IS3440 CHAP 9 NETWORKED APPLICATION SECURITY Flashcards

1
Q

___ is the open source private branch exchange (PBX) VoIP service.

A

Asterisk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

___ is a frequently malicious insertion of non-authoritative DNS data as if it were authoritative. May also be used by black-hat hackers to redirect users to malicious Web sites.

A

Cache poisoning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

___is an entity such as VeriSign or GoDaddy that issues digital certificates for use by other parties. Secure Web sites without an official CA return an error message.

A

(CA) Certificate authority

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

___ is a group of protocols where a serve such as open source sendmail presents a challenge such as a request for a username and password.

A

(CRAM) Challenge-response authentication mechanism

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

___ is a protocol used for communications between Web proxy servers such as Squid.

A

(ICP) Inter-Cache Protocol

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

___ is a framework for encryption associated with the Java programming language; may also be used with open source sendmail.

A

(JCE) Java Cryptography Extension

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

___ is an acronym associated with Web services. The first three letters stand for Linux, Apache, and MySQL. The last letter may stand for Perl, Python, or PHP. It is a system where these services are integrated.

A

LAMP stack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

___ is related to servers such as Dovecot that facilitate the delivery of email to user clients.

A

(MDA) Mail delivery agent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

___is associated with servers that collect email from networks, such as fetchmail.

A

(MRA) Mail retrieval agent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

___ is associated with servers that transmit email, such as sendmail and Postfix.

A

(MTA) Mail transfer agent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

___ is associated with client email applications such as Evolution and Thunderbird.

A

(MUA) Mail user agent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

___ are used to add functionality to the Apache Web server.

A

(MPMs) Multi-Processing Modules

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

___ is a dynamic scripting language developed by Larry Wall; frequently used with Apache for Web sites.

A

Perl

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

___ is a scripting language associated with dynamic Web sites; frequently used with Apache.

A

(PHP) PHP: Hypertext Preprocessor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

___ is a multi-paradigm programming language frequently used with Apache for Web sites.

A

Python

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

___ is a standard packet format for VoIP and video communications.

A

(RTP) Real-time Transport Protocol

17
Q

___ is a search of a DNS database that is sent to other DNS servers if the information is not available locally.

A

Recursive query

18
Q

___is an Internet Protocol (IP) network protocol frequently used tin VoIP communications.

A

(SIP) Session Initiation Protocol

19
Q

___ is a protocol used to authenticate data exchanges between DNS servers.

A

(TSIG) Transition SIGnature

20
Q

___ is created on the same physical network as another LAN. Because both LANs are separate and distinct, they are virtual.

A

(VLAN) Virtual LAN

21
Q

___ is when associated with DNS, a database of hostnames and Internet Protocol (IP) addresses for a specific authoritative domain.

A

Zone files

22
Q

___ is a reference to data exchange between DNS servers with respect to hostnames and Internet Protocol (IP) addresses of a specific domain.

A

Zone updates

23
Q

___ is related to servers that authenticate user connections to email services. Frequently integrated into MTAs such as sendmail and Postfix.

A

(MSA) Mail submission agent

24
Q
  1. Which of the following services is NOT part of the LAMP stack?
  2. Linux
  3. Apache
  4. MySQL
  5. Postfix
A

Postfix

25
Q
  1. Which of the commands sets a password for the MySQL administrative user?
1.  mysqladmin -u admin password
               "newpassword"
2. mysqladmin -u root password
               "newpassword"
3. mysqladmin -u mysql password
               "newpassword"
4. mysqladmin -u user root
               "newpassword"
A

mysqladmin -u root password

“newpassword”

26
Q
  1. Which of the following commands removes the php5 module in Apache on an Ubuntu system?
  2. a2enmod php5
  3. a2rmmod php5
  4. e2dismod php5
  5. a2modprobe php5
A

e2dismod php5

27
Q
  1. What is the command that can create users and passwords for access to a Web directory in Apache?
A

htpasswd (acceptable: htdigest)

28
Q
  1. The server . csr file includes identifying information about your system.
    TRUE OR FALSE
A

TRUE

29
Q
  1. Which of the following port numbers is associated with Squid?
  2. 80
  3. 3128
  4. 443
  5. 8080
A

3128

30
Q
  1. Which of the following should NOT be included on a public DNS server?
  2. Mail server IP addresses
  3. DNS server IP addresses
  4. Web server IP addresses
  5. Squid server IP addresses
A

Squid server IP addresses

31
Q
  1. Which of the following commands reads all changes made to files in the /etc/mail/ directory for open source sendmail?
  2. make -C /etc/mail
  3. m4 /etc/mail
  4. make /etc/mail/sendmail.mc
  5. m4 /etc/mail/sendmail.mc
A

make -C /etc/mail

32
Q
  1. Which of the following open source sendmail directives is used to specify email protocols?
  2. define
  3. DAEMON_OPTIONS
  4. FEATURE
  5. MAILER
A

DAEMON_OPTIONS

33
Q
  1. Which of the following configuration files is most important for Postfix?
  2. main.cf
  3. master.cf
  4. maps
  5. cfsubmit.cf
A

main.cf

34
Q
  1. In Dovecot, if you want to activate both regular and secure POP3 and IMAP services, what options would you add to the PROTOCOLS directive?
A

imap imaps pop3 pop3s

35
Q
  1. Which of the following is NOT a protocol closely associated with Asterisk?
  2. IPP
  3. SIP
  4. RTP
  5. UDP.
A

IPP

36
Q
  1. Which of the following directives in the main CUPS configuration file specifies groups of users who are allowed to administer CUPS?
  2. Lpadmin
  3. Admin
  4. System
  5. SystemGroup
A

SystemGroup

37
Q
  1. Which of the following NTP RESTRICT options relate to logging?
  2. kod
  3. notrap
  4. nopeer
  5. noquery
A

notrap

38
Q
  1. Which of the following directives specify and can limit the information given about an Apache system?
  2. banner
  3. System
  4. ServerTokens
  5. server string
A

ServerTokens