NEW QUESTION 1
You ask your system administrator to verify user compliance with the corporate policies on password strength, namely that all passwords will have at least one numeral, at least one letter, at least one special character and be 15 characters long. He comes to you with a set of compliance tests for use with an offline password cracker. They are designed to examine the following parameters of the password:
* they contain only numerals
* they contain only letters
* they contain only special characters
* they contain only letters and numerals
" they contain only letters and special characters
* they contain only numerals and special characters
Of the following, what is the benefit to using this set of tests?

• A. They are focused on cracking passwords that use characters prohibited by the password policy
• B. They find non-compliant passwords without cracking compliant password
• C. They are focused on cracking passwords that meet minimum complexity requirements
• D. They crack compliant and non-compliant passwords to determine whether the current policy is strong enough

Answer: B

NEW QUESTION 2
Which of the following tools is used to configure, control, and query the TCP/IP network interface parameters?

• A. NSLOOKUP
• B. IPCONFIG
• C. ARP
• D. IFCONFIG

Answer: D

NEW QUESTION 3
What is a security feature available with Windows Vista and Windows 7 that was not
present in previous Windows operating systems?

• A. Data Execution Prevention (DEP)
• B. User Account Control (UAC)
• C. Encrypting File System (EFS)
• D. Built-in IPSec Client

Answer: B

NEW QUESTION 4
There is not universal agreement on the names of the layers in the TCP/IP networking model. Which of the following is one of the functions of the bottom layer which is sometimes called the Network Access or Link Layer?

• A. Provides end-to-end data delivery service for user applications
• B. Handles the routing of the data packets over the network
• C. Manages IP addressing and encryption for data packets
• D. Defines the procedures for interfacing with Ethernet devices

Answer: D

NEW QUESTION 5
CORRECT TEXT
Fill in the blank with the correct answer to complete the statement below.
The permission is the minimum required permission that is necessary for a user to enter a directory and list its contents.

• A.

Answer: Read

NEW QUESTION 6
Which of the following SIP methods is used to setup a new session and add a caller?

• A. ACK
• B. BYE
• C. REGISTER
• D. INVITE
• E. CANCEL

Answer: D

NEW QUESTION 7
Which of the following terms refers to the process in which headers and trailers are added around user data?

• A. Encapsulation
• B. Authentication
• C. Authorization
• D. Encryption

Answer: A

NEW QUESTION 8
SSL session keys are available in which of the following lengths?

• A. 40-bit and 128-bi
• B. 64-bit and 128-bi
• C. 128-bit and 1,024-bi
• D. 40-bit and 64-bi

Answer: A

NEW QUESTION 9
You work as a Network Administrator for McNeil Inc. You are installing an application. You want to view the log file whenever a new entry is added to the /var/log/messages log file. Which of the following commands will you use to accomplish this?

• A. TAIL -show /var/log/messages
• B. TAIL -f /var/log/messages
• C. TAIL -50 /var/log/messages
• D. TAIL -view /var/log/messages

Answer: B

NEW QUESTION 10
Which of the following attack vectors are addressed by Xinetd and TCP Wrappers?

• A. Outsider attack from network
• B. Outsider attack from a telephone
• C. Insider attack from local network
• D. Attack from previously installed malicious code
• E. A and B
• F. A and C
• G. B and D
• H. C and D

Answer: B

NEW QUESTION 11
Which of the following authentication methods are used by Wired Equivalent Privacy (WEP)? Each correct answer represents a complete solution. Choose two.

• A. Anonymous authentication
• B. Mutual authentication
• C. Open system authentication
• D. Shared key authentication

Answer: CD

NEW QUESTION 12
Which of the following statements about Network Address Translation (NAT) are true? Each correct answer represents a complete solution. Choose two.

• A. It reduces the need for globally unique IP addresse
• B. It allows external network clients access to internal service
• C. It allows the computers in a private network to share a global, ISP assigned address to connect to the Interne
• D. It provides added security by using Internet access to deny or permit certain traffic from the Bastion Hos

Answer: AC

NEW QUESTION 13
You work as an Administrator for McRoberts Inc. The company has a Linux-based network. You are logged in as a non-root user on your client computer. You want to delete all files from the /garbage directory. You want that the command you will use should prompt for the root user password. Which of the following commands will you use to accomplish the task?

• A. rm -rf /garbage*
• B. del /garbage/*.*
• C. rm -rf /garbage* /SU
• D. su -c "RM -rf /garbage*"

Answer: D

NEW QUESTION 14
Which Defense-in-Depth model involves identifying various means by which threats can become manifest and providing security mechanisms to shut them down?

• A. Vector-oriented
• B. Uniform protection
• C. Information centric defense
• D. Protected enclaves

Answer: A

NEW QUESTION 15
What defensive measure could have been taken that would have protected the confidentiality of files that were divulged by systems that were compromised by malware?

• A. Ingress filtering at the host level
• B. Monitoring for abnormal traffic flow
• C. Installing file integrity monitoring software
• D. Encrypting the files locally when not in use

Answer: D

NEW QUESTION 16
......