Install nids and hids - Study guides, Class notes & Summaries

What prevents man-in-the-middle attack? correct answer: SMB What is the best technical solution for reducing the threat of man-in-the-middle attack? correct answer: PKI prevents eavesdropping and replay attack correct answer: Kerberos Which of these can protect against replay attack? correct answer: AH What protects against playback attack? correct answer: CHAP Which of the following may help prevent replay attack? correct answer: SSL What do you use to encrypt sensitive ...

Which of the following cryptographic algorithms is used in asymmetric encryption? Diffie-Hellman Which of the following is a tool for cracking Windows login passwords using rainbow tables? Ophcrack Brainpower Read More Previous Play Next Rewind 10 seconds Move forward 10 seconds Unmute 0:00 / 0:00 Full screen Jason is at home, attempting to access the website for his music store. When he goes to the website, it has a simple form asking for name, email, and phone num...

FedVTE CASP Exam 41 Questions with Verified Answers A flaw in an online sporting goods website allows customers to purchase multiple quantities of goods and only be charged the single quantity price. To improve the site, management is demanding that the ecommerce application be tested to insure this flaw is corrected. Which of the following is the BEST combination of tools and or methods to use? - CORRECT ANSWER A. Blackbox testing using outside consultants C. Fuzzer and HTTP interceptor ...

MIS 379 exam 3 questions and answers latest updated |100% correct Compare and contrast the characteristics of the various types of firewalls and select the correct explanation of a packet filtering firewall. An Access Control List (ACL) is configured to deny access to IP addresses with specific sources A firewall that maintains stateful information about the connection HTTP headers and the HTML code is analyzed to identify code that matches a pattern A stand-alone firewall that is implement...

Security and Operations and Incident Response Exam 134 Questions with Verified Answers Eren needs to establish a tool that can let him see all of the systems that a given IP address connects to and how much data that IP received by port and protocol. Which is NOT a suitable tool for that need? A. NetFlow B. IPSec C. IPFIX D. sFlow - CORRECT ANSWER B. IPSec; IPSec is not used to capture network flows. A system that Mark takes responsibility for crashed and he guesses that a malware iss...

FedVTE CASP Exam 41 Questions with Verified Answers A flaw in an online sporting goods website allows customers to purchase multiple quantities of goods and only be charged the single quantity price. To improve the site, management is demanding that the ecommerce application be tested to insure this flaw is corrected. Which of the following is the BEST combination of tools and or methods to use? - CORRECT ANSWER A. Blackbox testing using outside consultants C. Fuzzer and HTTP interceptor ...

Lesson 9 Questions and answers with complete top solutions As they protect data at the highest layer of the protocol stack, application-based firewalls have no basic packet filtering functionality. False. All firewall types can perform basic packet filtering (by IP address, protocol type, port number, and so on). What distinguishes host-based personal software firewall from a network firewall appliance? A personal firewall software can block processes from accessing a network connectio...

Level 3 Technical Level IT: NETWORKING A/507/6495 Unit 6 Network security management Mark scheme June 2019 Version: 1.0 Final *196AA/MS* Mark schemes are prepared by the Lead Assessment Writer and considered, together with the relevant questions, by a panel of subject teachers. This mark scheme includes any amendments made at the standardisation events which all associates participate in and is the scheme which was ...

A combined mail server and calendaring server environment contains no secure sockets layer (SSL) certificate. Which security principle of the CIA triad is affected by the lack of an SSL certificate? A Confidentiality B Integrity C Authentication D Availability Correct answer- A A company does not have a disaster recovery plan (DRP) and suffers a multiday power outage. Which provisioning should the company perform to provide stable power for a long period of time? A Purchase gen...

Q80. IDS alerts indicate abnormal traffic patterns are coming from a specific server in a data center that hosts sensitive data. Upon further investigation, the server administrator notices this serv er has been infected with a virus due to an exploit of a known vulnerability from its database software. Which of the following should the administrator perform after removing the virus to mitigate this issue from reoccurring and to maintain high availability? (Select three) a. Run a vulnerability s...