EMT Practice Test

1. Question Content...


Question List

Question1: You work as the Network Administrator for a company that does a large amount of defense contract business. A high level of security, particularly regarding sensitive documents, is required.
Which of the following are the steps you should take to secure network printers?
Each correct answer represents a complete solution. Choose two.

Question2: Which type of attack is the unauthorized access of information from a wireless device through a Bluetooth connection, often between phones, desktops, laptops, and PDAs?

Question3: What is a stakeholder analysis chart?

Question4: Which of the following options is an approach to restricting system access to authorized users?

Question5: Which of the following is the method of hiding data within another media type such as graphic or document?

Question6: Which of the following statements about Digest authentication are true?
Each correct answer represents a complete solution. Choose two.

Question7: An organization does not have adequate resources to administer its large infrastructure.
A security administrator wishes to integrate the security controls of some of the network devices in the organization. Which of the following methods would BEST accomplish this goal?

Question8: Which of the following contains information that is read by a Web application whenever a user visits a site?

Question9: You want to use PGP files for steganography. Which of the following tools will you use to accomplish the task?

Question10: Adam works as a Penetration Tester for Umbrella Inc. He is assigned a project of testing the security of the company's network. He is using the Metasploit Framework for developing and executing exploit code against a remote target machine. The Metasploit Framework is the important sub-project of the Metasploit Project. Which of the following are the other sub-projects under the Metasploit projet?
Each correct answer represents a complete solution. Choose all that apply.

Question11: Which of the following protocols is used as a transport protocol for Internet dial-up connections?

Question12: An attacker makes an attempt against a Web server. The result is that the attack takes the form of URLs. These URLs search for a certain string that identifies an attack against the Web server.
Which IDS/IPS detection method do the URLs use to detect and prevent an attack?

Question13: In which of the following does an attacker use multiple computers throughout the network that has been previously infected?

Question14: Which of the following is used for high-level or comprehensive analysis, as well as for root cause analysis?

Question15: Which of the following applications work as mass-emailing worms?
Each correct answer represents a complete solution. Choose two.

Question16: You and your project team are just starting the risk identification activities for a project that is scheduled to last for 18 months. Your project team has already identified a long list of risks that need to be analyzed. How often should you and the project team do risk identification?

Question17: Which of the following are the goals of risk management?
Each correct answer represents a complete solution. Choose three.

Question18: Which of the following types of attacks cannot be prevented by a firewall?
Each correct answer represents a complete solution. Choose all that apply.

Question19: John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-secure.com. He wants to test the effect of a virus on the We-are-secure server.
He injects the virus on the server and, as a result, the server becomes infected with the virus even though an established antivirus program is installed on the server. Which of the following do you think are the reasons why the antivirus installed on the server did not detect the virus injected by John? Each correct answer represents a complete solution. Choose all that apply.

Question20: Which of the following tools can be used to perform ICMP tunneling? Each correct answer represents a complete solution. Choose two.

Question21: Which of the following statements correctly defines a script kiddie?

Question22: Which of the following are the tools and techniques of the Plan Procurements process?
Each correct answer represents a complete solution. Choose all that apply.

Question23: You have forgotten your password of an online shop. The web application of that online shop asks you to enter your email so that they can send you a new password. You enter your email [email protected]' and press the submit button. The Web application displays the server error.
What can be the reason of the error?

Question24: A Security administrator wants to configure policies that dictate what types of network traffic are allowed in the network. Which types of signature should he use to configure such type of policies?

Question25: You are the project manager of the HQQ Project for your company. You are working with your project stakeholders to discuss the risks in the project that can adversely affect the project objectives. You are discussing the possibilities of causes for an identified risk event in your project. Your stakeholder is confused on the difference between causes and risk events. Which of the following is NOT an example of a cause for a project risk?

Question26: Which of the following statements about Encapsulating Security Payload (ESP) is true?

Question27: Which of the following is a virus that can redirect the disk head to read another sector instead of the one in which it resides?

Question28: You are concerned about rogue wireless access points being connected to your network. What is the best way to detect and prevent these?

Question29: Joe, a technician at the local power plant, notices that several turbines had ramp up in cycles during the week. Further investigation by the system engineering team determined that a timed .exe file had been uploaded to the system control console during a visit by international contractors. Which of the following actions should Joe recommend?

Question30: What are the steps related to the vulnerability management program?
Each correct answer represents a complete solution. Choose all that apply.

Question31: In Which of the following types of white box testing are the test cases designed based on data flow within the code?

Question32: Which of the following techniques is based on a set of criteria that has been acquired in a specific knowledge area or product area?

Question33: Which of the following honeypots captures limited amounts of information, mainly transactional data and some limited interaction?

