1
Q
Least privilege
A
- Rights and permissions should be set to the bare
minimum
– You only get exactly what’s needed to
complete your objective - All user accounts must be limited
– Applications should run with minimal privileges - Don’t allow users to run with administrative privileges
– Limits the scope of malicious behavior
2
Q
Access Control Lists (ACLs)
A
- Used to allow or deny traffic
– Also used for NAT, QoS, etc.
– Commonly used on the ingress or egress of
a router interface - ACLs evaluate on certain criteria
– Source IP, Destination IP,
– TCP port numbers, UDP port numbers, ICMP - Deny or permit
– What happens when an ACL matches the traffic? - Also used in operating systems
– Allow or deny access to the filesystem
3
Q
Multi-factor authentication
A
- More than one factor
– Something you are, something you have,
something you know, somewhere you are,
something you do - Can be expensive
– Separate hardware tokens
4
Q
Software tokens
A
- Authenticator application
– Pseudo-random number generator
– Can’t guess it
– Changes constantly - Saves money
– Free smartphone applications
– No separate device to lose
5
Q
Short message service (SMS)
A
- Text messaging
– Includes more than text these days - Login factor can be sent via SMS to a
predefined phone number
– Provide username and password
– Phone receives an SMS
– Input the SMS code into the login form - Security issues exist
– Phone number can be reassigned to
a different phone
– SMS messages can be intercepted
– SMS spoofing
6
Q
Voice call
A
- A phone call provides the token
– The computer is talking to you
– “Your code is 1-6-2-5-1-7.” - Similar disadvantages to SMS
– Phone call can be intercepted or forwarded
– Phone number can be added to another phone
7
Q
Email filtering
A
- Unsolicited email
– Stop it at the gateway before it reaches the user
– On-site or cloud-based - Scan and block malicious software
– Executables, known vulnerabilities
– Phishing attempts
– Other unwanted content
Comptia A+ Core 2
flashcards
Decks in class (69)
# Cards
-
1.1 An Overview of Windows8
-
1.1 - Windows Features8
-
1.1 - Windows Upgrades5
-
1.2 - Windows Command Line Tools15
-
1.2 - The Windows Network Command Line8
-
1.3 - Task Manager7
-
1.3 - The Microsoft Management Console9
-
1.3 - Additional Windows Tools6
-
1.4 - The Windows Control Panel15
-
1.5 - Windows Settings11
-
1.6 - Windows Network Technologies8
-
1.6 - Configuring Windows Firewall3
-
1.6 - Windows IP Address Configuration3
-
1.6 - Windows Network Connections5
-
1.7 - Installing Applications10
-
1.8 - Operating System Overview10
-
1.8 - Filesystems5
-
1.9 - Installing Operating Systems7
-
1.9 - Upgrading Windows5
-
1.10 - macOS Overview6
-
1.10 - macOS System Preferences7
-
1.10 - macOS Features12
-
1.11 - Linux Commands20
-
1.11 - Linux Features4
-
2.1 - Physical Security9
-
2.1 - Physical Security for Staff8
-
2.1 - Logical Security7
-
2.1 - Active Directory8
-
2.2 - Wireless Encryption8
-
2.2 - Authentication Methods5
-
2.3 - Malware10
-
2.3 - Anti-Malware Tools7
-
2.4 - Social Engineering10
-
2.4 - Denial of Service4
-
2.4 - Zero-Day Attacks2
-
2.4 - On-Path Attacks3
-
2.4 - Password Attacks5
-
2.4 - Insider Threats2
-
2.4 - SQL Injection2
-
2.4 - Cross-site Scripting5
-
2.4 - Security Vulnerabilities6
-
2.5 - Defender Antivirus3
-
2.5 - Windows Firewall3
-
2.5 - Windows Security Settings9
-
2.6 - Security Best Practices10
-
2.7 - Mobile Device Security9
-
2.8 - Data Destruction5
-
2.9 - Securing a SOHO Network15
-
2.10 - Browser Security11
-
3.1 - Troubleshooting Windows11
-
3.1 - Troubleshooting Solutions14
-
3.2 - Troubleshooting Security Issues6
-
3.3 - Removing Malware9
-
3.4 - Troubleshooting Mobile Devices8
-
3.5 - Troubleshooting Mobile Device Security12
-
4.1 - Ticketing Systems6
-
4.1 - Asset Management3
-
4.1 - Document Types9
-
4.2 - Change Management11
-
4.3 - Managing Backups10
-
4.4 - Managing Electrostatic Discharge4
-
4.4 - Safety Procedures4
-
4.5 - Environmental Impacts7
-
4.6 - Privacy, Licensing, and Policies13
-
4.7 - Communication6
-
4.7 - Professionalism5
-
4.8 - Scripting Languages7
-
4.8 - Scripting Use Cases8
-
4.9 - Remote Access12
