Dion Training CompTIA A+ Core 2 Flashcards

Question

■ NTFS has a higher security level and allows you access to audit trails, quota management, and an encrypting filesystem

Answer 1

● Each file can be protected against unauthorized access

Answer 2

● JASON and jason would be the same file to NTFS ● Windows doesn't rely on case sensitivity when reading NTFS, but Linux and Unix will

Answer 3

■ You can only have a total drive size of up to 2 TB and the maximum file size is 4 GB ■ FAT is limited due to it being a 32-bit allocation table, where the maximum file size is around 4.2 billion bytes or 4 GB ■ FAT is supported by Windows, Unix, Linux, and macOS ■ FAT32 is usually used on removable drives like external hard drives or USB flash drives

Answer 4

■ These are supported by Linux and Unix systems, but not by Windows or macOS by default ■ ext3 has a maximum volume size of 32 TB and maximum file size of 2 TB ■ ext4 has a maximum volume size of 1 EB and maximum file size of 16 TB

Answer 5

■ APFS has been the default file system of macOS since 2018 ■ APFS is considered a journaled filesystem, and provides same journaling benefits as in NTFS ■ APFS has a higher level of performance when dealing with SSD than a traditional HDD

Answer 6

■ exFAT supports large volumes of up to 128 PB in size and file sizes of up to 16 EB ■ exFAT is considered cross platform capable and can be used on Windows, Unix, Linux, or macOS ● Windows ○ NTFS ● Linux ○ ext4 ● macOS ○ APFS

Answer 7

○ Every software application is coded to run on a specific operating system ○ Devices that are running different operating systems can communicate on the same data network ○ Most computers can talk the same language using TCP/IP ○ The ability of end users to use different operating systems ○ A traditional user may be used to work with just one or two operating systems ○ Train users to understand how to use your operating system

Answer 8

Windows 11 ● 64-bit version ■ Windows 10 ● 32-bit or 64-bit version ■ 32-bit Version ● 32-bit programs ■ 64-bit Version ● 32-bit or 64-bit programs ■ Each piece of hardware will be 32-bit or 64-bit based on the processor

Answer 9

■ 32-bit version of Windows has lower memory requirements ■ Have a minimum of 4 GB of RAM to run Windows ■ Check if your processor can support 32-bit or 64-bit operations

Answer 10

■ Basic edition of the Windows operating system ● Not designed to be used in a business environment ● Upgrade to Windows Pro or Windows Enterprise for additional business features

Answer 11

■ Storage device encryption (not Bitlocker) ■ Windows 11 Home edition is only in 64-bit version ■ Windows Home edition support multi-core processors ■ A multi-core processor has 2, 4, 6, 8, or even up to 64 cores ■ It does support hyper-threading ■ You can move up from Windows 10 to 11 using the same edition

Answer 12

■ 64-bit can support large amounts of memory ● OEM ○ The OEM license is used by the original manufacturers ● Retail

Answer 13

■ Windows operating system that focuses on business use ■ Windows Pro can be used in a domain environment ■ OEM is the original equipment manufacturer license ■ Retail license allows you to buy one license for one piece of hardware ■ Windows Pro is designed to be used by small and medium-sized businesses

Answer 14

■ BitLocker ● Full disk drive encryption schema that is provided inside of Windows Pro and Windows Enterprise editions

Answer 15

■ Group Policy Editor ● Creates and applies operating system and software application settings across all the users ● The group policy editor is not available within the Home edition

Answer 16

■ Remote Desktop Protocol (RDP) ● Remotely connect to your Windows Pro machine from anywhere in the world

Answer 17

■ Windows Information Protection (WIP) ● Helps identify and protect against potential data leakage or data exfiltration

Answer 18

■ Windows Pro for Workstations is an improved version of the Windows Pro edition ● It provides support for additional hardware ● Windows Pro for Workstations can support up to four-way multiprocessing

Answer 19

■ Windows Enterprise is a fully featured version of Windows ■ Enterprise edition can only use volume licensing ■ UE-V is used to capture, save, and manage Windows 10 operating system ■ Allows multiple people to use the same machine but separates all their settings ■ Direct access is used to allow connectivity for remote users without the use of a VPN ■ Credential guard allows for virtualization-based security and only grants access to privileged systems ■ Windows To Go creates an image version of a corporate Windows 10 environment that can be run on a user's personal computer ■ Windows Enterprise edition has a limit of 6 TB of memory ■ Windows Enterprise supports up to 4 physical processors ■ Both are only going to be using a volume licensing ■ Windows Education and Windows Pro Education are the same as Windows Enterprise and Windows Pro editions

Answer 20

■ Application virtualization under a tool known as App-V ● App-V protects the rest of the operating system from any kind of malware

Answer 21

■ In-place upgrade means the setup program for the new version will be launched within the current operating system ■ Verify the system meets the minimum requirements for the new operating system ■ Download the Windows 11 installation media and place it on a USB drive ■ Launch the setup program from that USB within Windows 10 and then perform a full upgrade ■ Data-only upgrade keeps all personal files, but not any applications or settings ■ Clean install will delete all personal settings, files, and folders

Answer 22

■ When an operating system is installed onto a new computer ■ In this type of installation, all data, user settings, and programs will be deleted

Answer 23

■ Changes the current version of the operating system into a newer version ■ Clean installation does not bring over any of your data, applications, or user settings

Answer 24

■ Requires a system administrator to sit in front of the computer during the installation process

Answer 25

■ Used by the system administrator when multiple machines need the installation

Answer 26

■ Copies an image file of a hard drive onto the new system ■ This image can be stored on a DVD or USB media

Answer 27

The image to be used will be sent over the network

Answer 28

■ Hardware compatibility ■ Application support ■ Backup files and user preferences ■ Third-party drivers

Answer 29

■ In Windows 11, 64-bit edition, the hardware requirements are doubled from Windows 10 ■ x86 or x64

Answer 30

○ Verify the new operating system has support for the peripherals that you need ○ Run the PC Health Check app before performing an in-place upgrade ○ Remain with the older operating system ○ Replace the peripheral to something supported by the new operating system ○ Run a backup first ○ Obtain any third-party drivers that you may need ○ Make sure to obtain the right third-party drivers

Answer 31

○ Mainstream support is for every version of the operating system for a minimum of five years ○ Extended support is the additional period for some of the products that can extend another three to five years ○ End of life means that product is no longer supported

Answer 32

■ A product that is no longer supported and considered abandoned or orphaned

Answer 33

■ Feature updates usually occur every 6 to 12 months ■ Feature updates are not going to change the requirements for that operating system ■ Every product, including operating systems, has a defined life cycle ■ Windows will provide at least five years of mainstream support ■ Once that operating system reaches end of life, there will be no more security patches

Answer 34

■ Any type of disk that uses laser or light to read and write data ■ Many newer computers don't have optical drives, so using optical media is less common

Answer 35

■ Can be many types of drives ■ USB connected drives can be CDs, DVDs, Blu-ray, solid state drives, flash drives, or hot swappable hard drives ■ To make sure your USB device is bootable, you need a media creation tool to create the installation media

Answer 36

■ Take advantage of something inside your BIOS or UEFI ■ This allows you to read boot media over the network ■ Windows generally use the PXE environment to boot up the setup program to install Windows ■ If you rely on network boot, you need to ensure you have DHCP enabled to get an IP address assigned to your server

Answer 37

■ Allows the system to boot up its system over the Internet ■ The computer will boot up a minimalist version of an operating system that is used to download the setup files

Answer 38

■ A hidden device partition created by your manufacturer ■ If your purchased Windows 11 laptop gets corrupted, do a clean install by booting from the internal hidden partition

Answer 39

○ Configure your BIOS or UEFI to have the proper boot order ○ If booting from a USB drive, you need to place it above the hard disk in the boot order

Answer 40

○ Once you boot up the setup program, ensure the storage devices are properly partitioned ○ By default, at least one partition on a fixed disk is needed before you can perform a high-level disk format for your file system

Answer 41

○ Types ■ Hard Disk Drives ● Also known as HDDs ■ Solid State Devices ● Also known as SSDs ■ Both HDDs and SSDs require partitioning and formatting before using them to store an operating system

Answer 42

■ Master Boot Record (MBR) ● The traditional style of doing partitions on a particular fixed storage device ● The first 512-byte sector on a disk contains the MBR, which has the info about the physical disk on it ● Inside the MBR, you will be able to carve up the physical disk into four primary partitions ● Any of these partitions can be marked as active, which signals the system to look for the operating system to boot up ● When booting up initially, it will read the first 512-byte sector from the hard disk which will have the MBR on it ● That will be partition zero, but the boot loader will ask which device you would like to boot up, Windows or Linux ● You can also use partitioning to make multiple areas of storage instead of just having one single drive ● One drive for the operating system and one for the data in two different partitions ● MBR has limitations, such as only able to run four primary partitions and only supports a disk size of 2 TB

Answer 43

● Provides a more up-to-date schema to address MBR limitations ● Windows can support up to 128 partitions with GPT ● GUID partition table can support drives over 2 TB, which is good for its 128 partitions ● The system must support UEFI as its boot method to be able to use GPT ● Most systems use UEFI for its 64-bit processors since BIOS only supports 32-bit processors ● Windows supports NTFS, macOS supports APFS, and Linux supports either ext3 or ext4 (depending on the distribution used) ● Choose the file system that works best with your operating system, like Windows with NTFS or macOS with APFS ● This may be a good reason to have two partitions, if you are using macOS and Windows, or Linux and Windows ● It is important to understand what limitations you have when choosing file systems

Answer 44

■ Recovery and reset is helpful when there is some malware, or you are going to sell your machine ■ Normally, a message will pop up with the required key, such as F11 or CTRL + F11 ■ A text or graphics display will walk you through how to do a full recovery or repair

Answer 45

■ A disadvantage of a full recovery is you lose everything on the system ■ A disadvantage of a full recovery is you lose everything on the system

Answer 46

○ With a full recovery, all files will be lost, unless you have them saved on a backup drive to bring back into the system ○ Under refresh or repair mode, your machine will reset and try to repair itself without doing a full recovery ○ To repair instead of factory reset, you go to the same menu and just choose the repair/reset options ○ With Windows, most hardware will include a recovery partition that you can boot up from

Answer 47

■ 32-bit or 64-bit processor ■ Processor speed and cores available ■ Memory available for that application ■ Have more than the minimum required for best performance ■ Amount of storage space available

Answer 48

■ Dedicated graphics card or integrated graphics card ■ VRAM available

Answer 49

○ Graphics cards can be embedded into the motherboard or into the processor ○ Integrated GPU can handle most day-to-day applications in an office environment

Answer 50

■ 8 to 16 gigabytes of RAM available ■ External Hardware Token ■ Digital key that can unlock an application

Answer 51

○ Download from the app store ■ These app stores will handle all the installation process for you ■ These app stores take precautions to ensure that the software is of good quality ■ Not all applications can be found inside the app store

Answer 52

■ CD or DVD as a distribution method is known as Physical Media ■ Physical media is not the most convenient way to install software ■ Requires to be picked up at some retail location ■ Software is not going to be the most up to date version

Answer 53

■ ISO File ● Digital file format used to replicate a physical CD, DVD or Blu-ray Disc ○ Windows ■ Right click and select "Mount" ○ Mac ■ Use the Disk Utility

Answer 54

■ Single user license means you can install one copy of that application on one system ■ Some applications will support multiple copies being installed on multiple systems for use by a single user ■ Never install an application on a system without a valid license ■ Understand the terms of a software license

Answer 55

■ Manufacturer's Support ● Extended support agreement between the company and the manufacturer

Answer 56

■ Third-party manufacturer who made that software to train your users ■ Make sure to budget for that in terms of time and costs

Answer 57

■ Single component ■ Larger network ■ Larger enterprise system

Answer 58

■ Send a technician to every machine to manually update it ■ Use automation to push that software over the network to all the clients ● The user doesn't have to be logged into the system and the administrator doesn't have to go to that system

Answer 59

■ What clients are on the network ■ What servers are being used ● Windows Deployment Service ● Microsoft Deployment Toolkit ● Apple Business Manager ● Private repositories

Answer 60

■ Some applications are going to slow down the system

Answer 61

Some applications are going to be memory intensive

Answer 62

Some applications are going to take a lot of storage space

Answer 63

Test the applications on a sample system to see impacts

Answer 64

○ Some applications will rely heavily on the network

Answer 65

■ Backup tools will steal a lot of the network's performance by overwhelming the connection

