3.0 - Endpoint Security Concepts

Question 1

What is FDE?

Answer 1

Full Disk Encryption

Question 2

True or false: BitLocker and Active Directory are available on Windows Home editions.

Answer 2

False

Question 3

If there is a conflict between NTFS and Share permissions, which one wins?

Answer 3

The more restrictive one

Question 4

Microsoft’s FDE is called…

Answer 4

BitLocker

Question 5

What are apt, yum, and dnf?

Answer 5

Linux package installers

Question 6

What are the two most common front-ends to the Linux nftables subsystem?

Answer 6

firewalld and UFW

Question 7

What is DAC?

Answer 7

Discretionary Access Control - the owner of a resource determines who has what permissions

Question 8

What is MAC?

Answer 8

Mandatory Access Control - admins define permissions that users cannot override

Question 9

What are SELinux and AppArmor?

Answer 9

MAC implementations for Linux

Question 10

What are dm-crypt and LUKS?

Answer 10

Linux disk encryption tools

Question 11

What is APFS?

Answer 11

Apple File System, based on Unix

Question 12

What is FileVault?

Answer 12

Apple’s disk encryption system

Question 13

Which Mac tool is used for viewing logs?

Answer 13

Console

Question 14

On most Linux systems, netstat has been deprecated and replaced with what?

Answer 14

ss

Question 15

MDM stands for…

Answer 15

Mobile Device Management

Question 16

PCI-DSS stands for…

Answer 16

Payment Card Industry Data Security Standards

Question 17

PHI stands for…

Answer 17

Protected Health Information

Question 18

GDPR stands for…

Answer 18

General Data Protection Regulation, a European standard which emphasizes “data protection by design and by default”

Question 19

What is ssdeep?

Answer 19

A fuzzy hash tool

Question 20

What does YARA do and how?

Answer 20

It searches for malware by searching for specific text strings, regular expressions, etc.