Question34: Which of the following components are usually found in an Intrusion detection system (IDS)?
Each correct answer represents a complete solution. Choose two.

Question35: You have inserted a Trojan on your friend's computer and you want to put it in the startup so that whenever the computer reboots the Trojan will start to run on the startup. Which of the following registry entries will you edit to accomplish the task?

Question36: One of the sales people in your company complains that sometimes he gets a lot of unsolicited messages on his PDA. After asking a few questions, you determine that the issue only occurs in crowded areas like airports. What is the most likely problem?

Question37: A user has opened a Web site that automatically starts downloading malicious code onto his computer.
What should he do to prevent this? Each correct answer represents a complete solution. Choose two.

Question38: You work as a Network Administrator for NetPerfect Inc. You have implemented a firewall on the company's network. You want to ensure that outside users cannot access the internal FTP servers on the network. What will you do to accomplish the task?

Question39: Which of the following is not a man-made threat?

Question40: Which of the following programs can collect various types of personal information, such as Internet surfing habits, and Web sites that the user has visited?

Question41: You work as a professional Ethical Hacker. You are assigned a project to perform blackbox testing of the security of www.we-are-secure.com. Now you want to perform banner grabbing to retrieve information about the Webserver being used by we-are-secure. Which of the following tools can you use to accomplish the task?

Question42: You are an Administrator for a network at an investment bank. You are concerned about individuals breeching your network and being able to steal data before you can detect their presence and shut down their access. Which of the following is the best way to address this issue?

Question43: These are false reports about non-existent viruses. In these reports, the writer often claims to do impossible things. Due to these false reports, the network administrator shuts down his network, which in turn affects the work of the company. These reports falsely claim to describe an extremely dangerous virus, and declare that the report is issued by a reputed company. These reports are known as __________.

Question44: Which of the following technologies is used to detect unauthorized attempts to access and manipulate computer systems locally or through the Internet or an intranet?

Question45: Which of the following can provide security against man-in-the-middle attack?

Question46: Which of the following is used to authenticate asymmetric keys?

Question47: You are a project manager who is completing a project for another organization. The project you are managing will have phased deliverables throughout the project. Stakeholders are required to complete scope validation at the end of each phase so that the project can move forward. Your payment requests will also be attached to the approval of each phase so it is important to you, on several levels, that the stakeholders participate in scope validation as soon as they are requested. You have documented the process for reviewing the product acceptance criteria with the stakeholders.
What project document details the product acceptance criteria in all the projects?

Question48: Nancy is the project manager for a new construction project. There are several occupational safety codes, which must be included in the project requirements. These requirements are nonnegotiable and the customer must pay for the safety measures, inspections, and training for the project team. What term best describes the cost associated with these safety requirements?

Question49: Fill in the blank with the appropriate word.
A_______ is a computer system on the Internet that is expressly set up to attract and trap people who attempt to penetrate other people's computer systems.

Question50: Mark works as a Network Administrator for BlueWell Inc. While surfing the Internet, he enters a URL http://www.ciw.com/web/learning in the Web browser. A Web page appears after entering the URL. Which of the following protocols can be used to resolve www.ciw.com into the correct IP address?

Question51: John works as a professional Ethical Hacker. He is assigned a project to test the security of www.weare-secure.com. He enters a single quote in the input field of the login page of the We- are-secure Web site and receives the following error message:
Microsoft OLE DB Provider for ODBC Drivers error '0x80040E14'
This error message shows that the We-are-secure Website is vulnerable to __________.

Question52: Which of the following is used to identify a particular 802.11 wireless LAN?

Question53: Which of the following are considered Bluetooth security violations?
Each correct answer represents a complete solution. Choose two.

Question54: You are the Network Administrator for a company that frequently exchanges confidential emails without outside parties (clients, vendors, etc.). You want those emails to be encrypted; however, you want the least difficulty in the encryption process. Which of the following should you choose?

Question55: Which of the following applications would NOT be considered an OLTP application?

Question56: You work as a project manager for TYU project. You are planning for risk mitigation. You need to identify the risks that will need a more in-depth analysis. Which of the following activities will help you in this?

Question57: A security administrator is segregating all web-facing server traffic from the internal network and restricting it to a single interface on a firewall. Which of the following BEST describes this new network?

Question58: Which of the following layers of TCP/IP model is used to move packets between the Internet Layer interfaces of two different hosts on the same link?

Question59: Which of the following is a type of encryption that uses a single key to encrypt and decrypt data?

Question60: On Monday, all company employees report being unable to connect to the corporate wireless network, which uses 802.1x with PEAP. A technician verifies that no configuration changes were made to the wireless network and its supporting infrastructure, and that there are no outages.
Which of the following is the MOST likely cause for this issue?