Answer 66

■ Break down the deployment into small groups ■ Use times that are the least impactful for the users

Answer 67

■ Fiber connects directly into a network interface card ■ Copper connection uses a Cat 5, Cat 6, Cat 7, or Cat 8 connector using a UTP or STP cable

Answer 68

○ Use the device manager to see what network adapter is installed on the system and its specifications

Answer 69

○ Wi-Fi connections are set up and managed through the device manager

Answer 70

○ Connect to a wide area network over a wireless connection, and is most seen with cellular modems or cellular hotspots

Answer 71

■ Some are done monthly, some are unlimited, and some are allocated over a given period ■ Additionally, some plans will cap your transferable data and cut off your connection

Answer 72

■ Overage Fees ● Some cellphone carriers charge $10 to $20 per GB beyond the data cap ■ Throttling ● With throttling, you will still be able to use data, but at a much lower speed ■ Unlimited ● Unlimited plans have no data cap, you can use as much as you want and at the highest levels of speed

Answer 73

○ Used to connect anyone or any resources from one private network to another over a public network ○ VPNs will allow you to connect back to your office and access your data in a secure manner

Answer 74

■ They are built into the operating system ■ Set up through the Network Center

Answer 75

■ IP address ■ Subnet mask ■ Gateway ■ DNS server

Answer 76

■ Administrator Accounts ● Can do everything on the system ■ Standard Accounts ● Has a limited subset of actions that can be taken ■ Guest Accounts ● Most limited subset of actions that can be taken

Answer 77

■ Creates folders for the user

Answer 78

○ A Control Panel applet ○ Controls the different pieces of software on a particular Windows system ○ Can install and uninstall programs ○ Can set up features like Containers and Hyper-V

Answer 79

○ Provide you with a wizard and an interface to add devices manually and create shortcuts to the different configuration pages ○ There is a lot you can do with devices, which are things like mice, keyboards, webcams, etc. ○ This area of the control panel is where you can edit the functionality of mice, keyboards, monitors, etc.

Answer 80

○ An older legacy applet that can be used to configure the old legacy web browser Internet Explorer ○ Most places don't use Internet Explorer anymore, and use things like Microsoft Edge or Google Chrome, but some places still rely on Internet Explorer ○ When using the Internet Options, you are only configuring Internet Explorer

Answer 81

○ Status of any network adapter ○ Change settings ○ Configure media streaming

Answer 82

○ Software-based/ Host-based Firewall

Answer 83

■ Public Networks ● Airports, hotels, etc. ■ Private Networks ● Business/home networks

Answer 84

○ Configures Microsoft Outlook, but not other mail apps like Thunderbird or webbased mail like Gmail ○ Mail only works with Microsoft Outlook and allows for the configuration of email clients under different profiles

Answer 85

○ Used to select your input such as your microphone or your output

Answer 86

○ The exam objectives list the system as part of the control panel

Answer 87

Has all information about the system settings

Answer 88

○ Allows for the viewing and editing of properties of the different pieces of hardware installed on a system ○ Device Manager is a separate program that lets you view and edit the properties of hardware ○ installed on a given system

Answer 89

○ Collection of tools that can be used for more in-depth configuration or troubleshooting

Answer 90

■ Actually links to programs

Answer 91

○ Configures how the search capability inside File Explorer is going to work ○ Indexing options configure how things will be indexed to increase search speeds

Answer 92

○ Applet in the Control Panel ○ Can set options for how the file explorer opens and how files, folders, and contents are viewed

Answer 93

■ Shows the file, folders, and contents for the entire system

Answer 94

○ Allows to control the power management on a Windows system ■ Turn off or reduce the power ■ Use less energy ○ Advanced Configuration and Power Interface ○ Industry standard for power management services designed to allow software and hardware to have compatibility

Answer 95

■ Most of the devices are going to lose power

Answer 96

■ Power will be maintained to the memory

Answer 97

■ This applet conserves energy or maximizes performance by choosing how the computer will manage power

Answer 98

■ Gives access to all sorts of settings to configure the input and output options ■ Accessibility area

Answer 99

○ Used to administer and configure the Windows 10 and 11 operating systems ○ The Windows Setting application provides easy to use applets

Answer 100

○ Monitors the computer's key resources, like processing, memory, storage, and network capacity ○ Task Manager is used to monitor the computer's key resources, things like processing, memory, storage, and network capacity

Answer 101

○ A tool used for investigating and troubleshooting system hardware, components, and peripherals ○ Device manager is used to investigate and troubleshoot all sorts of system hardware, components, and peripherals

Answer 102

○ Provides a summary of all the fixed and removable disks on the system, including HDDs, SSDs, and optical drives ○ This is a tool that formats disk drives, creates partitions, shrinks volumes, creates RAIDs, and more

Answer 103

■ Fragmentation ● Disk fragmentation only truly affects hard drives, and this is because of the way data is written ■ Capacity ● Capacity is the cap of data you can have on your disk ■ Damage ● Damage can happen when you cut off power to a disk being read or written, or if you drop the device

Answer 104

■ Disk defragmenter ■ Disk cleanup utility

Answer 105

○ Used to run commands and scripts automatically in the background at any given interval

Answer 106

○ Allows you to go through log files and see what has happened on a given Windows system

Answer 107

■ Information ● Least serious issue ● Doesn’t require actions ■ Warning ● Event that could lead to an error or critical issue if not remediated ● Don’t need to be investigated or addressed immediately ■ Error ● Should be investigated and addressed ● It won’t stop the system from operating

Answer 108

● Fix as soon as possible ● Most serious

Answer 109

● Provides more details about what is happening

Answer 110

○ Provide real-time information about system resources by keeping track of what things are happening in the operating system ○ Monitor performance over time and find the issue by looking at some key counters

Answer 111

○ Provides the ability to create, modify, disable, and delete user accounts along with the setting or resetting of passwords

Answer 112

○ Provides a way of configuring different Windows settings across all machines in the network

Answer 113

○ Looks at the different digital certificates installed on the system and provides a way of requesting and importing new certificates ○ Certificate manager provides the ability to manage all digital certificates on the system

Answer 114

○ Produces a comprehensive report on the different pieces of hardware and software inside a Windows system

Answer 115

○ Gives a better version of the type of monitoring provided by the task manager ○ Resource Monitor is essentially an enhanced or better version of the snapshot and overview monitoring inside the Task Manager

Answer 116

○ Used to modify various settings and files that affect the way a computer boots up and loads Windows

Answer 117

A database which has all the different settings and configurations across the entire operating system

Answer 118

○ A container for plugins or snap-ins that can be used to create custom admin tools to configure a system

Answer 119

○ CLI – Command Line Interface

Answer 120

■ Provides a text-based user interface ■ Some commands are run in the administrative command prompt only ■ Syntax (how the command is typed) is important ● Always use the proper syntax when entering commands

Answer 121

Uses a mouse or finger to navigate

Answer 122

■ Allows to run a series of different text-based commands and be able to run different tools or utilities

Answer 123

● Create a new user account ● Access files or folders

Answer 124

Use the regular command prompt first

Answer 125

■ used to move into a different directory

Answer 126

used to display a list of directory and subdirectory files

Answer 127

used to create new directories and subdirectories within the file system

Answer 128

■ used to delete or remove a directory or subdirectory within the file system

Answer 129

■ copy ● used to copy one or more files ■ xcopy ● used to copy files, directories, and subdirectories ■ robocopy ● used to copy files, directories, and subdirectories with support for longer file names and network paths

Answer 130

■ Moving files can function like copying files

Answer 131

○ diskpart ■ used to manage the computer’s disk drives, partitions, volumes, and virtual hard disks ○ format ■ used to delete the contents of the storage device and create a new file ○ chkdsk ■ used to scan the file system for file system metadata errors

Answer 132

○ This command can run at various times when the user is not at the computer

Answer 133

○ Provides a manual interface for verifying system files and restoring them from the cache

Answer 134

○ Use winver command

Answer 135

■ ipconfig provides information about own network connection ■ displays the current TCP/IP network configuration ■ refreshes DHCP and DNS settings

Answer 136

■ ping verifies there is good connectivity between the client and the remote destination

Answer 137

■ tracert shows each stop along the way by using multiple pings all the way out and all the way back ■ used to determine the path by sending an ICMP echo request

Answer 138

■ pathping gives a more accurate round-trip time being calculated ■ provides network latency and network loss information

Answer 139

■ Finds the device’s name

Answer 140

Finds a domain name from the IP address

Answer 141

○ Checks for open ports on a given client ○ Looks for ports or connections on listening mode ○ Netstat is helpful for malware removal or threat hunting against bad actors

Answer 142

○ Set of policies across all users on a given system or across all systems on a given domain ○ gpupdate ○ gpresult

Answer 143

■ Used for larger environments

Answer 144

■ Used in a single computer environment

Answer 145

■ Represent the two different methods for organizing workstations inside of a Windows-based computer network ■ When dealing with a workgroup, you're dealing with a decentralized model of administration, so there is no main computer in control ■ Workgroups are better used with smaller sized networks, all on the same network of less than about 15 to 20 computers ■ Domains are used for large scale networks, one or more computers acting as a server, which makes it easier to automatically connect to the network from anywhere ■ Domains can support hundreds of thousands of computers on a single domain

Answer 146

● Workgroup ○ Decentralized model ● Domain ○ Centralized architecture

Answer 147

○ An entire suite of commands

Answer 148

○ Sharing a printer over a network is easier in a small office environment

Answer 149

○ macOS generally has same features and functionality like Windows

Answer 150

A backup feature in macOS

Answer 151

■ macOS file management app (file explorer)

Answer 152

Used for managing applications from the desktop (taskbar)

Answer 153

■ Search function

Answer 154

macOS installer that supports complex setup tasks using a setup wizard

Answer 155

macOS installer for copying self-contained apps to an app folder

Answer 156

○ Enables the user to set up multiple virtual desktops with different sets of applications and backgrounds

Answer 157

○ Disk encryption tool that encrypts the data that's stored on the hard drive or solid-state device

Answer 158

○ Utility that allows to access an optical disc drive over the network ○ Most Mac computers don't have an internal optical drive ○ One requires CD or DVD drive installed on the network

Answer 159

○ Application designed to help manage passwords for all the different accounts

Answer 160

○ Apple's online storage solution for all its users

Answer 161

○ Provides a centralized and standard location for mail, contacts, calendar, photos, notes, reminders, and more

Answer 162

■ Apple ID ● Account with Apple used across the entire Apple ecosystem

Answer 163

■ Central area that Apple and developers can use to distribute free and paid apps

Answer 164

○ Antivirus ○ Backups ○ Updates ○ Force quit apps ○ Always have antivirus or antimalware on the system ○ Mac doesn't run the same types of software as Windows ○ There is no built-in antivirus software for Mac system

Answer 165

■ Supervises the use of macOS systems, restricts which apps can be installed, locates any systems, and ensures they're up to date with the latest security patches

Answer 166

■ Used for listing file system objects

Answer 167

■ Used to print the current directory

Answer 168

■ Used to change the directories

Answer 169

■ Used to move files from one location to another

Answer 170

■ Used to copy files from one location to another

Answer 171

■ Used to delete files ■ The mv, cp, and rm commands are used in both files and directories in Linux

Answer 172

■ Used to display the amount of free disk space

Answer 173

■ Used to estimate the file space usage

Answer 174

■ Easy to use command line text editor

Answer 175

■ Old command that supports modal editing

Answer 176

Supports normal, visual, insert, and command line mode

Answer 177

Text editor that provides less features and less complexity

Answer 178

Used to create, view, or concatenate files

Answer 179

Used to search the file system or directory

Answer 180

■ Used to search for characters within the specified file using regular expressions

Answer 181

■ Used to switch users

Answer 182

■ Used to switch to the root user

Answer 183

■ Used to modify the user's account

Answer 184

■ Used to delete a user's account

Answer 185

■ Used to change or reset the password of the user's account

Answer 186

■ Used to add a new group

Answer 187

■ Used to modify a group

Answer 188

■ Used to delete a group

Answer 189

■ Used to change the access permissions

Answer 190

Used to change the owner

Answer 191

■ Used to install and remove software on Debian

Answer 192

Used to install and remove software on Red Hat

Answer 193

■ Updated version of yum command and used to install and remove software on Red Hat

