Realistic CIW 1D0-571 practice test

New Questions 1

Which of the following will best help you ensure a database server can withstand a recently discovered vulnerability?

A. Updating the company vulnerability scanner and conducting a new scan

B. Adding a buffer overflow rule to the intrusion detection system

C. Reconfiguring the firewall

D. Installing a system update

View Answer

New Questions 2

Your organization has made a particularly unpopular policy decision. Your supervisor fears that a series of attacks may occur as a result. You have been assigned to increase automated auditing on a server. When fulfilling this request, which of the following resources should you audit the most aggressively?

A. Authentication databases, including directory servers

B. Intrusion detection systems, especially those placed on sensitive networks

C. Log files on firewall systems

D. Firewall settings for desktop systems

View Answer

New Questions 3

Which of the following is the most likely first step to enable a server to recover from a denial-of-service attack in which all hard disk data is lost?

A. Enable virtualization

B. Contact the backup service

C. Contact a disk recovery service

D. Rebuild your RAID 0 array

View Answer

New Questions 4

You have determined that an attack is currently underway on your database server. An attacker is currently logged in, modifying data. You want to preserve logs, caching and other data on this affected server. Which of the following actions will best allow you to stop the attack and still preserve data?

A. Pull the server network cable

B. Shut down the server

C. Back up the system logs

D. Force an instant password reset

View Answer

New Questions 5

You have been assigned to provide security measures for your office's reception area. Although the company needs to provide security measures, costs must be kept to a minimum. Which of the following tools is the most appropriate choice?

A. Firewall

B. Intrusion-detection system

C. Camera

D. Security guard

View Answer

New Questions 6

You are using a PKI solution that is based on Secure Sockets Layer (SSL). Which of the following describes the function of the asymmetric-key-encryption algorithm used?

A. It encrypts the symmetric key.

B. It encrypts all of the data.

C. It encrypts the hash code used for data integrity.

D. It encrypts the X.509 key.

View Answer

New Questions 7

Consider the following diagram:

Which type of attack is occurring?

A. Polymorphic virus-based attack

B. Denial-of-service attack

C. Distributed denial-of-service attack

D. Man-in-the-middle attack using a packet sniffer

View Answer

New Questions 8

Which of the following details should be included in documentation of an attack?

A. An overview of the security policy and suggestions for the next response plan

B. Estimates of how much the attack cost the company, and a list of the applications used by the attacker

C. The time and date of the attack, and the names of employees who were contacted during the response

D. The network resources involved in the attack, and recommendations for thwarting future attacks

View Answer

New Questions 9

What is the primary drawback of using symmetric-key encryption?

A. Key transport across a network

B. Speed of encryption

C. Denial-of-service attacks

D. Inability to support convergence traffic

View Answer

New Questions 10

Consider the following diagram:

Which of the following best describes the protocol activity shown in the diagram, along with the most likely potential threat that accompanies this protocol?

A. The ICMP Time Exceeded message, with the threat of a denial-of-service attack

B. The SIP three-way handshake, with the threat of a buffer overflow

C. The TCP three-way handshake, with the threat of a man-in-the-middle attack

D. The DNS name query, with the threat of cache poisoning

View Answer