Free GIAC GSEC Free Demo Online

NEW QUESTION 1
Against policy, employees have installed Peer-to-Peer applications on their workstations and they are using them over TCP port 80 to download files via the company network from other Peer-to-Peer users on the Internet. Which of the following describes this threat?

• A. Firewall subversion
• B. Backdoor installation
• C. Malicious software infection
• D. Phishing attempt

Answer: A

NEW QUESTION 2
Where is the source address located in an IPv4 header?

• A. At an offset of 20 bytes
• B. At an offset of 8 bytes
• C. At an offset of 16 bytes
• D. At an offset of 12 bytes

Answer: D

NEW QUESTION 3
Which of the following are network connectivity devices?
Each correct answer represents a complete solution. Choose all that apply.

• A. Network analyzer
• B. Bridge
• C. Brouter
• D. Firewall
• E. Repeater
• F. Hub

Answer: BCEF

NEW QUESTION 4
Many IIS servers connect to Microsoft SQL databases. Which of the following statements about SQL server security is TRUE?

• A. SQL Server patches are part of the operating system patche
• B. SQL Server should be installed on the same box as your IIS web server when they communicate as part of the web applicatio
• C. It is good practice to never use integrated Windows authentication for SQL Serve
• D. It is good practice to not allow users to send raw SQL commands to the SQL Serve

Answer: D

NEW QUESTION 5
Which of the following commands is used to change file access permissions in Linux?

• A. chgrp
• B. chperm
• C. chmod
• D. chown

Answer: C

NEW QUESTION 6
Which of the following systems acts as a NAT device when utilizing VMware in NAT mode?

• A. Guest system
• B. Local gateway
• C. Host system
• D. Virtual system

Answer: D

NEW QUESTION 7
John works as a professional Ethical Hacker. He is assigned a project to test the security of www.we- are-secure.com. He installs a rootkit on the Linux server of the We-are-secure network. Which of the following statements are true about rootkits?
Each correct answer represents a complete solution. Choose all that apply.

• A. They allow an attacker to conduct a buffer overflo
• B. They allow an attacker to set a Trojan in the operating system and thus open a backdoor for anytime acces
• C. They allow an attacker to replace utility programs that can be used to detect the attacker's activit
• D. They allow an attacker to run packet sniffers secretly to capture password

Answer: BCD

NEW QUESTION 8
What does an attacker need to consider when attempting an IP spoofing attack that relies on guessing Initial Sequence Numbers (ISNs)?

• A. These attacks work against relatively idle server
• B. These attacks rely on a modified TCP/IP stack to functio
• C. These attacks can be easily traced back to the sourc
• D. These attacks only work against Linux/Unix host

Answer: A

NEW QUESTION 9
In trace route results, what is the significance of an * result?

• A. A listening port was identifie
• B. A reply was returned in less than a secon
• C. The target host was successfully reache
• D. No reply was received for a particular ho

Answer: D

NEW QUESTION 10
When should you create the initial database for a Linux file integrity checker?

• A. Before a system is patched
• B. After a system has been compromised
• C. Before a system has been compromised
• D. During an attack

Answer: C

NEW QUESTION 11
Which Host-based IDS (HIDS) method of log monitoring utilizes a list of keywords or phrases that define the events of interest for the analyst, then takes a list of keywords to watch for and generates alerts when it sees matches in log file activity?

• A. Passive analysis
• B. Retroactive analysis
• C. Exclusive analysis
• D. Inclusive analysis

Answer: D

NEW QUESTION 12
Mark works as a Network Administrator for NetTech Inc. The company has a Windows 2003 domain- based network. The network contains ten Windows 2003 member servers, 150 Windows XP Professional client computers. According to the company's security policy, Mark needs to check whether all the computers in the network have all available security updates and shared folders. He also needs to check the file system type on each computer's hard disk. Mark installs and runs MBSACLI.EXE with the appropriate switches on a server. Which of the following tasks will he accomplish?

• A. None of the tasks will be accomplishe
• B. He will be able to check the file system type on each computer's hard dis
• C. He will be able to accomplish all the task
• D. He will be able to check all available security updates and shared folder

Answer: C

NEW QUESTION 13
What is the command-line tool for Windows XP and later that allows administrators the ability to get or set configuration data for a very wide variety of computer and user account settings?

• A. IPCONFIG.EXE
• B. NETSTAT.EXE
• C. WMIC.EXE
• D. C0NF1G.EXE

Answer: C

NEW QUESTION 14
You work as a Network Administrator for Tech Perfect Inc. The company has a TCP/IP-based network. You have configured a firewall on the network. A filter has been applied to block all the ports. You want to enable sending and receiving of emails on the network. Which of the following ports will you open?
Each correct answer represents a complete solution. Choose two.

• A. 80
• B. 25
• C. 20
• D. 110

Answer: BD

NEW QUESTION 15
Which of the following Unix syslog message priorities is the MOST severe?

• A. err
• B. emerg
• C. crit
• D. alert

Answer: B

NEW QUESTION 16
Which of the following is NOT a recommended best practice for securing Terminal Services and Remote Desktop?

• A. Require TLS authentication and data encryption whenever possibl
• B. Make sure to allow all TCP 3389 traffic through the external firewal
• C. Group Policy should be used to lock down the virtual desktops of thin-client user
• D. Consider using IPSec or a VPN in addition to the RDP encryption if you are concerned about future RDP vulnerabilitie

Answer: B

NEW QUESTION 17
You are going to upgrade your hard disk's file system from FAT to NTFS. What are the major advantages of the NTFS file system over FAT16 and FAT32 file systems?
Each correct answer represents a complete solution. Choose all that apply.

• A. NTFS gives better file security than FAT16 and FAT32.
• B. Automatic backu
• C. NTFS file system supports for larger hard disk
• D. NTFS give improved disk compression than FAT16 and FAT32.

Answer: ACD

NEW QUESTION 18
......