Answer 194

Low-level tool that is used to install and remove software on Red Hat

Answer 195

■ Used to display a list of currently running processes

Answer 196

Task manager that is used to display information about CPU and memory

Answer 197

■ Used for configuring network interfaces

Answer 198

Used to test a host's reachability on an IP-based network

Answer 199

■ Used to display the route and transmit time across an IP-based network

Answer 200

■ Used to query the DNS to get information about the different DNS records

Answer 201

■ Used for accessing and searching online reference manuals

Answer 202

■ Written after the name of a command to give information on how to use a specific command

Answer 203

Cross-platform file sharing protocol that supports the SMB

Answer 204

■ Used for listing file system objects

Answer 205

Used to print the current directory

Answer 206

■ Used to change the directories

Answer 207

■ Used to move files from one location to another

Answer 208

■ Used to copy files from one location to another

Answer 209

■ Used to delete files

Answer 210

■ Used to display the amount of free disk space ■ Shows ● Free space ● Filesystem ● Total size ● Space used ● % used ● Mount point

Answer 211

■ Used to estimate the file space usage ■ The du command shows the disk usage and how the device is used

Answer 212

■ nano ● Easy to use command line text editor ■ pico ● Text editor that provides less features and less complexity

Answer 213

■ vi ● Old command that supports modal editing ■ vim ● Supports normal, visual, insert, and command line mode

Answer 214

○ The cat command is used for concatenating or displaying the contents of a file to the screen

Answer 215

■ Search for a file ■ Used to search the file system or directory

Answer 216

■ Used to search for characters within the specified file using regular expressions ■ Search for content within a file

Answer 217

■ Used to switch users

Answer 218

■ Used to switch to the root user

Answer 219

Used to modify the user's account

Answer 220

■ Used to delete a user's account

Answer 221

Used to change or reset the password of the user's account

Answer 222

■ Used to add a new group

Answer 223

■ Used to modify a group

Answer 224

■ Used to delete a group

Answer 225

■ Used to change the access permissions

Answer 226

Used to change the owner

Answer 227

Used to install and remove software on Debian

Answer 228

Used to install and remove software on Red Hat

Answer 229

■ Updated version of yum command and used to install and remove software on Red Hat

Answer 230

Low-level tool that is used to install and remove software on Red Hat

Answer 231

○ PS and top are the two commands you should be aware of for resource management

Answer 232

■ Used to display a list of currently running processes

Answer 233

■ Task manager that is used to display information about CPU and memory

Answer 234

■ Used for configuring network interfaces

Answer 235

■ Used to test a host's reachability on an IP-based network

Answer 236

Used to display the route and transmit time across an IP-based network

Answer 237

■ Used to query the DNS to get information about the different DNS records

Answer 238

■ Used for accessing and searching online reference manuals

Answer 239

■ Written after the name of a command to give information on how to use a specific command

Answer 240

■ Debian based systems use the apt-get command ■ Red Hat based systems use the rpm, yum, or dnf commands

Answer 241

■ Linux and Windows malware do not affect each other’s systems ■ There are Linux viruses ■ Linux is more secure, but it isn’t risk-free

Answer 242

■ Options ● Clam AntiVirus ● Snort ● Any IDS/IPS

Answer 243

■ Use a Task Scheduler ■ Cron is a Linux scheduling service ■ Backups will generally result in a tar or gzip package

Answer 244

■ Integrate Linux into a Windows environment ○ Install samba on a Linux device to communicate with a Windows host or server

Answer 245

Person or event with the potential to have an impact on a valuable resource

Answer 246

■ Quality within a resource or its environment that might allow a threat to be realized

Answer 247

■ The likelihood of a threat exploiting a vulnerability ■ A threat without a matching vulnerability has no risk

Answer 248

■ Protects data and information from unauthorized access ■ Protects the data itself

Answer 249

■ Protects the systems that hold and process critical data ■ Protects the entire system in which the data exists

Answer 250

■ Threats that originate within the organization

Answer 251

Threats that come from outside of the organization

Answer 252

■ How secure the information is ■ Relies on ● Physical protection ● Electronic protection ○ Encryption

Answer 253

■ How correct the information is? ■ Has it been modified during transit, retrieval, or storage

Answer 254

■ Tools ● Hashing ○ Put data through a one-way encryption algorithm that gives us a unique digital fingerprint ● Checksums ○ Used for data in transit

Answer 255

■ How much uptime is the system providing? ■ Best method to accomplish availability is a redundant system design ■ Have good backup strategies and disaster recovery plans ■ Relies on Redundancy

Answer 256

■ Always a trade-off ■ As security increases, usability often decreases

Answer 257

■ Flaw or weakness within a system that can be exploited

Answer 258

■ Any person or organization that intentionally causes harm

Answer 259

■ System that is not on the baseline of what is approved by the organization

Answer 260

● A set of recommendations for deploying a computer in a hardened configuration

Answer 261

■ Systems without patches and updates ■ Unpatched systems are vulnerable to exploits that the available patches mitigate

Answer 262

■ Systems not protected by any antivirus, anti-malware, or firewall ■ Operating systems often have a firewall built into them

Answer 263

■ An operating system that the manufacturer stops providing security patches for ■ Not protected against new vulnerabilities (those that are not already patched) ■ An EOL operating system should be upgraded to a newer system if possible

Answer 264

● Windows XP ● Windows Vista ● Windows 7

Answer 265

■ Bring Your Own Device ■ A policy that allows users to use their personal devices in the office environment ■ Can lead to unpatched or unprotected system being connected to the system

Answer 266

■ Vulnerability that is discovered or exploited before the vendor can issue a patch to fix it ○ Bug Bounty programs used to find zero-day vulnerabilities

Answer 267

■ Is an unknown exploit that exposes a previous unknown vulnerability

Answer 268

■ The malware used to exploit the vulnerability

Answer 269

■ Used to describe an attack that attempts to make a computer or server’s resources unavailable

Answer 270

■ Specialized type of DoS that attempts to send more packets to a server or host

Answer 271

● Happens when too many pings (ICMP echo) are being sent

Answer 272

● Attacker initiates multiple TCP sessions but never completes the three-way handshake

Answer 273

● Flood Guards ● Time Outs ● Intrusion Prevention

Answer 274

■ Attack that exploits a security flaw to permanently break a networking device by re-flashing its firmware ■ Rebooting won’t bring the system back online

Answer 275

■ Attack that creates many processes to use up the available processing power of a computer ■ Not a worm because it doesn’t infect the programs

Answer 276

■ Uses lots of machines to attack a server to create a DoS

Answer 277

■ Allows an attacker to send packets to flood the victim’s website to initiate DNS requests

Answer 278

● Identifies attacking IP addresses and routes them to a nonexistent server through the null interface

Answer 279

● Identifies and responds to small-scale DoS attacks

Answer 280

● Scales up when demand increases

Answer 281

● Cloudflare ● Akamai

Answer 282

○ Occurs when an attacker masquerades as another person by falsifying their identity

Answer 283

■ Modifies the source address of an IP packet to hide the identity of the sender or impersonate another client ■ Is focused on Layer 3 of the OSI model

Answer 284

■ Changing the MAC address to pretend the use of a different network interface card or device ■ MAC Spoofing will allow an attacker to get around MAC Filters ● MAC filters rely on lists of known MAC addresses

Answer 285

■ Sending falsified ARP messages over a local area network ■ Can be used as a precursor to other attacks

Answer 286

■ When an attacker puts themselves between the victim and the intended destination ■ Also known as a Man-in-the-Middle attack

Answer 287

■ Can be done by ● ARP poisoning ● DNS poisoning ● Introducing a rogue WAP ● Introducing a rogue hub or switch

Answer 288

■ Occurs when valid data is captured by the attacker and is then repeated immediately or delayed, and then repeated

Answer 289

■ Occurs when the attacker inserts themselves in between two hosts

Answer 290

○ Encryption makes it more difficult for an attacker to gain access to data

Answer 291

● Occurs when an attacker tricks the encryption application into presenting the user with an HTTP connection instead of an HTTPS connection

Answer 292

● Occurs when an attacker attempts to have a client or server abandon a higher security mode in favor of a lower security mode ● Affect more than just SSL and TLS ○ Can be used with any type of protection or encryption

Answer 293

○ An attack consisting of the insertion or injection of an SQL query via input data from the client to a web application ○ Prevented through input validation and using least privilege when accessing a database ○ Look for OR 1=1 as a sign of a SQL attack

Answer 294

○ Is a form of Injection Attack ■ An attack that inserts additional information or code through data input from a client to an application ■ Can use ● SQL ● HTML ● XML ● LDAP

Answer 295

○ Occurs when an attacker embeds malicious scripting commands on a trusted website

Answer 296

● Attempts to get data provided by the attacker to be saved on the web server by the victim

Answer 297

Attempts to have a non-persistent effect activated by a victim clicking a link on the site

Answer 298

● Document Object Model (DOM) ● Attempt to exploit the victim’s web browser

Answer 299

■ output encoding ■ proper input validation

Answer 300

■ Occurs when an attacker forces a user to execute actions on a web server for which they are already authenticated ■ Prevention methods ● Tokens ● Encryption ● XML file scanning ● Cookie verification

Answer 301

■ Used to test the strength of passwords to ensure password policies are being followed

Answer 302

■ Uses comparative analysis to break passwords and systematically continues guessing until the password is determined ■ Examples ● Cain & Abel ● John the Ripper

Answer 303

● Occurs when a weak password is simply figured out by a person

Answer 304

● Method where a program attempts to guess the password by using a list of possible passwords

Answer 305

● Method where a program attempts to try every possible combination until it cracks the password ● Increasing complexity exponentially increases the time required to brute-force a password

Answer 306

● Comparing a precomputed encrypted password to a value in a lookup table

Answer 307

● Attempts to crack a password by threatening or causing a person physical harm to make them tell you the password

Answer 308

○ An employee or other trusted insider who uses their authorized network access in unauthorized ways to harm the company

Answer 309

■ Specific type of malware that is tied to either a logical event or a specific time

Answer 310

○ Software that is designed to infiltrate and damage a system ■ Viruses, Worms, and Trojans

Answer 311

■ Require user action to reproduce and spread

Answer 312

○ Viruses that are stored in the first sector of a hard drive and are loaded into memory upon boot

Answer 313

○ Virus embedded into a document and is executed when the document is opened by the user

Answer 314

○ Program viruses seek out executables or application files to infect

Answer 315

○ Virus that combines boot and program viruses to first attach itself to the boot sector and system files before attacking other files on the computer

Answer 316

○ This virus is going to use a cipher to encrypt the contents of itself to avoid detection by any antivirus software

Answer 317

○ Advanced version of an encrypted virus that change its code each time it's executed by altering the decryption module for it to evade detection

Answer 318

○ Viruses that can rewrite themselves entirely before it attempts to infect a file

Answer 319

○ Stealth viruses are a category of a virus protecting itself

Answer 320

○ Virus that has a layer of protection to confuse a program or a person who's trying to analyze it

Answer 321

○ Hoax virus tries to trick a user to infect their own machine

Answer 322

■ Malicious software, like a virus, but can replicate itself without any user interaction ■ Worms can spread and replicate fast

Answer 323

Are a piece of malicious software that are disguise as a piece of harmless or desirable software

Answer 324

Provides the attacker with remote control of a victim computer

Answer 325

○ Malware that restricts access to a victim’s computer system until a ransom is received ○ Keep backups of all the systems and files ○ Ransomware uses a vulnerability in your software to gain access and then encrypts your files

Answer 326

○ Malware that secretly gathers information about the user without their consent ■ Adware ● Displays advertisements based upon its spying on you ■ Grayware ● Software that isn’t benign nor malicious and tends to behave improperly without serious consequences

Answer 327

○ Software designed to gain administrative level control over a system without detection

Answer 328

■ DLL Injection ● Malicious code is inserted into a running process on a Windows machine by taking advantage of Dynamic Link Libraries that are loaded at runtime

Answer 329

■ An attack that relies on compromising the kernel-mode device drivers that operate at a privileged or system level

Answer 330

■ A piece of software code that is placed between two components to intercept calls and redirect them

Answer 331

○ A collection of compromised computers under the control of a master node ○ Botnets can be utilized in other processor intensive functions and activities

Answer 332

■ Occurs when many machines target a single victim and attack them at the exact same time

Answer 333

○ Your computer might have been infected if it begins to act strangely ○ Hard drives, files, or applications are not accessible anymore ○ Strange noises ○ Unusual error messages ○ Display looks strange ○ Jumbled printouts ○ Double file extensions are being displayed, such as textfile.txt.exe ○ New files and folders have been created or files and folders are missing/corrupted ○ System Restore will not function

