Final

Question 1

A device that can filter traffic based on source or destination addresses is called a:

Answer 1

Firewall

Question 2

Briefly describe the OSI model.

Answer 2

A model used in networking which breaks up communications into 7 abstract layers. The layers communicate with each other using encapsulation.

Question 3

Briefly describe the purpose of a VPN.

Answer 3

Virtual Private Network is used to securely access resources over a non-secure public network connection, using an encrypted tunnel.

Question 4

Briefly describe what NAT does.

Answer 4

Network Address Translation modifies IP headers to change the source/destination IP/ports for the purposes of mapping one address to another. It can be used, for example, to let many devices on a private network all share one public IP address.

Question 5

Describe the TCP 3-way handshake.

Answer 5

It is the start of a TCP connection. Host A send a packet with the SYN flag set. Host B responds with a SYN/ACK. Host A then confirms the connection by sending an ACK.

Question 6

Give an example of a Layer 1 medium.

Answer 6

Copper or fiber

Question 7

Give an example of a link-state routing protocol.

Answer 7

OSPF or IS-IS

Question 8

How many bits is an IPv4 address?

Answer 8

32

Question 9

How many bits is this subnet: 255.255.255.0?

Answer 9

24

Question 10

How many individual copper wires are in a Cat5e cable?

Answer 10

8

Question 11

How many layers are in the OSI model?

Answer 11

7

Question 12

If your network address is 192.168.12.0/24, how many IP addresses are available on this network?

Answer 12

256 total, 254 usable

Question 13

In TCP, what happens if a packet is lost?

Answer 13

TCP will notice a packet that is not acknowledged and retransmit it.

Question 14

In TCP, what’s the purpose of the FIN packet?

Answer 14

To end a TCP connection nicely

Question 15

In a TCP connection, when the sender advertises a window size, what does this tell the receiver?

Answer 15

This tells the receiver how much data the sender is willing to accept.

Question 16

In which layer does an ethernet switch run?

Answer 16

layer 2

Question 17

Is the IP protocol ““best effort”” or does it guarantee delivery?

Answer 17

Best effort

Question 18

List an advantage and a disadvantage of using layered protocols.

Answer 18

One advantage is abstraction. One layer can be changed without affecting other laters. One disadvantage is the overhead of going through so many layers may slow communications.

Question 19

List the layers of the OSI model.

Answer 19

Physical
Data link
Network
Transport
Session
Presentation
Applcation

Question 20

Name an advantage of fiber optic cabling over copper cabling.

Answer 20

Has more bandwidth. Can go further distance. Is not susceptible to EMI.

Question 21

What is CSMA/CD?

Answer 21

It is one of the protocols used in Ethernet.
Carrier Sense – the device can tell when someone is talking on the channel or when the channel is idle. Multiple Access – let’s multiple devices use the same channel.
Collision Detection – detection when two devices talk and the same time and their frames collide.

Question 22

What is Dynamic Host Control Protocol (DHCP) used for?

Answer 22

Used to distribute network information (IP, Netmask, DNS, router, etc) to clients.

Question 23

What is a DNS root server?

Answer 23

One of 13 servers around the globe responsible for handling top level domain name requests.

Question 24

What is encapsulation?

Answer 24

Encapsulation is adding more data to a packet as it travels down the layers of the OSI model.

Question 25

What is the ping of death?

Answer 25

A malicious attack used by sending an oversize ping request. The victim would not expect a ping of this size and would typically crash.

Question 26

What is the purpose of a Regional Internet Registry, such as ARIN?

Answer 26

To distribute IP address blocks in a region of the world.

Question 27

What is the purpose of networking?

Answer 27

To communicate

Question 28

What port does the SMTP protocol run on?

Answer 28

25

Question 29

What type of address is hardcoded into an ethernet adapter?

Answer 29

MAC address

Question 30

What type of address is this: 00:25:4b:a0:c2:d0?

Answer 30

MAC Address

Question 31

What's a common frequency that wireless networks use?

Answer 31

2.4ghz or 5ghz

Question 32

What's a common protocol that runs at Layer 2?

Answer 32

Ethernet, ADSL, DOCSIS

Question 33

What's a common protocol that runs at Layer 3?

Answer 33

IP

Question 34

What's an advantage of a ethernet switch over an ethernet hub?

Answer 34

A switch is “smart” and learns which devices are plugged into which ports, and will not unnecessarily broadcast unneeded data across the network.

Question 35

What's the purpose of a CNAME record in DNS?

Answer 35

Canonical name is a DNS alias.

Question 36

When a DNS server looks up an address, it may store the response in case another client later asks for the same address. What is this called?

