled evacuation training session the following events took place in this order:
* 1. Evacuation process began by triggering the building fire alarm.
* 2a. The meeting point leader arrived first at the designated meeting point and immediately began making note of who was and was not accounted for.
* 2b. Stairwell and door monitors made it to their designated position to leave behind a box of flashlights and prop the stairway doors open with a garbage can so employees can find exits and dispose of food and beverages.
2c. Special needs assistants performed their assigned responsibility to help employees out that require special assistance.
* 3. The safety warden communicated with the meeting point leader via walkie talkie to collect a list of missing personnel and communicated this information back to the searchers.
* 4. Searchers began checking each room and placing stick-it notes on the bottom of searched doors to designate which areas were cleared.
* 5. All special need assistants and their designated wards exited the building.
* 6. Searchers complete their assigned search pattern and exit with the Stairwell/door monitors.
Given this sequence of events, which role is in violation of its expected evacuation tasks?

• A. Safety warden
• B. Stairwell and door monitors
• C. Meeting point leader
• D. Searchers
• E. Special needs assistants

Answer: B

NEW QUESTION 3
How is a Distributed Denial of Service (DDOS) attack distinguished from a regular DOS attack?

• A. DDOS attacks are perpetrated by many distributed host
• B. DDOS affects many distributed target
• C. Regular DOS focuses on a single route
• D. DDOS affects the entire Interne

Answer: A

NEW QUESTION 4
When are Group Policy Objects (GPOs) NOT applied automatically to workstations?

• A. At 90-minute intervals
• B. At logon
• C. Every time Windows Explorer is launched
• D. At boot-up

Answer: C

NEW QUESTION 5
Your organization is developing a network protection plan. No single aspect of your network seems more important than any other. You decide to avoid separating your network into segments or categorizing the systems on the network. Each device on the network is essentially protected in the same manner as all other devices.
This style of defense-in-depth protection is best described as which of the following?

• A. Uniform protection
• B. Threat-oriented
• C. Information-centric
• D. Protected enclaves

Answer: A

NEW QUESTION 6
Which of the following is an advantage of an Intrusion Detection System?

• A. It is a mature technolog
• B. It is the best network securit
• C. It never needs patchin
• D. It is a firewall replacemen

Answer: A

NEW QUESTION 7
What is the unnoticed theft of sensitive data from a laptop owned by an organization's CEO an example of in information warfare?

• A. Non-zero sum game
• B. Win-win situation
• C. Zero-sum game
• D. Symmetric warfare

Answer: D

NEW QUESTION 8
In addition to securing the operating system of production honey pot hosts, what is recommended to prevent the honey pots from assuming the identities of production systems that could result in the denial of service for legitimate users?

• A. Deploy the honey pot hosts as physically close as possible to production system
• B. Deploy the honey pot hosts in an unused part of your address spac
• C. Deploy the honey pot hosts to only respond to attack
• D. Deploy the honey pot hosts on used address spac

Answer: B

NEW QUESTION 9
What is TRUE about Workgroups and Domain Controllers?

• A. By default all computers running Windows 2008 can only form Domain Controllers not Workgroups
• B. Workgroups are characterized by higher costs while Domain Controllers by lower costs
• C. You cannot have stand-alone computers in the midst of other machines that are members of a domain
• D. Workgroup computers cannot share resources, only computers running on the same domain can
• E. You can have stand-alone computers in the midst of other machines that are members of a domai

Answer: E

NEW QUESTION 10
An IT security manager is trying to quickly assess the risks associated with not implementing a corporate firewall system. What sort of risk assessment is most appropriate?

• A. Annualized Risk Assessment
• B. Qualitative risk assessment
• C. Quantitative risk assessment
• D. Technical Risk Assessment
• E. Iterative Risk Assessment

Answer: B

NEW QUESTION 11
A Host-based Intrusion Prevention System (HIPS) software vendor records how the Firefox Web browser interacts with the operating system and other applications, and identifies all areas of Firefox functionality. After collecting all the data about how Firefox should work, a database is created with this information, and it is fed into the HIPS software. The HIPS then monitors Firefox whenever it's in use. What feature of HIPS is being described in this scenario?

• A. Signature Matching
• B. Application Behavior Monitoring
• C. Host Based Sniffing
• D. Application Action Modeling

Answer: B

NEW QUESTION 12
Which of the following statements about DMZ are true?
Each correct answer represents a complete solution. Choose two.

• A. It is the boundary between the Internet and a private networ
• B. It is an anti-virus software that scans the incoming traffic on an internal networ
• C. It contains company resources that are available on the Internet, such as Web servers and FTP server
• D. It contains an access control list (ACL).

Answer: AC

NEW QUESTION 13
Which of the following services resolves host name to IP Address?

• A. Computer Browser
• B. DHCP
• C. DNS
• D. WINS

Answer: C

NEW QUESTION 14
You are doing some analysis of malware on a Unix computer in a closed test network. The IP address of the computer is 192.168.1.120. From a packet capture, you see the malware is attempting to do a DNS query for a server called iamabadserver.com so that it can connect to it. There is no DNS server on the test network to do name resolution. You have another computer, whose IP is 192.168.1.115, available on the test network that you would like for the malware connect to it instead. How do you get the malware to connect to that computer on the test network?

• A. You modify the HOSTS file on the computer you want the malware to connect to and add an entry that reads: 192.168.1.120 iamabadserver iamabadserver.com
• B. You modify the HOSTS file on the Unix computer your malware is running on and add an entry that reads: 192.168.1.115 iamabadserveriamabadserver.com
• C. You modify the HOSTS file on the Unix computer your malware is running on and add an entry that reads: 192.168.1.120 iamabadserver iamabadserver.com
• D. You modify the HOSTS file on the computer you want the malware to connect to and add an entry that reads: 192.168.1.115 iamabadserver iamabadserver.com

Answer: B

NEW QUESTION 15
You work as a Network Administrator for NetTech Inc. The company wants to encrypt its e-mails. Which of the following will you use to accomplish this?

• A. PPTP
• B. IPSec
• C. PGP
• D. NTFS

Answer: C

NEW QUESTION 16
......