Chapter 11: It's a network

Question 1

What are 4 types of security threats?

11.2.1.2

Answer 1

Hardware threats
Environmental threats
Electrical threats
Maintenance threats

Question 2

What is a Hardware Threat?

11.2.1.2

Answer 2

physical damage to servers, routers, switches, cabling plant, and workstations

Question 3

What is a Environmental Threat?

11.2.1.2

Answer 3

Temperature extremes (too hot or too cold) or humidity extremes (too wet or too dry)

Question 4

What is a Electrical threats Threat?

11.2.1.2

Answer 4

Voltage spikes, insufficient supply voltage (brownouts), unconditioned power (noise), and total power loss

Question 5

What is a Maintenance Threat?

11.2.1.2

Answer 5

Poor handling of key electrical components (electrostatic discharge), lack of critical spare parts, poor cabling, and poor labeling

Question 6

What are Network Security Factors?

11.2.1.3

Answer 6

vulnerability
threat
attack.

Question 7

What are 3 types of attacks?

11.2.2.1

Answer 7

viruses
Trojan horses
worms.

Question 8

What are 3 stages of anatomy of a worm attack

11.2.2.1

Answer 8

The enabling vulnerability
Propagation mechanism
Payload

Question 9

What are 3 types of malicious code attacks

11.2.2.2

Answer 9

Reconnaissance attacks
Access attacks
Denial of service

Question 10

What is a Reconnaissance attacks

11.2.2.2

Answer 10

The unauthorized discovery and mapping of systems, services, or vulnerabilities

Question 11

What is an Access attacks

11.2.2.2

Answer 11

The unauthorized manipulation of data, system access, or user privileges

Question 12

What is an Denial of service

11.2.2.2

Answer 12

The disabling or corruption of networks, systems, or services

Question 13

What are the 4 steps to mitigate a worm attack (must be in correct order)
11.2.3.1

Answer 13

Containment
Inoculation
Quarantine
Treatment

Question 14

What is Containment in a worm attack

11.2.3.1

Answer 14

Contain the spread of the worm within the network. Compartmentalize uninfected parts of the network.

Question 15

What is Inoculation in a worm attack

11.2.3.1

Answer 15

Start patching all systems and, if possible, scanning for vulnerable systems.

Question 16

What is Quarantine in a worm attack

11.2.3.1

Answer 16

Track down each infected machine inside the network. Disconnect, remove, or block infected machines from the network.

Question 17

What is Treatment in a worm attack

11.2.3.1

Answer 17

Clean and patch each infected system. Some worms may require complete core system reinstallations to clean the system.

Question 18

What is the most effective way to mitigate a worm attack?

11.2.3.1

Answer 18

download security updates from the operating system vendor

Question 19

What is AAA stand for?

11.2.3.2

Answer 19

Authentication, Authorization, and Accounting

Question 20

What are the 2 most popular option for external authentication?
11.2.3.2

Answer 20

RADIUS and TACACS+

Question 21

What does RADIUS do?

11.2.3.2

Answer 21

Is an open standard with low use of CPU resources and memory. It is used by a range of network devices, such as switches, routers, and wireless devices.

Question 22

What does TACACS+ do?

11.2.3.2

Answer 22

Is a security mechanism that enables modular authentication, authorization, and accounting services. It uses a TACACS+ daemon running on a security server.

Question 23

What are 4 firewall techniques?

11.2.3.3

Answer 23

Packet Filtering
Application filtering
URL filtering
Stateful packet inspection (SPI)

Question 24

What are 4 types of firewalls?

11.2.3.3

Answer 24

Appliance-based firewalls
Server-based firewalls
Integrated firewalls
Personal firewalls

Question 25

What is a Appliance-based firewall? | 11.2.3.3.

Answer 25

An appliance-based firewall is a firewall that is built-in to a dedicated hardware device known as a security appliance.

Question 26

What is a Server-based firewall? | 11.2.3.3

Answer 26

A server-based firewall consists of a firewall application that runs on a network operating system (NOS) such as UNIX or Windows.

Question 27

What is a Integrated firewall? | 11.2.3.3

Answer 27

An integrated firewall is implemented by adding firewall functionality to an existing device, such as a router.

Question 28

What is a personal firewall? | 11.2.3.3

Answer 28

Personal firewalls reside on host computers and are not designed for LAN implementations. They may be available by default from the OS or may come from an outside vendor.

Question 29

What is the recommended length for a password? | 11.2.4.2

Answer 29

At least 8 characters, preferably 10 or more characters

Question 30

What is the command line on a switch or router to enable password length and lockout attempts 11.2.4.3

Answer 30

router (config)# service password-encryption router (config)# security password min-length 8 router (config)# login block-for 120 attempts 2 within 60

Question 31

What is the command line to "time out" a terminal connection after 10min? 11.2.4.3

Answer 31

router (config)#line vty 0 4 router (config-vty)#exec-timeout 10 router (config-vty)#end

Question 32

In the ping command what does the ! (exclamation mark) indicate? 11.3.1.1

Answer 32

Indicates receipt of an ICMP echo reply message

Question 33

In the ping command what does the . (period) indicate? | 11.3.1.1

Answer 33

indicates a time expired while waiting for an ICMP echo reply message

Question 34

In the ping command what does the U indicate? | 11.3.1.1

Answer 34

an ICMP unreachable message was received

Question 35

What are the 5 CDP neighbors information display? | 11.3.4.3

Answer 35

``` Device identifiers Address list Port identifier Capabilities list Platform ```

Question 36

What is the command to verify router interface? | 11.3.4.4

Answer 36

show ip interface brief

Question 37

What is the command to view the file system on a switch? | 11.4.1.2

Answer 37

show file systems

Question 38

What does TFTP stand for? | 11.4.2.2

Answer 38

Trivial File Transfer Protocol