Uncategorised

Question 1: What is a mantrap? Fire suppression device A logical access control mechanism A trusted security domain A double door facility used for physical access control Question 2: Which of the following is NOT considered a disaster? Hard drive crash Server maintenance Fire Hacker deleted critical files Question 3: …

Question 1: ISO 27035 describes incident management. True False Question 2: PCI DSS is a proprietary information security standard for organisations that handle cardholder data. True False Question 3: What is the acronym of GDPR? Generic Description Protection Regulatory General Data Protection Regulation General Description Protection Regulation General Data Protective …

Question 1: You should have a document that lists physical security is in place True False Question 2: What is NOT a primary reason for documenting your security activity and audits? To prove due diligence in case of litigation To provide information in case of any external or internal audit …

Question 1: Which of the following is NOT an example of a user password policy? Users may not keep copies of passwords in their office Passwords must be eight characters long Users may share passwords only with their assistants Passwords may not be shared with any employee Question 2: Passwords …

Question 1: What is the most common method of virus propagation? On infected floppy disks On infected CDs Through instant messaging attachments Through e-mail attachments Question 2: What is heuristic scanning? Scanning using a rules-based approach Scanning based on a virus definition file Scanning only system management areas (registry, boot …

Question 1: A Linux system has a repository of packages available to be installed on the system True False Question 2: What account lockout threshold does the NSA reccomends? 5 tries 3 tries 4 tries 5 tries Question 3: Which of the following best describes the registry? A relational database …

Question 1: Which of the following is a weakness in PPTP? Clear text passwords No encryption Used only with IP networks Not supported on most platforms Question 2: Which of the following is an important security feature in CHAP It periodically re-authenticates It uses 3DES encryption It is immune to …

Question 1: Which encryption algorithm uses a variable length symmetric key? RSA Blowfish DES PGP Question 2: Which of the following is a symmetric key system using blocks? RSA DES PGP Diffie-Hellman Question 3: What is the purpose of a certificate? To verify that software is virus free To guarantee …

Question 1: What is a profiling technique that monitors how applications use resources called? System monitoring Resource profiling Application monitoring Executable profiling Question 2: What is an attempt to attract intruders to a system setup for monitoring them called? Intrusion deterrence Intrusion detection Intrusion banishment Intrusion routing Question 3: Which …

Question 1: What type of firewall requires client applications to be authorised to connect? Screened gateway Stateful packet inspection Dual homed Application gateway Question 2: Which of the following is a combination of firewalls? Screened firewalls Router based firewalls Dual homed firewalls Bastion host firewalls Question 3: Which of the …