Week 4

Question 1

What are the four core SRGs?

Answer 1

• Application
• Network Infrastructure
• OS
• Policy

Question 2

Command to exit and save modifications

Answer 2

:wq!

Question 3

Command that stores configurations for system bootup

Answer 3

Inittab

Question 4

4 management groups of PAM

Answer 4

• account
• authentication
• password
• session

Question 5

What is a directory?

Answer 5

File containing files

Question 6

What does the command “top” do?

Answer 6

Views top running processes on a system

Question 7

What does the command “tail” do?

Answer 7

View last portion on a file

Question 8

What does the command “more” do?

Answer 8

Read text based files

Question 9

What does the command “mkdir” do?

Answer 9

Creates new directory

Question 10

What does “x” mean?

Answer 10

Shadow file being used or encrypted

Question 11

What is a false positive?

Answer 11

File or program that may exhibit behavior or coding that triggers a behavior alert

Question 12

What is an algorithm or hash that is specific to a unique attack/virus?

Answer 12

Signature

Question 13

Which feature will prevent unwanted changes to a computer by restricting access to ports, files, and shares?

Answer 13

Access protection

Question 14

What is privilege escalation?

Answer 14

Someone having more access than they are authorized to have

Question 15

What do you not use admin accounts for?

Answer 15

• social networking
• email
• web browsing
• personal stuff

Question 16

How many accounts will an admin have at a minimum?

Answer 16

2

Question 17

What kind of Trojan uses a jumping point to get to other systems?

Answer 17

Proxy Trojan

Question 18

Which type of Trojan causes havoc by deleting files, corrupting the OS, and crashing the whole system?

Answer 18

Destructive

Question 19

What type of Trojan provides full or partial access to a victim’s system?

Answer 19

Remote access Trojan

Question 20

What type of trojan sends data such as cookies, key strokes, and passwords to attacker via email or backdoor?

Answer 20

Data sending Trojan

Question 21

What are the signs of a DoS?

Answer 21

• slow network performance
• unavailability of a particular website
• dramatic increase of email spam

Question 22

Ways to prevent session hijacking

Answer 22

• encryption (SSH,SSL)
• reducing amount of openings in network
• using secure protocol
• strong authentication

Question 23

What do you use to configure security policies for Windows?

Answer 23

GPO Editor

Question 24

What command do you use to edit GPOs?

Answer 24

gpedit.msc

Question 25

What snap in allows admin to edit local security templates for the system?

Answer 25

Security templates

Question 26

What snap in allows admin to analyze system configuration and applied security templates?

Answer 26

Security configuration and analysis

Question 27

What snap in allows admin to configure built in IPSec software on windows systems for encrypted communications?

Answer 27

IP security policy management

Question 28

Which snap in provides configuration of RBAC setting for installed applications?

Answer 28

Authorization Manager

Question 29

GPO Editor separates the local computer policies into?

Answer 29

- user configuration | - computer configuration

Question 30

Which policy provides options for setting password complexity, lockout accounts, and length requirements?

Answer 30

Account polices

Question 31

What does public key policy do?

Answer 31

- ability configure EFS - BitLocker - built in crypto capabilities

Question 32

Which policy provides options for system auditing, right setting, and security features such as network access?

Answer 32

Local policies

Question 33

The determination of service configuration for a computer is controlled by role and will be done during _______ stage of installation?

Answer 33

CSIM

Question 34

If the database is corrupted, what could happen?

Answer 34

- loss of privacy - corruption of data - denial of service - breach of National Security

Question 35

What are he 4 core SRGs?

Answer 35

- applications - network infrastructure - operating systems - policy

Question 36

What are some password complexities?

Answer 36

- numeric - upper and lower - password reuse - special characters

Question 37

DBMS must use what?

Answer 37

NIST validates FIPS 140-2

Question 38

How can DoS attacks be mitigated?

Answer 38

- number of connections by a single user | - database clustering

Question 39

What is a SQL Injection?

Answer 39

Attack which malicious code is inserted into string and passed to SQL server for execution

Question 40

What are the LINUX distributions?

Answer 40

- Red Hat - Solarias - HP-UNIX - IBM-AIX

Question 41

Head

Answer 41

view topmost lines of a file

Question 41

More

Answer 41

Used to read/view contents of file

Question 41

When entering command in, what is the certain way?

Answer 41

Command> options > parameters

Question 41

What are the two text editors?

Answer 41

- vi | - nano

Question 41

How to save changes for vi?

Answer 41

:wq!

Question 41

How to save changes for nano?

Answer 41

CTRL + O

Question 41

If making changes to a file in /etc directory, what should level of access should I be in?

Answer 41

Root

Question 41

What directory contains startup files and the kernel?

Answer 41

Boot directory

Question 41

What directory contains most system config files?

Answer 41

/etc

Question 42

What directory contains references to all CPU peripheral hardware?

Answer 42

Dev

Question 43

What is /root?

Answer 43

Home directory for root user account

Question 44

What is / ?

Answer 44

Root directory

Question 45

What do inodes do?

Answer 45

Type of serial number hat contains information about actual data that makes up the data (who owns its, file size)

Question 46

Two types of links

Answer 46

- symbolic | - hard

Question 47

Which link links files by their name?

Answer 47

Symbolic

Question 48

Hard links point to file by inode number, hard link file must exist on he same file system

Answer 48

N/A

Question 49

What configuration file contains configuration settings for any authentication modules used by he system?

Answer 49

Pam.d

Question 50

What are the two main ownership sets?

Answer 50

- user | - group

Question 51

What does stickybit do?

Answer 51

Protects public directories by preventing users from deleting files that belong to other users

Question 52

What does setgid do?

Answer 52

User gains privileges of file executed

Question 53

LINUX uses a 4 digit octal permission set

Answer 53

N/A

Question 54

What does umask do for LINUX?

Answer 54

A kernel variable that controls the file access permissions assigned to newly created files and directories

Question 55

Where would you go to view password in encrypted form?

Answer 55

/etc/shadow file

Question 56

What command allows user to change password?

Answer 56

Passwd

Question 57

What do TCP wrappers do?

Answer 57

Host based networking ACL system

Question 58

PAM is separated into 4 groups. | Which one checks that the specified account is a valid authentication target under current conditions?

Answer 58

Account modules

Question 59

Which PAM group defines actions that occur at the beginning and end of sessions?

Answer 59

Session

Question 60

Which PAM group verifies user identity by checking password?

Answer 60

Authentication

Question 61

Which directory contains start and stop scripts for all directories running in the system?

Answer 61

Init.d

Question 62

What threats are unique to web servers?

Answer 62

- non-existent anti-virus - instant messaging - default OS and web server installs and misconfigurations - cross-site scripting - remote data services in Microsoft IIS

Question 63

Encryption requirements for data transmission are dependent on?

Answer 63

- sensitivity of data being transmitted - classification level of the network being traversed - differences in need-to-know between the data and the user

Question 64

What are additional security controls to have in place with the web server host?

Answer 64

- disabling unnecessary services | - limiting number of simultaneous requests

Question 65

How many types of web pages and what do they do?

Answer 65

- static: no user interaction | - dynamic: specialized content for users and generated webpages