Answer 334

○ Scan the computer ○ Identify the symptoms of a malware infection ○ Quarantine the infected systems ○ Disable System Restore ○ Remediate the infected system ○ Schedule automatic updates and scans ○ Enable System Restore and create a new restore point ○ Provide end user security awareness training ○ If a boot sector virus is suspected, reboot the computer from an external device and scan it ○ Remove the hard drive from the victimized machine, connect it to a clean workstation as a secondary drive, and then scan it

Answer 335

○ Continually doing your service packs and updates for your operating system ○ Have a good host-based Firewall ○ Worms, Trojans, and Ransomware are best detected with anti-malware solutions ○ Re-image the machine from a known good baseline ○ Verify your email servers aren’t configured as open mail relays or SMTP open relays ○ Remove email addresses from website ○ Use allowlists and blocklists ○ Train and educate end users ○ Update your anti-malware software automatically and scan your computer ○ Update and patch the operating system and applications regularly ○ Educate and train end users on safe internet surfing practices

Answer 336

■ Scanners can detect a file containing a rootkit before it is installed

Answer 337

○ Broad range of malicious activities accomplished through human interactions

Answer 338

■ Any attempt to manipulate users to reveal confidential information or perform actions detrimental to a system's security ■ End users and employees are the weakest link in an organization's security

Answer 339

■ A social engineering attack where the malicious actor communicates with the victim from a supposedly reputable source to lure the victim into divulging sensitive information ■ 60-70% response rate

Answer 340

Uses the same technology and techniques but is a more targeted version of phishing

Answer 341

Focused on key executives within an organization or other key leaders, executives, and managers in the company

Answer 342

■ The text message service component on cellphones, smartphones, tablets, and other mobile devices

Answer 343

■ A form of text messaging that also allows pictures, sounds, or videos to be sent

Answer 344

■ Occurs when the message is being communicated to the target using the voice functions of a telephone

Answer 345

Occurs when an attacker takes over a high-level executive's email account and orders employees to conduct tasks

Answer 346

■ Tricks users into divulging private information by redirecting a victim to a website controlled by the attacker or penetration tester

Answer 347

○ The abuse of electronic messaging systems, most commonly through email ○ Spammers often exploit a company's open mail relays to send their messages ○ CAN-SPAM Act of 2003

Answer 348

○ The act of pretending to be someone else to gain access or gather information

Answer 349

■ Elicitation ● The ability to draw, bring forth, evoke, or induce information from the victim

Answer 350

○ Train your employees not to fall for pretext and to not fill in the gaps for people when they're calling you or even in person

Answer 351

■ Any attempt to manipulate users into revealing confidential information or performing other actions that are detrimental to that user or the security of our systems ■ The weakest link is our end users and employees

Answer 352

■ When an attacker attempts to enter a secure portion of a building by following an authorized person into that area, without their knowledge

Answer 353

Like tailgating, but happens with the knowledge or consent of the employee

Answer 354

■ Using direct observation to obtain information from an employee ■ Not as obvious as standing over your shoulder, but it can be a quick glance at your screen

Answer 355

■ Looking in garbage or recycling bins for personal or confidential information

Answer 356

○ A fraudulent Wi-Fi access point that appears to be legitimate but is set up to eavesdrop on your wireless communication

Answer 357

■ Exploits the behavior of Wi-Fi devices due to a lack of access point authentication protocols being implemented

Answer 358

■ A list of the SSIDs of any access point the device has previously connected to and will automatically connect to when those networks are in range

Answer 359

■ A web page that the user of a public-access network is obligated to view and interact with before access is granted

Answer 360

■ Software application that protects a single computer from unwanted Internet traffic ■ Host-Based Firewall

Answer 361

○ Windows Firewall ○ PF and IPFW ○ iptables ○ Many anti-malware suites contain software firewalls ○ It is better to run a personal software-based firewall and a network-based firewall to provide you with two layers of protection

Answer 362

○ I can install all the technology I want, but if I don't fix the user, it's all going to be for nothing ○ Train users how to encrypt emails and data ○ Follow organizational data handling and disposal policies

Answer 363

■ Clean Desk Policy ● By end of day, employees clean their desks and leave nothing out that may be taken as a password or a PIN

Answer 364

Implemented to increase physical security posture

Answer 365

■ Implemented through hardware or software to prevent or restrict access ● Auditing ○ One-time ● Monitoring ○ Ongoing

Answer 366

■ Implemented to manage the organization's personnel and assets ● Data classification and labeling ● Personnel supervision ● Security awareness training

Answer 367

■ Designed in different formats, including see-through or not ■ See-through fences allow outsiders to see what's inside ■ Non-see-through fences prevent employees and guards from seeing incoming threats ■ Fences keep people away from areas that are under your control

Answer 368

■ Type of barricade used to prevent terrorist attacks ■ Think about the type of aesthetic fence and bollards to install ■ Make sure that it is still friendly and inviting

Answer 369

■ Use well-designed lighting around your perimeter ● Always ON ● Motion sensor

Answer 370

■ Protect the outside or inside of the building

Answer 371

■ Used inside or outside of a building using cameras and CCTV ● Motion ● Sound ● Light

Answer 372

■ Alarm system that sounds anytime the circuit is open or closed

Answer 373

■ Allows to play motion sensor in different areas ● Proximity ○ Alarm that turns off when there is a movement in one of the tagged objects within the area ● Duress ○ Alarm that can be triggered by someone when there is a threat

Answer 374

■ Type of metal detector that is deployed at airports and public buildings ■ Walk-through magnetometer detects the presence of metal

Answer 375

■ Key Operated ● Uses a key to lock or unlock the door ■ Mechanical Operated ● Uses a PIN to lock or unlock the door ● Mechanically operated lock is usually referred to as a cipher lock ■ Electronic Operated ● Requires a PIN entered on an electronic keypad to unlock ○ Mechanical ○ No power needed ○ Electronic ○ Needs power

Answer 376

● Uses a token to unlock the door ● Badge reader can be combined with two-factor authentication

Answer 377

● Uses biometric data to unlock the door ○ Fingerprint readers are considered a hygiene issue ○ Palm Print Scanner ■ Uses a camera to scan the palm print by using infrared lights ■ Palm print scanners are much larger in size ○ Retina Scanner ■ Uses infrared light that is shown into an eye

Answer 378

■ Prevents theft and unauthorized physical access to servers, network appliances ● Lockable Rack Cabinet ○ Controls access to servers, switches, and routers installed in standard networking racks ■ Chassis Locks ■ Faceplates ○ Lockable rack cabinet protects all the devices in one server rack ● Kensington Lock ○ A cable that uses a tie to secure smaller devices

Answer 379

Serves to limit the people that go in or out of an organization

Answer 380

■ Badge readers can be used to log in to a computer ● Magnetic Strip ● Smart Card ● RFID ■ Badge reader systems use contact-based badge reading

Answer 381

Uses the lowest level of permissions needed to complete a job function

Answer 382

● Access control method where access is determined by the owner of the resource ● Every object in a system must have an owner ● Each owner must determine the access rights and permissions for each object

Answer 383

● Access control policy where the computer system decides who gets access ○ Unclassified ○ Confidential ○ Secret ○ Top secret ● MAC is reserved for highly classified information within the military

Answer 384

● Access model that is controlled by the system that focuses on a set of permissions versus an individual's permissions ● Creating groups makes it easy to control permissions based around actual job functions

Answer 385

■ User who is not a normal user and not a normal administrator

Answer 386

■ Security framework that requires the users to be authenticated, authorized, and validated ● Reexamine all default access controls ● Employ a variety of prevention techniques and defense in depth ● Enable real-time monitoring and controls to identify and stop malicious activity ● Ensure the network's zero-trust architecture aligns with a broader security strategy

Answer 387

■ Uses two or more factors to prove a user's identity ● Knowledge ○ Something you know ● Ownership ○ Something you have ● Characteristic ○ Something you are ● Location ○ Somewhere you are ● Action ○ Something you do

Answer 388

○ High security systems often use multifactor authentication ○ Implement 2FA or MFA that relies on OOB authentication system

Answer 389

■ Computes password from a shared secret and the current time

Answer 390

■ Computes password from a shared secret and is synchronized across the client and the server

Answer 391

■ Relies on an identity signal from the same system requesting the user authentication

Answer 392

Uses a separate communication channel to send the OTP or PIN

Answer 393

Tracking ■ Controlling ■ Securing

Answer 394

Policies and tools

Answer 395

■ Technical controls ● Application Control ● Passwords and passcode functionality ● MFA Requirement ● Token-based Access ● Patch Management ● Remote Wipe

Answer 396

■ Used to send remote commands to a mobile device from an MDM solution to delete its data settings ■ A device must have an Internet connection to receive the remote wipe ■ Incorrect password or passphrase entered too many times ■ Device tries to connect to a network and does not meet the baseline requirements

Answer 397

Updates the baseband of the radio modem used for cellular, Wi-Fi, Bluetooth, NFC, and GPS connectivity

Answer 398

■ Allows to get information from the network about the systems, users, and computers ● Users ● Groups ● Computers ■ Use Active Directory inside Windows-based networks for high levels of security

Answer 399

Allows to easily assign permissions to a set of users or workstations ■ Groups have different permissions applied using ACLs, group policies, and login scripts

Answer 400

Way of dividing the domain into different administrative realms

Answer 401

■ Allows to configure computer settings and user profile settings for the set of users ■ Settings can be templated

Answer 402

Private drive that is mapped to a network share

Answer 403

■ Allows to change the target of a personal folder

Answer 404

■ Same encryption key is used by the access point and the client

Answer 405

■ Original 802.11 wireless security standard that claims to be as secure as a wired network ■ WEP’s weakness is its 24-bit IV (Initialization Vector)

Answer 406

■ Replacement for WEP, which uses TKIP, Message Integrity Check (MIC), and RC4 encryption ■ WPA was flawed, so it was replaced by WPA2

Answer 407

■ 802.11i standard to provide better wireless security featuring AES with a 128-bit key, CCMP, and integrity checking ■ If we make operations easier, then security is reduced

Answer 408

■ Automated encryption setup for wireless networks at a push of a button, but is severely flawed and vulnerable ■ Always disable WPS ■ Encryption and VPNs are always a good idea

Answer 409

○ Wi-Fi Protected Access 3 (WPA3) ○ Galois Counter Mode Protocol (GCMP) ○ Management protection frames

Answer 410

○ Latest and most secure version of wireless network encryption currently available ■ Updated cryptographic protocols ● Enterprise ○ 192-bit ● Personal ○ 192-bit or 128-bit

Answer 411

○ “Enhanced open” ■ Opportunistic Wireless Encryption (OWE)

Answer 412

○ Simultaneous authentication of equals (SAE) ■ A secure password-based authentication and password authenticated key agreement that relies on forward secrecy

Answer 413

○ Forward Secrecy ■ Assures the session keys will not be compromised even if the long-term secrets used in the session key exchange have ■ AP and client use a public key system to generate a pair of long-term keys ■ AP and client exchange a one-time use session key ■ AP sends client messages and encrypts them using the created session key ■ Client decrypts received messages using the same one-time use session key ■ Process repeats for each message being sent, starting at Step 2

Answer 414

■ Cross-platform protocol that authenticates and authorizes users to services, and accounts for their usage ● Supplicant ● Authenticator ● Authentication server

Answer 415

■ Cisco-proprietary protocol that provides separate authentication, authorization, and accounting services

Answer 416

Peer-to-peer protocol created as a next-generation version of RADIUS

Answer 417

■ Cross-platform protocol that centralizes info about clients and objects on the network

Answer 418

■ Enables users to authenticate once and receive authorizations for multiple services across the network

Answer 419

■ Uses symmetric encryption and the Key Distribution Center to conduct authentication and authorization functions

Answer 420

■ Used for port-based authentication on both wired and wireless networks ■ Utilize 802.1x as part of your defense

Answer 421

○ Utilizes simple passwords and the challenge handshake authentication process to provide remote access authentication

Answer 422

○ Uses public key infrastructure with a digital certificate being installed on both the client and the server

Answer 423

○ Requires a digital certificate on the server and a password on the client for its authentication

Answer 424

○ Uses a protected access credential to establish mutual authentication between devices

Answer 425

○ Uses server certificates and Microsoft’s Active Directory databases to authenticate a client’s password

Answer 426

○ A proprietary protocol that only works on Cisco-based devices

Answer 427

■ The name of the wireless network ● Name the network after something that is easy to recognize ○ Do not use any personally identifiable information ● Random naming scheme ○ Many textbooks recommend disabling the broadcast of the SSID

Answer 428

■ Disabling the broadcast SSID just makes it harder for your authorized users to be able to connect to the network ■ Enabling encryption can give you a lot of security ■ Never use WPA or WEP ■ Enable wireless network encryption by configuring your wireless access point ■ A strong passphrase will serve as the password or symmetric key for this encryption

Answer 429

■ Allows someone who is visiting your area to connect to your wireless access point and access the Internet ■ Disable guest access

Answer 430

The most distance between channels 1-11 are channels 1, 6, and 11 ○ With 5 GHz and 6 GHz, you can use the auto channel selection

Answer 431

■ Used by mobile devices to make a connection to high-speed Internet ■ WPA3 is the highest level of encryption available for mobile Wi-Fi currently

Answer 432

■ Used by mobile devices to connect peripherals to the device ■ Bluetooth requires two devices to make a connection or link

Answer 433

○ Check specifications to see if the device uses at least AES encryption with a strong key ○ Software firewalls are common for larger devices, but not so much for mobile devices ○ The firewall must have root or administrative privileges on the mobile device to successfully protect it ○ A VPN connection between a mobile device and a centralized server is safer ○ Remote backups automatically go to places like iCloud for Apple, Google Sync, or OneDrive from Microsoft ○ Always ensure you have secured the wireless connectivity first, then implement a mobile firewall

Answer 434

■ Someone can simply take the mobile device and swipe the screen open to unlock it, without using anything to secure it

Answer 435

■ Personal Identification Number (PIN Code) ● Normally 4-8 digits long, depending on your smartphone or device ● PIN codes are easy to guess as there are only 10,000 possible codes for a four-digit PIN ● Shoulder surfing attacks are easy if you use a PIN code as it's just a few digits to remember ● PIN codes are only numbers, whereas passcodes are numbers, letters, and symbols

Answer 436

■ Passwords can also be easily used by others, due to shoulder surfing and other attacks ■ Wrong passcode entered 10 times can lock you out and make you wait 30 minutes before you're able to try again ■ Remote wipe, wipes of all data after 10 failed attempts to login

Answer 437

The screen shows you nine different dots for you to swipe and make a pattern with ■ Pressing and removing your finger off the touch scanner several times is how you set up Touch ID

Answer 438

■ Touch ID has a fail rate of about1 in every 50,000 attempts ■ Face ID has a fail rate of about 1 in every 1,000,000 attempts ■ Both are much more secure than a PIN or password ■ Smartphones like to use biometrics first and then PIN or passcode, if you have all that set up ■ Face ID wasn't helpful in 2020 when everyone was wearing masks, so the PIN or password fallback is very helpful

Answer 439

○ Ensure your mobile device is patched and updated ○ Only install apps from the official App Store or Play Store ○ Do not jailbreak/root device ○ Don't use custom firmware/ROM ○ Only load official store apps ○ Always update your software

Answer 440

○ Always ensure your device is backed up ○ Don't try to recover your device alone if it is stolen

Answer 441

■ Requires a PIN or a password before someone can use the device

Answer 442

■ Allows to remotely erase the contents of the device to ensure that no information can be recovered

Answer 443

○ Only install apps from the official mobile stores ○ Transport Layer Security (TLS) ■ Put an encryption layer and a tunnel between your device and the server to ensure you have confidentiality

Answer 444

■ Centralized software solution that allows system administrators to create and enforce policies across its mobile devices ■ Turn location services off to ensure privacy

Answer 445

■ Embedding of the geolocation coordinates into a piece of data, such as a photo ■ Geotagging should be considered when developing your organization's security policies

Answer 446

■ Purchased by the company and only used by the employee for workrelated purposes ● Most secure ● Most restrictive ● Most expensive

Answer 447

■ Company provides a device used for work and/or personal use by employees

Answer 448

■ Allows employees to choose device from an approved list of vendors or devices

Answer 449

■ Allows employees to bring their own devices, and connect to the corporate network ■ BYOD is the most difficult to secure

Answer 450

■ Creates a clear separation between work and personal data on a device

Answer 451

■ Centralized software solution for remote administration and configuration of mobile devices ■ MDM can prevent certain applications from being installed on the device ■ Ensure your organization has a good security policy for mobile devices

Answer 452

○ Update your device to the latest software ○ Install Antivirus ○ Train users on proper security and use of their device ○ Only install apps from the official app stores ○ Do not jailbreak or root your devices ○ Only use Version 2 SIM cards for your devices ○ Turn off all unnecessary features on your device ○ Turn on encryption for voice and data ○ Use strong passwords or biometrics ○ Don't allow BYOD ○ Ensure your agency has a good security policy for mobile devices

Answer 453

○ iPadOS will be like iOS and similar but not quite the same with Android ○ Remember to set up how you want to use your device with locking, unlocking, password, Touch ID, Face ID, and more

Answer 454

○ S in IoT stands for security ○ Most IoT devices uses an embedded version of Linux or Android as their OS ○ Be careful in which exploits you since you can inadvertently cause the device to go offline, crash or malfunction

Answer 455

○ Many Manufacturers uses outdated or insecure hardware components ■ Insecure defaults ■ Hard-coded configurations ■ Cleartext communication

Answer 456

○ Attackers also monitors Bluetooth frequencies being transmitted and conduct eavesdropping ■ Data modification ■ Data exfiltration

Answer 457

■ Uses Local Security Authority (LSA) to compare the submitted credentials ■ Local sign-in is also known as interactive login

Answer 458

■ Uses Kerberos to perform network authentication

Answer 459

■ Allows users to access the local network by using a VPN or a web portal (SSL/TLS)

Answer 460

■ Oldest type of authentication that uses single-factor authentication ■ Knowledge-based factor

Answer 461

Allows the user to configure an alternate means of authentication ■ Windows Hello PIN can be used to enter the system and authenticate ■ Windows Hello subsystem is considered more secure ■ Windows Hello Fingerprint uses biometric authentication ■ Windows Hello Face uses facial recognition

Answer 462

■ Users can authenticate on the device or network to gain access to multiple apps or services ■ Using SSO is considered more secure than having different accounts

Answer 463

■ Account that exists on a single workstation or computer ● Security Account Manager (SAM) ○ HKEY_LOCAL_MACHINE registry hive ■ Local account cannot be used to log into different computers

Answer 464

Created through an online cloud-based portal at account.microsoft.com ■ Microsoft account can be synchronized between devices using the same portal ■ Domain-based users can also create an account as part of the domain environment

Answer 465

■ Able to change their own settings ■ When creating a new user on a system, it should be placed into the standard user group

Answer 466

■ Gives additional security permissions ■ By default, the first user on a system is placed in the Administrator group

Answer 467

■ Account is disabled and gives a higher level of security ■ Guest accounts are disabled on Windows 10 and 11

Answer 468

■ Gives the user an intermediate permission level, but less than an administrator ■ Power user group has the same permission level as the standard user group ■ Administrator mode works at a higher level of permissions that can cause a lot of system damage

Answer 469

■ Windows security feature used to protect the system against malicious programs, scripts, and attacks ■ Administrator runs a program using the user credentials, not the administrative credentials ■ Click the Change Account Type button within UAC ■ UAC settings can be configured from "always notify" to "never notify" ■ Change the UAC configuration in the control panel and select "user account control" settings

Answer 470

■ NTFS feature that supports both file and folder encryption ■ Available only on ● Windows Pro ● Windows Education ● Windows Enterprise

Answer 471

● In storage on a ○ Hard Disk Drive ○ Solid State Device ○ Thumb Drive ○ Other storage device

Answer 472

● Being used across the network

Answer 473

● Data being used or processed by the system

Answer 474

■ encrypts the files using the user account password ■ is used only for certain files and folders

Answer 475

■ Full disk encryption product on all Windows editions except the Home edition ■ Encrypts every file and folder on the drive automatically ■ All the volumes to be encrypted are on a fixed drive (internal drive)

Answer 476

■ Supports full disk encryption on removable data drives ■ Use a password or smart card to encrypt and decrypt the data

Answer 477

■ Uses file permissions on all files and folders ■ NTFS permissions can be assigned to a file or folder by using a user's account or group ■ Each object has an implicit deny preventing using a permission ■ Explicit permissions set an allow or deny action ■ Permissions are cumulative

Answer 478

■ Applies only to files that were shared using a network connection ■ Share permissions that are used in NTFS permissions will be applied locally and over the network ■ Share permissions are set at the root of the share and its subdirectories ■ The most restrictive will apply to files and folders that are accessed over the network

Answer 479

■ Happens with all the sub folders and files underneath that folder

Answer 480

■ A set of policies that determine what rights and privileges each user has on a given computer or network

Answer 481

■ Give user the least number of permissions to be able to do their job ■ File permission control allows to change whether the user can read, modify, or delete data file or folder

Answer 482

■ Set a good, long, and strong password for the administrator account ■ Disable the default admin account and create a new user account for better security

Answer 483

■ Guest accounts represent a significant security vulnerability ■ Disable the guest account and create a regular user account

Answer 484

■ Restrict your login times if you want to have better security ■ Consider this based on your organization and the needs of your employees

Answer 485

■ Account disabled ● The user cannot login until they contact help desk ● ■ 15-min cool off ● With the lockout timer, the user must wait 15 minutes to be able to re-login

Answer 486

■ Every Windows user can log into multiple systems using the same account in a domain environment ■ You can set the number of concurrent logins allowed ■ Limit of only one concurrent login

Answer 487

Find the right amount of time that makes it work

Answer 488

■ This can lead to a huge vulnerability ○ Disable autoplay or autorun to increase security

Answer 489

○ Complexity requirements ○ Expiration requirements ○ Use of passwords

Answer 490

■ Stored, transmitted, or processed in an unprotected format that anyone can view and read

Answer 491

■ Scrambled up and unreadable to anyone without the proper encryption or decryption key ■ Encryption is a form of risk mitigation

Answer 492

■ Location of data within a processing system

Answer 493

■ Any data stored in memory, a hard drive, or a storage device ● Full disk encryption ● Folder encryption ● File encryption ● Database encryption

Answer 494

■ Any data moving from one computer or system to another over the network or within the same computer ● TLS or SSL ● IPsec or L2TP ● WPA2 with AES

Answer 495

■ Any data read into memory or is currently inside the processor and being worked on or manipulated ● Data at rest ● Data in motion ● Data in processing

Answer 496

○ Anytime you're not using a system, you should log off or lock your computer ○ A screensaver lock will lock your desktop after a period of inactivity ○ Secure personally identifiable information ○ Clean desk policy ensures everything on your desk is put away by end of day ○ Log off if you will be gone for more than a few minutes ○ Critical hardware like laptops must be in your possession or always properly secured ○ You want to make sure that data is always protected

Answer 497

○ Asset disposal occurs whenever a system is no longer needed

Answer 498

■ Exposes the hard drive to a powerful magnetic field which in turn causes previously written data to be wiped from the drive

Answer 499

■ Act of removing data in such a way that it cannot be reconstructed using any known forensic techniques

Answer 500

■ Removal of data with a certain amount of assurance that it cannot be reconstructed

Answer 501

■ Ensure all data remnants had been removed using overwriting procedures

Answer 502

● Define which equipment will be disposed of ● Determine a storage location until disposal ● Analyze equipment to determine disposal method ● Sanitize the device and remove all its data ● Throw away, recycle, or resell the device

Answer 503

■ Sanitizing ■ Purging ■ Overwriting ■ Zeroing

Answer 504

● The process of destroying old data by writing over the location on the hard drive or solid-state device with new data ● Forensic experts can recover some hidden data overwritten with a series of ones and zeros ● Erasing and wiping don't work as well with solid state devices ● Use Format from the Windows command line to erase the contents of the hard drive

Answer 505

● Using a standard formatting procedure, you will have better data destruction than you have with a simple erasing or wiping

Answer 506

● Procedure provided by the manufacturer which will reset the disk back to its factory condition ○ Secure erase ○ Crypto erase ● If you don't let this procedure finish, you'll have a drive that is no longer functional and no longer usable for anything

Answer 507

■ A particular type of hardware that will encrypt and decrypt the entire disk ■ By erasing the key, you have now made all the data on it unusable and unreadable