Answer 36

Caching

Question 37

When would you want to use a protocol where it doesn't matter if you lose packets?

Answer 37

When transmitting real-time data such as voice and video.

Question 38

Which is more susceptible to electro-magnetic interference, copper or fiber?

Answer 38

Copper

Question 39

Which routing protocol let's autonomous systems share routing information and build the global Internet routing tables?

Answer 39

BGP

Question 40

Which type of network topology has more redundancy, star or ring?

Answer 40

Ring

Question 41

What is the key to IP scalability?

Answer 41

Hierarchical address allocation

Question 42

Which protocol will retransmit a lost packet?

Answer 42

TCP

Question 43

The order of rules in a firewall is important. True or false?

Answer 43

True

Question 44

What is cryptography?

Answer 44

1. "secret writing" | 2. Encryption/Decryption of messages to protect against unauthorized viewers

Question 45

What is an advantage of Symmetric Encryption over Public Key Encryption?

Answer 45

Symmetric is a lot faster.

Question 46

What is Symmetric Encryption?

Answer 46

Symmetric is traditional encryption. give it a password, and you can encrypt and decrypt with that password.

Question 47

What is public key encryption?

Answer 47

A cryptographic system that uses two keys -- a public key known to everyone and a private or secret key known only to the recipient of the message. When John wants to send a secure message to Jane, he uses Jane's public key to encrypt the message. Jane then uses her private key to decryptit.

Question 48

What is digital signature?

Answer 48

When you digitally sign, take a hash of the clear text, and encrypt that with your own private key, and send it. Other user can decrypt it with your public key.

Question 49

What is CIA? Explain each one.

Answer 49

Confidentiality: Concealment of information or resources. Integrity: Trustworthiness of resources or resources in terms of preventing improper or unauthorized changes. Availability: data is on-line and you can retrieve it

Question 50

Routing tables, ospf | What is your default route that matches everything?

Answer 50

0.0.0.0

Question 51

SSL Certificates | What is CA?

Answer 51

CA (certificate authority) guys that issue certificates

Question 52

SSL Certificates | What is CSR?

Answer 52

CSR(Certificate Signing Request) is a document you send to a CA to get their stamp of approval and added to their list of people

Question 53

What is IPSEC?

Answer 53

Encryption at layer 3. If you encrypt at layer 3, everything above it will....

Question 54

What is IPSEC used for?

Answer 54

IPSEC is used for authenticating and encrypting IP packets of a communication session.

Question 55

DNS Cache Poisoning

Answer 55

A nameserver authoritative for one domain returns DNS information for itself as well as other domains that really don't go to where they should (i.e www.evil.com returns section(www.evil.com, 1.2.3.4,A) and the section(www.cnn.com,5.6.7.8,A) but its not the real cnn..get it? it's poisoning the cache lol)

Question 56

AAA (Authentication, Authorization, Accountability)

Answer 56

Authentication: confirming identity of subject(Who dey is,man?) Authorization: determining what the subject can do (What dey doing, man?) Accountability: association subjects to their actions(This nigga right here! he the one who do that)

Question 57

Black Hat Gray Hat White Hat

Answer 57

- a guy that does bad shit, they suck.(Joffery Baratheon) - a guy that just does his shit and gets by, ya never really know about these guys (Tyrion Lannister) - a guy that does the good shit, they good (Jaime Lannister, after he stopped fucking Cersei)

Question 58

Stateful Firewall

Answer 58

Firewall that keeps track of network connections, once a connections is established, it remembers it and doesn't check the packets. One of the rare times in security where you get both efficiency and security.

Question 59

Discretionary Access Control (DAC)

Answer 59

- user decided | - user can make and implement policy decisions

Question 60

Mandatory Access Control (MAC)

Answer 60

- System decided - system implements central security policy - user cannot override policy

Question 61

P2P bitTorrent

Answer 61

- Distribute the same file to many peers. - Single publisher, many downloaders. - Emphasis on efficient fetching, not searching. - To prevent freeloading, there are incentives for peers to contribute.

Question 62

P2P Gnutella

Answer 62

- fully decentralized - search cost distributed to all connected clients - large scope for searching, requires long time - high overhead

Question 63

What is a Man in The Middle Attack?

Answer 63

As an attacker, inserting yourself in the center. Forcing all of the traffic to go through you, making you see it all and having the ability to modify the data.

Question 64

What is nmap?

Answer 64

(Network Mapper) is a security scanner used to discover hosts and services on a computer network, thus creating a "map" of the network.

Question 65

What is nmap used for?

Answer 65

Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics.