Review 3

Question 1

Hardening is the act of configuring an OS securely, updating it, and removing unnecessary applications.

Answer 1

True—The hardening of an operating system is the act of configuring it securely, updating it, creating rules and policies, removing unnecessary applications, and stopping unnecessary services.

Question 2

To turn off services, you would access the Programs and Features section of the Control Panel.

Answer 2

False—Services can be shut off within the services section of Computer Management or within the command line. The Programs and Features section of the Control Panel is where you would uninstall unnecessary programs.

Question 3

The net stop commands disable services in Windows.

Answer 3

False—The net stop commands stop a service in Windows. To disable a service in the command line, you need to use the sc config command.

Question 4

A service pack is a group of updates, bug fixes, updated drivers, and security fixes.

Answer 4

True—A service pack is one downloadable package that includes a group of updates (hotfixes), bug fixes, updated drivers, and security fixes.

Question 5

The Windows Update program can be accessed by clicking Start > All Programs.

Answer 5

True—Windows Update can be accessed by navigating to Start > All Programs

Question 6

The option Never Check for Updates is recommended by Microsoft.

Answer 6

False—Never Check for Updates is not recommended by Microsoft because it can be a security risk. One of the three other options should be selected.

Question 7

The systeminfo commands show a list of hot fixes that have been installed to the operating system.

Answer 7

True—Systeminfo is a command used to list the hot fixes that have previously been installed to Windows.

Question 8

The second step in a patch management strategy is testing.

Answer 8

True—The four steps of a patch management strategy include planning, testing, implementing, and auditing.

Question 9

To open the Local Group Policy Editor console window, a user should type MMC in the Run prompt.

Answer 9

False—To open the Local Group Policy Editor console window, a user should type gpedit.msc. MMC opens a new Microsoft Management Console.

Question 10

The convert command converts an NTFS drive to FAT32.37

NTFS.

Answer 10

False—The convert command converts FAT32 partitions to NTFS

Question 11

Which of the following should be done to maintain and harden a hard disk? (Select the two best answers.) 
A. Defragment the drive. 
B. Consider a whole disk encryption. 
C. Install third-party applications. 
D. Sanitize the drive.

Answer 11

A and B. Defragmenting the hard drive is a good way to maintain the drive. Using whole disk encryption can harden the hard disk. It is unknown whether third-party applications can help to maintain or harden a hard disk; chances are they will do neither. Sanitizing the drive is the act of removing all the data.

Question 12

Which of the following should you implement to keep a well-maintained computer? (Select the three best answers.) 
A. Update the firewall. 
B. Update the BIOS. 
C. Use a surge protector. 
D. Remove the unnecessary firewall.

Answer 12

A, B, and C. To keep a well-maintained computer, a user should use a surge protector or UPS, update the BIOS, update Windows, update antimalware, update the firewall, and maintain the disks. It is extremely rare that there will be an unnecessary firewall.

Question 13

Which of the following are examples of virtualization? (Select the three best answers.) 
A. Microsoft Virtual PC 
B. Microsoft Virtual Server 
C. VMware 
D. Microsoft Visio

Answer 13

A, B, and C. Microsoft Virtual PC, Microsoft Virtual Server, and VMware are all examples of virtualization. Microsoft Visio is a program within the Microsoft Office suite used to create diagrams and flow charts.

Question 14

Of the following, which can be a security benefit when using virtualization?
A. Patching a computer patches all virtual machines running on the computer.
B. If one virtual machine is compromised, none of the other virtual machines can be compromised.
C. If a virtual machine is compromised, the adverse effects can be compartmentalized.
D. Virtual machines cannot be affected by hacking techniques.

Answer 14

C. By using a virtual machine (which is one example of a virtual instance), any ill effects can be compartmentalized to that particular virtual machine, usually without any ill effects to the main operating system on the computer. Patching a computer does not automatically patch virtual machines existing on the computer. Other virtual machines can be compromised, especially if nothing is done about the problem. Finally, virtual machines can definitely be affected by hacking techniques. Be sure to secure them!

Question 15

. What is the best option to use to isolate an operating system?
A. Host-based intrusion detection system
B. Network-based intrusion detection system
C. Antivirus software
D. Virtualization software

Answer 15

Virtualization software should be used to isolate operating systems from attacks and other types of threats. The other three answers help to protect an operating system but do not isolate it completely.

Question 16

Which of the following is the best file system to use in Windows? 
A. FAT32 
B. FAT 
C. NTFS 
D. FAT1639

Answer 16

C. NTFS is the best file system to use in Windows because it is more secure, enables logging, and enables larger partition sizes. You should consider converting FAT partitions to NTFS.

Question 17

Which commands disable a service in the command line? 
A. net stop 
B. net start 
C. net disable 
D. sc config

Answer 17

D. sc config can be used to disable a service in the command line. Services can be started and stopped with the net start and net stop commands, respectively. Net disable is not about command.

Question 18

Which one of the following navigational paths shows the current service pack level to the user?
A. Click Start, right-click Network, and select Properties.
B. Click Start, right-click Computer, and select Properties.
C. Click Start, right-click Computer, and select Manage.
D. Click Start, right-click Network, and select Manage.

Answer 18

B. To find out the current service pack level, click Start, right-click Computer, and select Properties in Windows.

Question 19

Which command lists the hotfixes installed to Windows? 
A. systeminfo 
B. gpedit.msc 
C. cmd.exe 
D. sc config

Answer 19

A. systeminfo lists all the hotfixes that have previously been installed to Windows. Gpedit.msc displays the Local Group Policy Editor console window. Cmd.exe opens the Command Prompt in Windows. Sc config can be used for a variety of things, including disabling services.

Question 20

What is baselining?
A. The act of securing an operating system and updating it
B. A group of updates, bug fixes, and security fixes
C. The process of measuring changes in networking devices, hardware, and software
D. A type of patch management

Answer 20

C. Baselining is the process of measuring changes in devices or computers. The acts of securing an operating system and updating it are 41
components of hardening the operating system. A group of updates, bug fixes, and security fixes is a service pack. Patch management is the planning, testing, implementing, and auditing of patches.