E05: Linux Security Posture

Question 1

What enables packet filtering, NAT, and packet logging?

• Nftables
• iptables
• netfilter
• tables

Answer 1

netfilter

Question 2

Ubuntu 20.04 for example has netfilter and iptables but has another command-line front end for iptables. What is the command?

Answer 2

ufw (Uncomplicated Firewall)

Question 3

What was designed to replace the old iptables in pursuit of better performance, scalabiltiy, and useability?

• Nftables
• iptables
• netfilter
• tables

Answer 3

Nftables

Question 4

Iptables filters packets based on Tables, Chains, Rules, and Targets

T/F

Answer 4

True

Question 5

Within iptables, what are files that join similar actions and consists of several chains?

• Chains
• rules
• tables
• targets

Answer 5

tables

Question 6

Within iptables, what is a statement that tells the system what to do with a packet?

• Chains
• rules
• tables
• targets

Answer 6

rules

Question 7

What is a decision of what to do with a packet.

• chains
• rules
• tables
• targets

Answer 7

targets

Question 8

Which of the following is not one of the default tables that can be used within iptables?

• Chain
• Filter
• NAT
• Mangle

Answer 8

Chain

Question 9

What is used to adjust the TCP headers of the packet.

• Raw
• Filter
• NAT
• Mangle

Answer 9

Mangle

Question 10

What is used to exempt packets from connection tracking?

• Raw
• Filter
• NAT
• Mangle

Answer 10

Raw

Question 11

The default chains for NAT include all of the following except:

• Prerouting
• Postroutiing
• Input
• Output

Answer 11

Input

Question 12

The default chains for Filter include all of the following except:

• Routing
• Input
• Output
• Forward

Answer 12

Routing

Question 13

This table rules for routing packets to networks that cannot be accessed directly.

• Filter
• Mangle
• RAW
• NAT

Answer 13

NAT

Question 14

For more information on iptables, what command could a user use in a terminal?

Answer 14

man iptables

Question 15

What Chain in Targets, is defined as targets that keep matching the packets against rules in a chain even when the packet matches a rule?

• Terminating
• Non-Terminating
• Accept
• Reject

Answer 15

Non-Terminating

Question 16

What option would be utilized in iptables to initiate a protocol check?

• p
• P
• j
• s

Answer 16

p

Question 17

What option would be utilized in iptables to identify source specification?

• S
• m
• s
• D

Answer 17

-s

Question 18

What command can be used to see all existing tables in iptables? (full command to include –)

Answer 18

sudo iptables –list

Question 19

What command can be utilized to set a default policy that alllows all incoming traffic in iptables?

Question 20

File integrity monitoring (FIM) refers to an IT security process and technology that tests and checks operating system (OS), database, and application software files to determine whether or not they have been tampered with or corrupted.

T/F

Answer 20

True

Question 21

What command did we utilize in this lesson to create a hash?

Answer 21

md5sum

Question 22

File integrity can be verified with ______ hashing tools like md5sum.

Answer 22

MD5

Question 23

All of the following are common hashing tools except:

• md5sum
• Hash
• HAVAL
• CRC-32

Answer 23

Hash

Question 24

What is a broad term that covers a multitude of devices, technologies, and processes?

• Switch
• Router
• Security Information
• Network Security

Answer 24

Network Security

Question 25

The protection and secure configuration of Network Services like DNS Servers, Time Servers, VPN Concentrators that provide secure remote access, and VPN Tunnels to remote sites is also usualy considered network security.

T/F

Answer 25

True

Question 26

Which command includes the functionality for retrieving the banner details from HTTP servers.

Answer 26

wget

Question 27

Two main types of Banner grabbing are Active and ________

Answer 27

Passive

Question 28

What is often termed as Service Fingerprinting?

• HTTP grabbing
• Banner Grabbing
• Active Banner
• Passive Banner

Answer 28

Banner Grabbing

Question 29

Which banner is described as the attacker collecting data about our target using publically available information i.e. by analyzing the server either with the help of “Error Messages” or by “Sniffing up the Network Traffic”?

• Reactive Banner
• Active Banner
• Passive Banner
• Pattern Banner

Answer 29

Passive Banner

Question 30

What provides basic traffic filtering of incoming network traffic?

Answer 30

tcp wrappers

Question 31

TCP Wrappers include two main files which are /etc/hosts.allow and ________

Answer 31

/etc/hosts.deny

Question 32

What type of security refers to security tools that are deployed at the host level.

• Host-Based
• Network-Based
• Software-Based
• STIGS

Answer 32

Host-Based

Question 33

What are a configuration standard consisting of cybersecurity requirements that must be adhered to by any organization that is working with the Department of Defense?

• SOP
• OWASP
• STIGs
• NISST

Answer 33

STIGs

Question 34

What is an implementation of Mandatory Access Control for Linux written and published by the National Security Agency (NSA) that significantly increases the security of a Linux installation?

• Linux
• SSH
• SecureFTP
• SELinux

Answer 34

SELinux

Question 35

To maintain web host security, you can use what command?

Answer 35

netstat