backstage knowledge Flashcards
backstage IT knowledge (30 cards)
what is a hash?
one-way cryptographic function that turns any input into a fixed-length output (called a digest). hashes are irreversible and unique to each data input.
what is salting?
random data added to a password before it’s hashed. prevents rainbow attacks by making every hash unique, even for users w the same password
what is plaintext?
unencrypted, readable data. opposite of ciphertext
what is ciphertext?
the scrambled, unreadable output of encrypted plaintext. requires a key to decrypt back to plaintext
what is a MAC address?
media access control address
- hardware id that uniquely identifies a device on a local network
looks like: A4:B2:C1:9D:34:12
- used by switches for directing traffic on a LAN
dance metaphor: dancer’s costume tag – unique to the dancer (device)
how does ARP work?
used within local networks to map IP addresses to mac addresses
- device says “hey! who has ip xxx.xxx.x.x?
- the device with that ip responds: ME! my mac address is: AA:BB:CC:DD:EE:FF.
- now the first device knows how to send the data directly on the local network.
***NOTE: doesn’t authenticate!!!
what is a DNS server?
- the internet’s phone book.
- translates domain names like google.com into IP addresses
what is a switch?
A device used inside a LAN to connect multiple devices together – eg laptop, printer, and desktop
- directs traffic based on mac addresses, NOT ip
what is a router?
a device that connects different networks together and routes traffic from your local network to the internet and back.
- decides where packets go based on IP addresses
- sits between home network and ISP
what is a recursive resolver?
- a dns helper service that takes a client request “where is google.com?” and keeps asking other DNS servers (root -> TLD > authoritative) until it finds an answer.
- usually managed by your isp or a public service like google dns or cloudflare
what is a port?
a door or mailbox on software where specific types of network traffic are received
80= HTTP
25 = email sending (STMP)
443 = HTTPS
what are 1.1.1.1 and 8.8.8.8?
they are public dns resolver ip addresses - like public internet phone books anyone can use. eg cloudflare, google, quad9
what is the OSI model?
open systems interconnection model
- conceptual framework for describing how data moves thru a network. 7 layers:
- physical - cables, signals
- data link - mac addresses, ethernet
(ARP maps MAC addresses to IP addresses here - translates between layers 2/3) - network - ip addresses, routing
- transport - tcp/udp
- session - session establishment
- presentation - encryption, encoding
- application - what you see - browsers
what is the difference bretween a virus and worm?
virus: needs a host file or user interaction
worm: self-contained and self-spreading
what is cache?
Cache is a small, fast memory that stores frequently used data to make future access quicker.
What is the purpose of a modem?
A modem (MOdulator-DEModulator) converts digital data from a computer into analog signals for transmission over phone or cable lines — and vice versa.
Where does a modem sit in a home or small office network?
It connects your internal network (via a router or directly to devices) to your Internet Service Provider (ISP).
Is a modem physical or software-based?
It’s a physical device with embedded software/firmware.
What layer of the OSI model does a modem operate at?
Mostly Layer 1 (Physical) and Layer 2 (Data Link) — it deals with transmitting raw bits over physical mediums.
What are the 3 major types of cache?
- CPU Cache – tiny, ultra-fast memory between CPU and RAM
- Web Browser Cache – stores copies of web pages, images, etc., to speed up browsing
- DNS Cache – stores previously resolved IP addresses to avoid new DNS lookups
Is cache hardware or software?
Both — CPU cache is hardware, but browser and DNS cache are software-based memory stores.
What is the risk of cache in cybersecurity?
Outdated or poisoned cache can serve malicious data (e.g., DNS cache poisoning), or leak sensitive info (e.g., browser cache exposing passwords).
- What happens when you type a URL?
- Check browser cache
- Ask recursive DNS resolver
- Resolver asks root → TLD → authoritative server
- Get IP, send TCP request
- TLS handshake (if HTTPS)
- Server sends web content
- Browser displays page
TLS