Answer 508

■ Drilling ■ Incinerating ■ Shredding ■ Degaussing ● Exposing hard disk drives to powerful electromagnets that are going to disrupt the magnetic patterns on those hard disks and cause them to lose their state ● This does not work if you're using optical media or solid-state drives

Answer 509

○ Download from the official app stores either on Windows or Mac, or go to the official websites

Answer 510

○ Extensions and plug-ins are often used interchangeably, but on different web browsers they are used differently ○ Extensions

Answer 511

■ Work in the background to help you do things like video streaming

Answer 512

■ Change your browser's look

Answer 513

■ Change your default search engine

Answer 514

■ keep things like document editing in your browser, even for offline use

Answer 515

○ Help you secure different passwords and stores them so you can use them easily ○ Memorizing a master passcode while the rest are saved for you is a much better method than using the same password everywhere

Answer 516

○ You need to ensure that the website is secure before you access it and enter any kind of personal details

Answer 517

○ A special mode in web browsers that ensures the caching features are not being used ○ Even in private browsing, you are still being watched online

Answer 518

○ Some fake ads will bring you to fake websites to urge you to buy fake products online ○ Ad blockers aren't for being annoyed with advertising, rather because criminals have been using ads to get to people

Answer 519

○ Cache allows you to view the same website multiple times without having to redownload images or videos on that site ○ History keeps track of all websites you've been to, unless you clear it ○ All of this is stuff people can use to get an idea of what you do, so it is also a good idea to clear your browser history sometimes

Answer 520

■ Different setting preferences ■ Doesn't work across all Internet browsers ■ Keeps your personal and work life separate to avoid problems in the future

Answer 521

■ Phone ■ Email ■ Chat ■ Ticket ○ Used to manage requests, incidents, and problems submitted by users

Answer 522

■ Name ■ Contact Details ■ User information ■ Device information

Answer 523

■ Requests ■ Incidents ● Happen one time or are isolated issues ■ Problems ● Are recurrent and happen to multiple users or devices with the same characteristics ● A collection of incidents or recurrent issues ● Every organization configures different categories based on their own business needs ● Problem description ○ Gather more details or information about the problem

Answer 524

■ Classifying tickets in a prioritized order ● Urgent ● High ● Medium ● Low ● Tier 3 (1-3%) ● Tier 2 (20-30%) ● Tier 1 (70-80%) ● Tier 0

Answer 525

■ Gives us more freedom and more ability to solve problems at an earlier level

Answer 526

■ Problem Description ■ Progress Notes ■ Problem Resolution

Answer 527

■ Solution Articles ■ FAQs ■ Product Manuals ■ Tutorials ■ Videos ■ Demonstrations ■ Troubleshooting Guides

Answer 528

● End-user

Answer 529

■ The kind of information should you include depends on your industry and what you're doing inside of your organization

Answer 530

■ Reduces the support workload ■ Provide good self-service ■ Lower the amount of work ■ Lower the product cost ■ Quick onboarding and training experience

Answer 531

○ Systematic approach to the governance and realization of value of things over their life cycle ○ Establish good change management practices ○ Keep track of Warranties and Licenses

Answer 532

■ Tangible Assets ■ Intangible Assets

Answer 533

■ Development ■ Operation ■ Maintenance ■ Upgrade ■ Disposal

Answer 534

■ Allows the system to associate the user with the workstation that is having the issue

Answer 535

■ Assigned to a particular device and labeled onto it ■ Having an asset tag with unique ID ensures having a good asset governance

Answer 536

■ Birth to death of an asset ■ Life cycle ● Change Request ○ Verifies the impacts ● Procurement ○ Determines the budget ● Deployment ○ Implements procedures in a secure configuration ● Maintenance/Operations ○ Implements procedures for monitoring and support ● Disposal ○ Implements procedures for sanitizing data remnants

Answer 537

■ Maximizes the number of successful IT changes ■ The scope of change management is defined by each organization

Answer 538

■ Addition, modification, or removal that may have a direct or indirect effect on IT services

Answer 539

■ Standard changes ● Preauthorized and can be implemented without any additional authorization ■ Normal changes ● Changes where the authorization is gained ● Major changes need a higher level of approval ■ Emergency changes ● Changes that need to be expedited ● Emergency Change Advisory Board (ECAB) ● Emergency is when something is broken and needs to get back online quickly

Answer 540

The person or group that authorizes changes

Answer 541

■ One person codes and the other person reads it and approves it ○ When working with large system networks, use normal change

Answer 542

Helps plan the changes and assists in communicating such changes to the stakeholders to avoid conflicts ■ The change schedule informs everybody what's happening ■ Ensures we have the resources to implement the changes

Answer 543

■ Fault to be fixed ■ New business need/process ■ Planned improvement

Answer 544

■ Write the changes to be made and justify ■ Analyzed for risk ● Provide a recommendation ■ Goes to the CAB ● Change Advisory Board (CAB) ○ Technical experts ○ Business experts ○ Senior leaders ■ Implement change

Answer 545

■ Plan of action to take if something goes wrong ■ Always have a rollback plan ■ Use sandbox testing

Answer 546

Make sure that people understand how to use that new system

Answer 547

■ Employees' set of policies for a service or resource ■ Each organization sets up rules based on workflow and company values ■ Acceptable use policy is enforced by the organization to govern its employees and users ■ Regulatory Compliance Requirements ■ A splash screen shows up when someone tries to log into a computer

Answer 548

■ New user set-up checklist and procedures ■ End-user termination checklist and procedures ■ Software installation procedures

Answer 549

■ Step-by-step list of actions to comply with the policy ■ SOPs will vary depending on the organization

Answer 550

Used as part of the employee offboarding process

Answer 551

■ Verify the system requirements ■ Validate the download source ■ Verify files ■ Verify software license ■ Ensure proper installation ■ Provide training and support

Answer 552

■ Gathers the opinions of all involved users, customers, technicians, managers, and stakeholders ■ Figure out the cause ■ Incident report is a writeup based on what happened, the cause, and how to prevent it in the future

Answer 553

■ One diagram for logical connections and another one for physical connections ■ Network topology diagram shows network connections in a logical or physical manner

Answer 554

■ Process of creating and storing copies of data to protect against data loss

Answer 555

■ Process of restoring data backup during data or system loss

Answer 556

■ The backup job is going to create a file that contains all the data from the source ■ Full back up takes up a lot of space ■ Full backups take a long time

Answer 557

■ Will only back up things that have changed since the last backup

Answer 558

Backs up all the data that has been changed since the last full backup

Answer 559

■ An optional type of backup that can create full backups with lower data transfer requirements ■ You're not tying up the server by doing a lot of read/write operations, and to copy everything off the server

Answer 560

■ Archive attribute flags are set to on anytime you modify a file

Answer 561

○ Anytime we do an incremental backup, we're also going to clear the flag ○ On a differential backup, the flag does not get cleared ○ It's going to get cleared when you do a full back up or an incremental backup

Answer 562

■ The period between backup jobs ■ When it comes to determining this frequency, it is all going to depend on how much work you can afford to lose

Answer 563

■ The backup storage mechanism is in the same location as the system they're backing up

Answer 564

■ Backing up to some system not inside the same physical building where your workstations are

Answer 565

■ Tape media rotation scheme that allows some of your backup media to be taken to an offsite storage ■ The son tapes will store your most recent data and they have the shortest retention period ■ The father is considered the middle generation ■ The grandfather tapes will have the longest retention period ■ GFS can be modified based on your own needs for retention, as well as for frequency of backups

Answer 566

■ States that you should have three copies of your data, including your production copy on your servers, two different types of media, and one copy being held offline and off-site ■ You can use GFS in combination with the 3, 2, 1 backup rule ■ A backup can never be called good until you've tested that it works

Answer 567

○ A redundant power supply mitigates a single point of failure

Answer 568

■ An unexpected increase in the amount of voltage that's being provided

Answer 569

■ A short, transient voltage that can be due to a short circuit, a trip circuit breaker, a power outage, or even a lightning strike

Answer 570

■ An unexpected decrease in the amount of voltage provided

Answer 571

Occurs when the voltage drops low enough that it causes the lights to dim and can cause a computer to shut off

Answer 572

■ Occurs when there is a total loss of power for a long period of time ■ Proper backup power and line conditioning

Answer 573

Combines the functionality of a surge suppressor with a battery backup

Answer 574

■ An emergency power system used when there is an outage of the regular electric grid power ● Portable gas engine ● Permanently installed ● Battery inverter

Answer 575

■ Need ■ Budget ■ Downtime ■ Fuel source

Answer 576

■ Ensures every electrical device has a path to the ground, which is a path that provides the least amount of resistance for electrical current to flow away harmlessly ■ Make sure equipment is properly grounded when installing racks of servers or equipment ■ Never disconnect the ground wire

Answer 577

■ Keeps the technician safe when working on electrical equipment ■ Never work on a power supply unless you are certified and properly trained to do it ■ Never insert anything into the power supply area of a computer

Answer 578

■ Occurs whenever there's a path that allows electrons to rush from a statically charged body to a component that has no charge ■ To prevent ESD from happening, you need to ensure you take the proper safety precautions

Answer 579

○ Work in a room that is set up properly to reduce ESD ○ Take out anything that can help create static electricity ○ Always properly handle components by using ESD safe equipment ○ Another large cause of ESD is anything that has a mechanical motor ○ Try and reduce static electricity as much as possible

Answer 580

○ Make sure HVAC systems are running to protect the servers, workstations, and other equipment ○ Sensitive computer equipment, including servers, computers, and networking gear, releases a lot of heat during their operations ○ HVAC systems also helps with the humidity levels in server rooms and communication closets ○ Humidity level of around 40% to 60% using your HVAC systems ○ Many organizations will connect their HVAC systems to their ICS or SCADA networks ○ Depending on your system's capabilities, you may have to make some choices as to which servers can remain online ○ Place systems and servers in the right location and provide adequate power and cooling

Answer 581

■ Health and safety laws ■ Building codes ■ Environmental regulations

Answer 582

○ This ensures we keep our workplace hazard-free, and everything is safe and sound ■ Occupational Safety and Health Administration (OSHA) ○ Building codes are something that are defined at the local, state, and national level

Answer 583

■ Contains all the information about the ingredients, health hazards, precautions, and first aid information

Answer 584

■ Batteries are made up of chemicals that are dangerous to the environment ■ Swollen or leaking batteries should be bagged and properly stored in an appropriate container ■ You need to dispose of it using the proper waste management methods or recycling ■ Most vendors that you buy your toner from will have some sort of recycling program ■ Whenever you're disposing a toner cartridge or recycling it, you should always wrap it up ■ Take them to the proper recycling location or waste management area ■ Make sure you're in compliance with government regulations

Answer 585

○ One of the most common injuries is caused by lifting things improperly ○ If you do happen to cause an electrical fire, immediately remove the power ○ Disconnect the power ○ Prevent any kind of trip hazards ○ Lift with your legs and not with your back ○ Follow proper electrical fire safety ○ Use the proper safety equipment ○ Use PC safe vacuum

Answer 586

■ Specialized vacuum cleaner that doesn't create an electrostatic charge

Answer 587

■ A set of procedures an investigator follows when examining a computer security incident

Answer 588

■ Consists of monitoring and detection of security events on a computer network and the use of proper responses to those security events ● Preparation ○ Ensure that it has a well-planned incident response procedure ● Identification ○ Process of recognizing if an event should be classified as an incident ● Containment ○ Focused on isolating the incident ● Eradication ○ Remove the threat or attack ● Recovery ○ Data restoration, system repair, and re-enabling any servers or networks taken down during the incident ● Lessons Learned

Answer 589

○ A process is used to document the instant response process, any changes to the procedures and the processes and make sure we do better next time

Answer 590

○ The record of evidence history from collection to court presentation and disposal ○ Specialized evidence bags ensure electronic media cannot be damaged or corrupted by electronic discharge (ESD)

Answer 591

Shields devices from outside signals to prevent data from being altered, deleted, or added to a new device ■ Criminal cases or internal security audits can take months or years to resolve

Answer 592

■ Preserves all relevant information when litigation is reasonably expected to occur ■ Have spare hardware and good backups of your systems

Answer 593

■ Creates a forensically sound copy of the data from a source device

Answer 594

■ Any evidence gathered without proper authority or permission can be inadmissible in court

