« SimplyMEPIS 6.5
pdfinfo - Portable Document Format (PDF) document information extractor »

Questions and Answers 12

By Pavs on September 13th, 2007





Question 1: During a physical assessment of an organization, you noticed that there is only an old dilapidated wood fence around the organization’s R&D facility. As this building is a key asset, what height chain-link fence should you recommend be installed to deter a determined intruder?

A. Four foot

B. Five foot

C. Six foot

D. Eight foot

Answer 1: D. Eight feet should deter a determined intruder. Three strands of topping of barbed wire can be added and pointed out at a 45° angle. Answers A, B, and C are incorrect. Four and five feet are only causal deterrent, whereas 6 foot is hard to climb. Eight feet is needed for effective security.

Question 2: You have been asked if there are any tools that can be used to run a covert channel over ICMP. What should you suggest?

A. Netbus

B. Loki

C. Fpipe

D. Sid2User

Answer 2: B. Loki is a covert channel tool that can be used to set up a covert server and client that will transmit information in ICMP ping packets. Answers A, C, and D are incorrect because Netbus is a Trojan, Fpipe is a port redirection tool, and Sid2User is used for enumeration.

Question 3: This DoS tool is characterized by the fact that it sends packets with the same source and destination address. What is it called?

A. Ping of death

B. Smurf

C. Land

D. Targa

Answer 3: C. A Land DoS sends packets with the same source and destination address. Answers A, B, and D are incorrect, as a ping of death uses large ICMP ping packets, Smurf is targeted to a broadcast address, and Targa is a DDOS attack.

Question 4: Your sniffing attempts have been less than successful, as the targeted LAN is using a switched network. Luckily, a co-worker introduced you to Cain. What type of attack can Cain perform against switches to make your sniffing attempt more successful?

A. MAC flooding

B. ICMP redirect

C. ARP poisoning

D. IP forwarding

Answer 4: C. There are two basic methods to overcome the functionality of a switch. One of these is ARP poisoning. Answers A, B, and D are incorrect because MAC flooding, ICMP redirection, and IP forwarding are not supported by Cain.

Question 5: Which of the following uses the same key to encode and decode data?

A. RSA

B. El Gamel

C. ECC

D. RC5

Answer 5: D. RC5 is a block-based symmetric cipher in which the number of rounds can range from 0255, and the key can range from 0 to 2040 bits in size. Answers A, B, and C are incorrect because they are examples of asymmetric algorithms.

Related Posts:


Subscribe without commenting


Leave a Reply

Note: Any comments are permitted only because the site owner is letting you post, and any comments will be removed for any reason at the absolute discretion of the site owner.