CCNA Discovery 4.0: Working at a Small-to-Medium Business or ISP – Chapter 8 Exam Answers

1) Identify three techniques used in social engineering. 
(Choose three.)
*	vishing
*	phishing
*	pretexting
	junk mailing

2) During a pretexting event, how is a target typically contacted?
	by e-mail
*	by phone
	in person
	through another person

3) While surfing the Internet, a user notices a box claiming a prize
   has been won. The user opens the box unaware that a program is being
   installed. An intruder now accesses the computer and retrieves 
   personal information. What type of attack occurred?
*	Trojan horse
	denial of service 

4) What is a major characteristic of a Worm?
 malicious software that copies itself into other executable programs
 tricks users into running the infected software
 a set of computer instructions that lies dormant until triggered by- 
    a specific event.
*exploits vulnerabilities with the intent of propagating itself-
    across a network

5) A flood of packets with invalid source-IP addresses requests a 
   connection on the network. The server busily tries to respond, 
   resulting in valid requests being ignored. What type of attack 
	Trojan horse
	brute force
	ping of death
*	SYN flooding

6) What type of advertising is typically annoying and associated with a
   specific website that is being visited?
*	popups
	tracking cookies  

7) What is a widely distributed approach to marketing on the Internet 
   that advertises to as many individual users as possible via IM or 
	brute force
*	spam
	tracking cookies

8) What part of the security policy states what applications and usages
    are permitted or denied?
	identification and authentication
	remote access
*	acceptable use
	incident handling 

9) Which statement is true regarding anti-virus software?
 Only e-mail programs need to be protected.
 Only hard drives can be protected.
*Only after a virus is known can an anti-virus update be created for it.
 Only computers with a direct Internet connection need it.

10) Which two statements are true concerning anti-spam software? 
    (Choose two.)
 Anti-spam software can be loaded on either the end-user PC or the
    ISP server, but not both.
*When anti-spam software is loaded, legitimate e-mail may be 
    classified as spam by mistake.
 Installing anti-spam software should be a low priority on the 
*Even with anti-spam software installed, users should be careful 
    when opening e-mail attachments.
 Virus warning e-mails that are not identified as spam via anti-spam 
    software should be forwarded to other users immediately. 

11) What term is used to describe a dedicated hardware device that 
    provides firewall services?
*	appliance-based

12) Which acronym refers to an area of the network that is accessible
    by both internal, or trusted, as well as external, or untrusted, 
    host devices?

13) Which statement is true about port forwarding within a Linksys 
    integrated router?
*	Only external traffic that is destined for specific internal- 
             ports is permitted. All other traffic is denied.
	Only external traffic that is destined for specific internal-
             ports is denied. All other traffic is permitted.
	Only internal traffic that is destined for specific external-
             ports is permitted. All other traffic is denied.
	Only internal traffic that is destined for specific external-
             ports is denied. All other traffic is permitted. 

14) To which part of the network does the wireless access point part-
    of a Linksys integrated router connect?
*	internal
	a network other than the wired network

 Refer to the graphic. What is the purpose of the Internet Filter 
 option of Filter IDENT (Port 113) on the Linksys integrated router?
	to require a user ID and password to access the router
*	to prevent outside intruders from attacking the router- 
           through the Internet
	to require a pre-programmed MAC address or IP address to- 
           access the router
	to disable tracking of internal IP addresses so they cannot-
           be spoofed by outside devices

16) What statement is true about security configuration on a Linksys-
    integrated router?
	A DMZ is not supported.
	The router is an example of a server-based firewall.
	The router is an example of an application-based firewall.
*	Internet access can be denied for specific days and times.

17) What environment would be best suited for a two-firewall network-
*	a large corporate environment
	a home environment with 10 or fewer hosts
	a home environment that needs VPN access
	a smaller, less congested business environment

18) What is one function that is provided by a vulnerability analysis-
	It provides various views of possible attack paths.
*	It identifies missing security updates on a computer.
	It identifies wireless weak points such as rogue access points.
	It identifies all network devices on the network that do not have a firewall installed.
	It identifies MAC and IP addresses that have not been authenticated on the network.

19) Many best practices exist for wired and wireless network security.-
    The list below has one item that is not a best practice. Identify the recommendation that is not a best practice for wired and wireless security.
	Periodically update anti-virus software.
	Be aware of normal network traffic patterns.
	Periodically update the host operating system.
	Activate the firewall on a Linksys integrated router.
	Configure login permissions on the integrated router.
*	Disable the wireless network when a vulnerability analysis is-
                being performed. 

20)  What best practice relates to wireless access point security?
	activation of a popup stopper
*	a change of the default IP address
	an update in the antivirus software definitions
	physically securing the cable between the access point and- 


 Refer to the graphic. In the Linksys Security menu, what does the SPI-
 Firewall Protection option Enabled provide?
	It prevents packets based on the application that makes the-
	It allows packets based on approved internal MAC or- 
        IP addresses.
*	It requires that packets coming into the router be responses-
        to internal host requests.
	It translates an internal address or group of addresses into-
        an outside, public address.

About fiki28

Saya tinggal di daerah Mojokerto, jawa timur, Indonesia. Bekerja di sebuah institusi pemerintahan sebagai teknisi komputer dan jaringan
This entry was posted in networking. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s