Answer 595

■ Collecting evidence that could be easily tampered or destroyed first

Answer 596

■ From first to be collected to last: ● Registers and cache ○ Registers and cache can only be collected when the computer is powered on ○ Some key areas (like HKLM\Hardware) are only stored in the memory, so analyze the registry using a memory dump ○ Contents of the RAM will be lost if the computer is turned off ● Routing tables, ARP caches, process tables and kernel statistics, and memory ● Temporary file systems ○ These temporary files are often overwritten during system operation ● Disks ○ data that's persisted on mass storage devices and disc ● Remote logging and monitoring data ● Physical configurations and network topologies ○ helps provide context to an investigation ● Offline and Archival media

Answer 597

○ Create a forensic disk image of the data as evidence ○ Capture and hash system images ○ Analyze data with tools ○ Capture screenshots ○ Review network traffic logs ○ Capture video ○ Consider Order of Volatility ○ Take statements ○ Review licensing and documentation ○ Track man-hours and expenses ○ FTK and EnCase are popular forensic tools

Answer 598

■ Original developer retains all rights and ownership of a software code, where you pay them a fee and you receive a license in return

Answer 599

■ Makes software free to use, modify, and share ■ There are lots of open-source projects that are not free

Answer 600

■ Allows one individual user to use a piece of software on their given machine

Answer 601

■ A license for each individual machine or person who is actively using that license ■ Active users are people who are logged in at this moment using that piece of software ■ Licenses provide the legal access to use a software, and the privilege of getting all the updates and security patches ■ Once you lose that valid license, you will no longer be able to get updates to that software or its security patches ■ Most software licenses are going to be issued out for a certain period ■ Use trusted software that comes with a valid license

Answer 602

■ Dictates the terms of the license for a software ■ Always understand what is covered inside the EULA

Answer 603

■ Ensures copy protection for music and video that is being used in an online or digital manner ■ DVDs were region-locked and only allowed to be sold in certain regions based on the licensing ■ You may come across issues where some of your users aren't able to play a certain type of file because there's DRM enabled ■ There are many digital formatted files that are protected by DRM

Answer 604

■ Public Data ● No impact to the company if released and is often on a company's website ■ Sensitive Data ● Minimal impact if released and includes things like a company's finances ■ Private Data ● Contains information like personnel records, salaries, and other data only used in the organization ■ Confidential Data ● Contains items such as trade secrets, intellectual property data, source code, and things that would harm the company if disclosed ■ Unclassified ● Can be released to the public under the Freedom of Information Act ■ Controlled Unclassified Information (CUI) ● Includes unclassified information that should be protected from public disclosure ■ Confidential Data ● Includes data such as trade secrets that would hurt the government if disclosed ■ Secret Data ● Includes data such as military deployment plans and other things that would damage national security if disclosed ■ Top Secret Data ● Includes blueprints for weapons or other information that could gravely damage national security if known by those unauthorized to know

Answer 605

■ Maintains and controls certain data to comply with business policies and applicable laws and regulations

Answer 606

■ Keeping information for a specific purpose outside of an organization's data retention policy

Answer 607

■ A term by how often the newest or youngest media sets are overwritten

Answer 608

■ Any data moved to an archive to prevent being overwritten

Answer 609

■ Back up everything you're legally required to, based on your retention policies ■ Back up what you need based on corporate policies or operations

Answer 610

■ The maximum amount of time that can be lost from a recovery after a disaster, failure, or other event ■ RPO helps drive the recovery window or the redundancy decisions made in your business

Answer 611

■ A tag or a label to identify a piece of data under a subcategory of a classification

Answer 612

■ Data related to health conditions, reproductive outcomes, causes of death, or quality of life for individuals or the population ● HIPAA ○ Health Insurance Portability and Accountability Act of 1996

Answer 613

■ Consists of pieces or sets of information related to the financial health of a business ● Payment Card Industry Data Security Standard (PCI DSS) ○ An agreement that any organization that collects, stores, or processes credit card customer information must abide by

Answer 614

■ A type of data that includes intangible creations of human intellect ● Copyright ● Patent ● Trademark ● Trade Secret

Answer 615

■ Any data that could potentially identify a specific individual ● Microsoft's data loss prevention system (DLP)

Answer 616

■ This is the organization of the information into preset structures or specifications ■ Structured Data ● Something like a comma separated value list ■ Unstructured Data ● Things like PowerPoint slides, emails, text files, chat logs

Answer 617

○ Privacy policies govern the labeling and handling of data

Answer 618

■ Defines the rules that restrict how a computer, network, or other systems may be used

Answer 619

■ Defines the structured way of changing the state of a computer system, network, or IT procedure

Answer 620

A preventative type of administration control

Answer 621

■ Different users are trained to perform the tasks of the same position to help prevent and identify fraud that could occur if there was only one user with the job

Answer 622

Require every employee take a vacation at some point during the year

Answer 623

■ Dictates what type of things need to be done when an employee is hired, fired, or quits ■ Terminated employees are often not cooperative

Answer 624

■ Ensuring that IT infrastructure risks are known and managed properly

Answer 625

■ Mitigation actions that an organization takes to defend against the risks that have been uncovered during due diligence

Answer 626

■ A legal term that refers to how an organization must respect and safeguard personnel's rights ■ Due Process protects citizens from their government and companies from lawsuits

Answer 627

Used within Windows inside the command prompt environment

Answer 628

Used within Windows inside the PowerShell environment

Answer 629

Used within Windows inside Visual Basic

Answer 630

■ Used within Linux

Answer 631

■ Used for automations in webpages and macOS systems

Answer 632

■ Generic scripting language used in Windows, Linux, and Mac

Answer 633

■ Generic language used to teach new learners how to program a computer

Answer 634

■ Text-based file that contains commands that can be interpreted and presented to the computer

Answer 635

■ Text-based file containing Windows commands and is interpreted from the command line environment

Answer 636

● net use ○ Map drives ● Xcopy/Robocopy ○ Copy

Answer 637

■ Allows for more complex scripts ■ PowerShell can change and interact with Windows components and features, and Active Directory ■ Commandlets use a basic verb-noun naming scheme

Answer 638

■ Scripting language based on the Visual Basic programming language ■ .vbs runs from other applications, such as MS Word, MS Excel, and other MS Office products

Answer 639

Works a lot like a batch script inside of Windows

Answer 640

■ Scripting language designed to be implemented inside of a web-based interface ■ JavaScript is used on websites and web applications as well as in scripting languages on macOS desktops and servers

Answer 641

■ General-purpose scripting and programming language that is used to develop automation scripts and full-fledged software applications ■ Python runs on Windows, Linux, and Mac systems ■ Python is considered an interpreted language because it is cross-platform in nature

Answer 642

○ Used to store values and data for different data types ○ In Pseudocode, no need to define the data type for each variable ○ Variables can change throughout the execution of the program

Answer 643

A form of data with only two possible values (True or False)

Answer 644

A made-up language that isn't representative of any singular programming language

Answer 645

A variable that stores an integer or a whole number that may be positive or negative

Answer 646

■ A variable that stores a decimal number

Answer 647

■ A variable that can only store ASCII character

Answer 648

■ A variable that can store multiple characters

Answer 649

■ Like a variable, but cannot be changed within the program once defined ■ How do we define the value of variables and constants?

Answer 650

■ A type of flow control that controls which order the code will be executed in each program

Answer 651

■ Used when the number of times to repeat a block of code is known

Answer 652

Used when the number of times to repeat a block of codes is not known and will only stop until something happens

Answer 653

■ Used when there’s an indefinite iteration that need to happen and will only stop until some condition is met at the end of the loop

Answer 654

○ Used to provide conditions based on different logical tests ○ Boolean operator ○ Arithmetic operator ○ String operator

Answer 655

■ echo ● Printing on screen ■ if [condition] ● Logical construct ■ $1 ● Variable

Answer 656

■ Simple or routine task

Answer 657

Restart machines using scripts

Answer 658

■ Done within normal command line interface using a batch file (.bat) or PowerShell

Answer 659

■ Can use a batch file or PowerShell in Windows or a shell file in Linux

Answer 660

■ PSWindowsUpdate ● PowerShell ■ Wusa.exe file ● Batch File ■ apt or yum ● BASH script

Answer 661

● PowerShell or Batch Script

Answer 662

● BASH Script (Linux)

Answer 663

● Windows

Answer 664

Use scripts for is to be able to gather information or data from various systems across your network

Answer 665

■ Makes life easier by being able to reach out and touch different assets across your network

Answer 666

○ Unintentionally introducing malware ○ Inadvertently changing system settings ○ Causing browser or system crashes due to mishandling resources ○ Read the scripts and understand what they do before running them ○ Inadvertently changing system settings disables system protection ○ When running a script, use the least permissions needed ○ Depleting hard drive storage space occurs because log files or temporary files are created as part of the scripting process ○ Faulty loops could lose network resources or memory resources ○ Incorrect API calls can cause the web browser's file explorer or command interpreter to crash

Answer 667

■ Telnet Port 23 ● Sends text-based commands to remote devices and is a very old networking protocol ● Telnet should never be used to connect to secure devices ■ Secure Shell (SSH) Port 22 ● Encrypts everything that is being sent and received between the client and the server ■ Remote Desktop Protocol (RDP) Port 3389 ● Provides graphical interface to connect to another computer over a network connection ■ Remote Desktop Gateway (RDG) ● Provides a secure connection using the SSL/TLS protocols to the server via RDP ■ Create an encryption connection ● Control access to network resources based on permissions and group roles ● Maintain and enforce authorization policies ● Monitor the status of the gateway and any RDP connections ■ Virtual Private Network (VPN) ● Establishes a secure connection between a client and a server over an untrusted public network ■ Virtual Network Computing (VNC) Port 5900 ● Designed for thin client architectures and things like Virtual Desktop Infrastructure (VDI) ■ Virtual Desktop Infrastructure (VDI) ● Hosts a desktop environment on a centralized server ● Desktop as a Service (DaaS) ■ In-Band Management ● Managing devices using Telnet or SSH protocols over the network ■ Out-of-Band Management ● Connecting to and configuring different network devices using an alternate path or management network ● To prevent a regular user’s machine from connecting to the management interfaces of your devices ● Out-of-band networks add additional costs to the organization ■ Authentication ● Confirms and validates a user’s identity ■ Authorization ● Gives the user proper permissions to access a resource ■ Password Authentication Protocol (PAP) ● Sends usernames and passwords in plaintext for authentication ■ Challenge Handshake Authentication Protocol (CHAP) ● Sends the client a string of random text called a challenge which is then encrypted using a password and sent back to the server ■ Extensible Authentication Protocol (EAP) ● Allows for more secure authentication methods to be used instead of just a username and a password ■ Use EAP/TLS in conjunction with a RADIUS or TACACS+ server

Answer 668

○ A centralized tool used by managed service providers to manage groups of users and workstations remotely

Answer 669

○ Will allow a user to ask for help from a technician or a coworker by using a passcode-protected imitation file

Answer 670

■ Type of software that lets you allow somebody else remotely view what's on your screen ■ Screen sharing doesn't have the ability to control what others are seeing on the screen ■ You can use a non-persistent web application to be able to do the remote screen-sharing ○ Video conferencing software do similar functions

Answer 671

■ An important type of software used by technicians to get files to or from a system they're troubleshooting ■ Nearby sharing is Microsoft's version of AirDrop, and it works by using Bluetooth and Wi-Fi direct connections between devices ■ For Bluetooth-enabled sharing on Android devices, you'll use a function known as Nearby Share ■ If you're located across the world, you'll have to use a file transfer software like FTP, SFTP, or SSH to send those files

Answer 672

■ Designed for the deployment by an enterprise organization that allows them to understand all the access controls and authorization involved with all their different systems ■ UEM is essentially the desktop or laptop version of MDM ■ Having an agent installed on each individual workstation or laptop

Answer 673

■ Allows for the scanning of the desktops and laptops that are being managed by the EDM ■ Gives the ability to use push deployment techniques for any upgrades, updates, or security definitions ■ Gives the ability to create access control rules that will prevent different workstations from being able to join the network

Answer 674

■ BIOS ● Master Boot Record ■ UEFI ● GUID Partition Table

Answer 675

○ The firmware will look through the storage device and identify where MBR is, which is always going to be in the first sector of that disk

Answer 676

■ bootmgr.exe ■ winload.exe ■ Kernel ■ Hardware abstraction layer ■ Boot device drivers

