Q1. Which of the following steps can be taken by an administrator as countermeasures against software keyloggers? Each correct answer represents a part of the solution. Choose all that apply. 

A. Use commercially available anti-keyloggers. 

B. Actively monitor the programs running on the server. 

C. Update antivirus regularly. 

D. Always check hard disk space on the server. 

View Answer

Q2. You have bought a Windows Vista Enterprise Edition computer. You want to enable BitLocker encryption through the Control Panel. In the Startup Preference dialog box, choose the startup options that can be selected if the computer has a built-in TPM chip. 

View Answer

Q3. Which of the following can be installed for ensuring that the domain is secure in the remote locations?

A. Read-Only domain controller (RODC) 

B. Microsoft Baseline Security Analyzer 

C. Windows Software Update Services 

D. DNS dynamic update 

View Answer

Q4. Which of the following is a disadvantage of using biometric identification?

A. It breaks the several firewall security rules.

B. It needs a new network configuration of the entire infrastructure.

C. It can be faked and will not be trusted by several organizations.

D. It is expensive and cannot be afforded by several organizations

View Answer

Q5. The workstations on your network utilize Windows XP (service pack 2 or later). Many users take their laptops on the road. You are very concerned about the security and want to have a robust firewall solution for mobile users. You have decided that all your firewalls to use the Stateful Packet Inspection (SPI) method. What must you do to provide SPI to your mobile users? 

A. You must purchase a third party firewall solution for your mobile users. 

B. Do nothing. Windows XP service pack 2 has a firewall turned on by default. 

C. Configure the Windows XP firewall to use SPI. 

D. Download the SPI template from Microsoft. 

View Answer

Q6. Mark works as a Network Administrator for BlueWell Inc. The company has a Windows-based network. Mark has retained his services to perform a security assessment of the company's network that has various servers exposed to the Internet. So, it may be vulnerable to an attack. Mark is using a single perimeter ?rewall, but he does not know if that is enough. He wants to review the situation and make some reliable recommendations so that he can protect the data over company's network. Which of the following will Mark do to accomplish the task? 

A. Outsource the related services. 

B. Encrypt the data and than start transmission. 

C. Locate the Internet-exposed servers and devices in an internal network. 

D. Create a perimeter network to isolate the servers from the internal network. 

View Answer

Q7. A user has opened a Web site that automatically starts downloading malicious code onto his computer. What should he do to prevent this? Each correct answer represents a complete solution. Choose two.

A. Disable ActiveX Controls

B. Disable Active Scripting

C. Implement File Integrity Auditing

D. Configure Security Logs

View Answer

Q8. Mark works as a Security Officer for TechMart Inc. The company has a Windows-based network. He has bees assigned a project for ensuring the safety of the customer's money and information, not to mention the company's reputation. The company has gone through a security audit to ensure that it is in compliance with industry regulations and standards. Mark understands the request and has to do his due diligence for providing any information the regulators require as they are targeting potential security holes. In this situation, his major concern is the physical security of his company's system. Which of the following actions will Mark take to ensure the physical security of the company's desktop computers? 

A. Call a team member while behaving to be someone else for gaining access to sensitive information. 

B. Develop a social awareness of security threats within an organization. 

C. Use group policies to disable the use of floppy drives or USB drives. 

D. Provide protection against a Distributed Denial of Services attack. 

View Answer

Q9. Which of the following ports is used by the Remote Desktop Protocol? 

A. 80 

B. 23 

C. 3389 

D. 110 

View Answer

Q10. Mark works as a Network Administrator for BlueWell Inc. The company has a Windows-based network. Mark has retained his services to perform a security assessment of the company's network that has various servers exposed to the Internet. So, it may be vulnerable to an attack. Mark is using a single perimeter ?rewall, but he does not know if that is enough. He wants to review the situation and make some reliable recommendations so that he can protect the data over company's network. Which of the following will Mark use to provide better security? 

A. Tricky packet inspection 

B. Stateful packet inspection 

C. Stateless packet inspection 

D. Reaction based packet inspection 

View Answer