A. 18 USC 2701

B. 18 USC 2511

C. 18 USC 2319

D. 18 USC 1029

Answer 1: D. 18 USC 1029 makes it a crime to knowingly and intentionally use cellular telephones that are altered or have been cloned. Answer A is incorrect because 18 USC 2701 addresses access to electronic information, answer B is incorrect because 18 USC 2511 addresses interception of data, and answer C is incorrect because 18 USC 2319 addresses copyright issues.

Question 2: You have been reading about SSIDs and how they are transmitted in clear text. Which of the following is correct about SSIDs?

A. SSIDs are up to 32 bits and are not case sensitive.

B. SSIDs are up to 24 bits and are case sensitive.

C. SSIDs are up to 32 bits and are case sensitive.

D. SSIDs are up to 24 bits and are not case sensitive.

Answer 2: C. The SSID is a 32-bit character identifier attached to the header of wireless packets that are sent over a wireless LAN. Because the SSID can be sniffed in clear text from the packet, it does not provide any real security. The SSID is used to differentiate one network from another and is used to identify the network. Answer A is incorrect because SSIDs are case sensitive, answer B is incorrect because SSIDs are 32 bits, not 24, and answer D is incorrect because, as mentioned, they are case sensitive and are not 24 bits.

Question 3: You have been asked to install and turn on WEP on an access point that is used in the shipping area. Which of the following statements is true?

A. The MAC addresses can still be sniffed.

B. The IP header can still be sniffed.

C. FTP passwords will still be seen in clear text if a hacker sniffs the wireless network.

D. WEP will make the network secure from DoS attacks.

Answer 3: A. WEP encrypts the wireless packet but not the header; therefore, the MAC addresses will still be visible. Answer B is incorrect, as the IP header will be encrypted. Answer C is incorrect, as the FTP data will be encrypted. Answer D is incorrect, as WEP will not make the network secure from DoS attacks. A hacker can still jam the network or even launch a deauthentication attack against one of the clients.

Question 4: Which of the following does not provide server authentication?

A. EAP-TLS

B. PEAP

C. LEAP

D. EAP-MD5

Answer 4: D. EAP-MD5 does not provide server authentication. Answers A, B, and C are incorrect because they do provide this capability. LEAP does so by password hash, and PEAP and EAP-TLS provide authentication with public key technology.

Question 5: You would like to scan for Bluetooth devices that are used in the office. Which of the following tools would work best?

A. Airsnort

B. Aeropeek

C. RedFang

D. NetStumbler

Answer 5: C. RedFang is used to scan for Bluetooth devices. Answer A is incorrect because Airsnort is an 802.11 wireless tool. Answer B is incorrect, as Aeropeek is a Windows 802.11 wireless sniffer. Answer D is incorrect because Netstumbler is used to find 802.11 wireless devices, not Bluetooth devices.

Linux Q&A