Answer 677

■ \EFI\Microsoft\ contains BCD and bootmgfw.efi files ● Kernel ● Hardware abstraction layer ● Boot device drivers ■ Failure to boot ■ No OS found ■ GUI failing to load or a black screen ■ This used to happen because the boot order inside the BIOS or UEFI was set incorrectly ■ Remove any external devices ■ Set the boot order to always go to the internal storage drive first ■ "No OS Found" ■ That disk drive doesn't have an operating system installed ■ Use a startup repair tool to open the recovery command prompt, and then use bootrec to be able to repair the drive's boot information ● bootrec /fixmbr ● bootrec /fixboot ● bootrec /rebuildbcd

Answer 678

■ A command line disk partitioning tool that can be used to mark the system partition as active ■ It usually indicates that there's an issue with the graphics driver or the system has a misconfiguration or corruption ■ Reboot the system into safe mode ■ START+CTRL_SHIFT+B ● Check Disk command: chkdsk ● System file checker: sfc ○ Failure to boot ○ No OS found ○ GUI failing to load or a black screen

Answer 679

○ Advanced Boot Options ○ Startup Repair ○ WinRE ○ You have a few different options for boot recovery tools, including advanced boot options, startup repair, and the WinRE

Answer 680

○ Sometimes system updates may cause problems for your device, and to fix that, we roll back the updates

Answer 681

○ System restore allows you to create multiple different points to restore data on your system

Answer 682

○ When you're doing a system restore, you're only restoring the configurations and the files for the system itself ○ In a system reinstall, you're reinstalling a brand-new version of Windows, and then you'd have to bring in your files afterwards from a known good backup ○ System Image ■ A snapshot of how a system looks right now, including all personal files, applications, and installations

Answer 683

○ Your profiles are going to contain all the information for a particular user on a Windows system

Answer 684

○ Memory ○ System files ○ USB devices

Answer 685

■ System freezing, shutting down, failing to respond, rebooting, or powering off without an error message ■ Hardware ● Overheating, power, processor ■ Software ● Corrupted kernel files

Answer 686

■ Provides the ability to do memory diagnostics ■ Control panelAdministrative tools ■ Windows recover Memory diagnostic tool ■ Shut down the computer, take out the memory, and put it back

Answer 687

■ sfc C: ■ sfc C: /F ■ Use the Windows Update tool or the vendor's website for the latest chipset or system drive ■ Go to device manager and uninstall the USB host controller device ■ Disable the USB selective suspend power management ■ Powered hub gets its power from the USB, as well as when plugged into a wall outlet ● Memory ● System files ● USB devices

Answer 688

■ Uninstall the program, reboot, and re-install

Answer 689

■ Event Viewer ■ Service Tool ● Manually start the service from the Services Tool ● Some services are interlinked and work together ● Two services conflict with each other ● Core functions inside Windows run as services ● Use the Registry Server (regsvr32) to register the DLL (dynamic link library)

Answer 690

■ CMOS ■ Real-time Clock (RTC) ● Real-time clock (RTC) is powered by a battery on the motherboard ● Time drift is an indication that the battery on the motherboard has died ○ Application crashes ○ Service startup failures ○ Time drift within the OS

Answer 691

■ Investigate and identify malware symptoms ■ Quarantine the infected systems ■ Disable system restore in Windows ■ Remediate the infected system ■ Schedule scans and run updates ■ Enable system restore and create a restore point in Windows ■ Educate the end-user

Answer 692

■ Schedule scans and run updates

Answer 693

■ Potentially Unwanted Application ● Nmap ● Netcat

Answer 694

■ Having a root kit means it has already infected the OS where the antimalware solution runs

Answer 695

■ Move the system into a logically or physically isolated secure segment of the network ■ Sandbox protects the rest of the systems from getting infected ■ Scan the computer on a trusted system in a sandbox environment

Answer 696

■ Turn off automated backup systems, such as cloud and external disk backups

Answer 697

■ A. Update anti-malware software ■ B. Scanning and removal techniques ● Reboot in safe mode and run the scanning and removal tools ● Run task manager, regedit, and msconfig to turn off different services and background tasks ● Boot the computer using a Windows recovery media disc or a Windows installation disc ● Re-image or re-install the system from a good backup or installation disc

Answer 698

■ Schedule scans daily ■ Configuring scanning on access allows to scan downloaded files

Answer 699

■ Re-enable system restore and create a restore point ● Restore point after malware removal ● Restore point clean ■ Turn on automated backups again and validate critical services

Answer 700

■ How to set up and configure a password manager ■ How to verify if a website is actually a website ■ Proper use of social networking and how to tell if something is a scam or trustworthy ■ Educate on the proper use of VPNs ■ Provide anti-phishing training

Answer 701

○ Browser redirection ○ Automatic redirection

Answer 702

■ Redirection happens in conjunction with phishing and pharming

Answer 703

Manual redirection or typo squatting

Answer 704

■ Host file is what we had before DNS ■ Scan the system, uninstall, and reinstall the browser ■ Check proxy settings and verify no proxy is being used

Answer 705

○ Stage 1 dropper ○ Stage 2 payload ■ Rogue Antivirus

Answer 706

○ Backup ○ System File Checker ■ Turn off the services and run the system file checker to fix it ■ Go through the seven-step malware removal process to remove malware

Answer 707

○ Software Troubleshooting

Answer 708

Reboot into safe mode on the Android device

Answer 709

■ Used to remove all the user's data, applications, and settings ■ After the factory reset is complete, the device will reboot and bring you into a setup menu for you to be able to do an initial configuration ● Device reset ● Factory reset

Answer 710

○ Adding new features

Answer 711

■ You may be trying to install an update that isn't available ● Check what are the minimum requirements for that version of the OS ● Apple will support devices for about three to five years ● Always verify the update you're trying to install is compatible with the device model ■ Check if you have enough power to install that update ■ Check your network connectivity ■ The server you're trying to download from can just be busy ■ You don't have enough storage space available ● Remove some of your files to free up some storage space ● Make sure you troubleshoot and solve the issue quickly

Answer 712

■ Overheating ■ Low battery ■ Faulty hardware component

Answer 713

■ The device may just shut itself off and not turn itself back on until the device cools down ■ A faulty piece of hardware can cause the kernel inside of that operating system to panic

Answer 714

■ Storage space ■ Failed update ■ Faulty app

Answer 715

■ The device will slow down first, and then if you don't solve the problem, it will escalate into the device randomly rebooting ■ See how many applications are open, and then close out the ones that are not needed ■ If a code was written in a less efficient way, this can cause applications and programs to run much more slowly ■ Find a different application that does the same function or uninstall that application ○ The device starts to operate slowly, and if it progresses, it can turn into random reboots

Answer 716

○ Applications that fail to launch ○ Applications that fail to close

Answer 717

When apps don't launch or operate properly, clear out the cache for those applications ■ Verify the application works on your version of the OS ■ Running out of storage space on your device ■ An application will fail to update if you don't have a valid network connection ■ Delete the application and then re-install it ■ Application issues could sometimes be caused by your company ■ Some mobile device management software can also turn off certain functions or features

Answer 718

○ Cellular ○ Wi-Fi ○ Bluetooth ○ NFC

Answer 719

■ Verify that you have the correct settings for your cellular device ■ Check your network selection ■ Verify that you're not in airplane mode ■ It is important to check that your Wi-Fi is still enabled ■ You'll often get a weaker signal strength when communicating over Wi-Fi on a mobile device ■ Using a thick type of protective case on a smartphone will also reduce the amount of distance that a signal can travel ■ Bluetooth does provide a shorter coverage area ■ Bluetooth can cover between 10 feet and 30 feet of distance ■ Remove the Bluetooth pairing by forgetting that Bluetooth device and then reconnecting to it and re-pairing with it

Answer 720

■ Very short distance wireless communication technology that only operates within a couple of inches of your device ■ Verify that your airplane mode is not activated ■ Check if airplane mode is enabled ■ Forget that connection and then re-pair with the access point or device that you're trying to communicate with ■ For issues with NFC, simply close the distance and hold the phone there longer ■ Verify that the sender is listed in your recipient's contacts list

Answer 721

○ Application configuration is set incorrectly ○ The lower in brightness, the longer the battery lasts ○ Extreme temperature ○ Keep batteries and other electronic devices to 10-38°C ○ Batteries last from 3-5 years ○ Proper charging and discharging of battery ○ Let the battery drain to about 20% before recharging to increase the battery's lifespan ○ Smart charge initiates a slow trickle charge

Answer 722

○ Portrait

Answer 723

■ Rotation lock is enabled ● iOS ○ Control center ● Android ○ Notification drawer ■ User is not touching any other part of the screen ■ Some applications only work in one mode ■ Accelerometer or motion sensor detects which way the phone is held ■ If the sensor stops working, the device will no longer be allowed to autorotate ● Rotation lock is disabled ● Check the applications ● Defective accelerometer or motion sensor

Answer 724

■ Android

Answer 725

■ iOS or iPad OS

Answer 726

■ Allows to get administrative rights on an Android device ■ Android devices are based on Linux ■ Custom firmware gives a new version of the Android OS ■ Custom firmware, or rooting, introduces lots of vulnerabilities ■ Rooting can lead to significant security vulnerabilities

Answer 727

■ Jailbreaking, Developer tools

Answer 728

■ Installing an application outside of the official store ● Settings ○ Allow third-party applications ■ Sideloading is considered a dangerous practice

Answer 729

■ Occurs when an application passes as a legitimate app ● Managed Google Play ○ Android ● Apple Business Manager ○ iPhone

Answer 730

■ Third-party app stores have spoofed applications that contain malware ■ Enterprise organizations use sideloading to install applications to access private applications ■ Bootleg application stores have pirated versions of legitimate apps ■ Applications from bootleg app stores usually have malware embedded in them

Answer 731

■ Check phone settings and verify that privacy settings are enabled

Answer 732

○ Fake security warnings ○ An on-path attack tries to collect information and see what you see

Answer 733

○ Bootleg or spoofed application ○ High amount of network traffic ■ DDoS ■ Mass email campaign ■ Cryptomining

Answer 734

■ Data from a mobile device going into the public Internet ■ The device is well protected and has an updated OS ■ Use long and strong passwords ■ Enable two-factor authentication (multifactor authentication) ■ Quarantine and investigate as part of an incident response for that data breach ■ Check the cloud service and mobile device

Answer 735

○ Learn the best practices for dealing with end-users ○ Show up and dress up accordingly ○ Avoid distractions ○ Based on the rules of the organization

Answer 736

■ Gray suit ■ Black suit ■ Navy Blue suit

Answer 737

■ Khaki pants ■ Polo shirt ■ Button-down shirt

Answer 738

○ Business formal attire is dressing to impress ○ Business professional attire is dressing up but not wearing a full suit

Answer 739

■ No need to wear a suit, but you still need to dress up a little bit

Answer 740

■ Small-business casual allows people to be comfortable as long as it is presentable

Answer 741

■ Be on time or early to ensure customer is not waiting on you

Answer 742

Give customer a timeline and expectation

Answer 743

■ Give customer your full attention ■ Always keep your cellphone in your pocket and do not use it at work unless necessary

Answer 744

■ When dealing with high-level leaders, work on their schedule

Answer 745

Set expectations upfront with the customer and give status updates

Answer 746

○ Maintain positive attitude and project confidence ○ Actively listen and take notes ○ Use proper language ○ Be culturally sensitive ○ Communicate the status ○ Maintain a positive attitude and make the customer see that you're there to help them ○ Offer repair or replacement ○ Provide proper documentation

Answer 747

■ Open-ended Question ● Questions that need a valid response ○ "Can you tell me what you saw on your screen before the computer rebooted?" ● Close-ended Question ○ Questions that are answered with a yes or no, or a simple answer ■ Start with open-ended questions, then follow up with close-ended questions to get final details

Answer 748

■ People from the same country can have different cultural differences ■ Use people's professional titles and treat people with respect and dignity

Answer 749

■ Cost ● Repair is, what the likely ■ Timeframe ● Repair that option and how long that repair would likely last

Answer 750

■ Customer experience metric

Answer 751

■ End users' confidential and private materials ■ "Is there anything you don't want me to see on this device?" ■ "Is there anything I should stay away from?" ■ Ask if there's anything they don't want you to see ■ Do not open anything that stores confidential or private information ■ Do not use a customer's device for your own personal use ■ Keep the working area clean and tidy

Answer 752

○ Do not personalize the support issues ○ Don't argue with customers ○ Avoid dismissing the customer's problems ○ Avoid being judgmental

Answer 753

■ Ask open-ended questions ■ Actively listen

Answer 754

■ Do not share experiences on social media

Dion Training CompTIA A+ Core 2 Flashcards

(782 cards)