Question61: A company determines a need for additional protection from rogue devices plugging into physical ports around the building.
Which of the following provides the highest degree of protection from unauthorized wired network access?

Question62: Your project is to implement a new operating system for all of the workstations in your company's network. Every workstation must have the new operating system as part of an organization-wide mandate. Many users are not happy with this decision and are resisting the change. Some of the users are complaining that they do not want the operating system at all. What type of stakeholders are these users?

Question63: You work as a Network Administrator for Tech Perfect Inc. The company has a Windows Server
2008 Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2008. The company's headquarters is located at Los Angeles. A branch office of the company is located at Denver. You are about to send a message to Rick who is a Network Administrator at Denver. You want to ensure that the message cannot be read by anyone but the recipient. Which of the following keys will you use to encrypt the message?

Question64: Which of the following standards is also known as IEEE 802.11i?

Question65: Which of the following statements about reconnaissance is true?

Question66: You are responsible for network security at a defense contractor. You are very concerned about sensitive data not getting out of your network. You have specific concerns about employees or contractors sending out files via FTP, or even spyware sending out data. You have blocked and monitored ports (as many as you can) on your firewall, and of course, run an anti spyware package.
Which of the following is another step you should take in preventing sensitive data from being sent out of your network without authorization?

Question67: Which field is NOT defined while creating rules for the Network Honeypot rulebase?

Question68: Which of the following types of attacks cannot be prevented by technical measures only?

Question69: You are the project manager of the NJJ project. Your enterprise environmental factors require that you establish certain risk management rules regarding low risks within your project. What is the best policy for risks with low probability and low impact in the project management?

Question70: Which of the following viruses replaces the boot sector data with its own malicious code?

Question71: Which of the following tools can be used for the anti-phishing?

Question72: Which of the following types of authentication is generally used for public Internet Web sites?

Question73: Which of the following protocols uses a combination of public key and symmetric encryption to provide communication privacy, authentication, and message integrity for secure browsing on the Internet?

Question74: You are concerned about possible hackers doing penetration testing on your network as a prelude to an attack. What would be most helpful to you in finding out if this is occurring?

Question75: Which of the following uses public key cryptography to encrypt the contents of files?

Question76: John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-secure.com. He successfully performs a brute force attack on the We-are-secure server. Now, he suggests some countermeasures to avoid such brute force attacks on the We- are-secure server. Which of the following are countermeasures against a brute force attack?
Each correct answer represents a complete solution. Choose all that apply.

Question77: A project team member has just identified a new project risk. The risk event is determined to have significant impact but a low probability in the project. Should the risk event happen it'll cause the project to be delayed by three weeks, which will cause new risk in the project. What should the project manager do with the risk event?

Question78: A Chief Information Security Officer (CISO) is tasked with outsourcing the analysis of security logs.
These will need to still be reviewed on a regular basis to ensure the security of the company has not been breached. Which of the following cloud service options would support this requirement?

Question79: You work in a company that accesses the Internet frequently. This makes the company's files susceptible to attacks from unauthorized access. You want to protect your company's network from external attacks. Which of the following options will help you in achieving your aim?

Question80: Which of the following tools can be used for stress testing of a Web server?
Each correct answer represents a complete solution. Choose two.

Question81: John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-secure.com. He performs Web vulnerability scanning on the We-are-secure server. The output of the scanning test is as follows:
C:\whisker.pl -h target_IP_address
-- whisker / v1.4.0 / rain forest puppy / www.wiretrip.net -- = - = - =
- = - =
= Host: target_IP_address
= Server: Apache/1.3.12 (Win32) ApacheJServ/1.1
mod_ssl/2.6.4 OpenSSL/0.9.5a mod_perl/1.22
+ 200 OK: HEAD /cgi-bin/printenv
John recognizes /cgi-bin/printenv vulnerability ('Printenv' vulnerability) in the We_are_secure server. Which of the following statements about 'Printenv' vulnerability are true?
Each correct answer represents a complete solution. Choose all that apply.

Question82: Mark works as a Network Administrator for We-are-secure Inc. He finds that the We-are-secure server has been infected with a virus. He presents to the company a report that describes the symptoms of the virus. A summary of the report is given below:
- This virus has a dual payload, as the first payload of the virus
changes the first megabyte of the hard drive to zero. Due to this, the
contents of the partition tables are deleted and the computer hangs.
- The second payload replaces the code of the flash BIOS with garbage
values. This virus spreads under the Portable Executable File Format
under Windows 95, Windows 98, and Windows ME.
Which of the following viruses has the symptoms as the one described above?

Question83: John works as a Security Administrator for Enet Inc. He uses a 4 digits personal identification number (PIN) to access the computer and a token is used to perform offline checking whether John has entered the correct PIN or not. Which of the following attacks is possible on John's computer?

Question84: You are concerned about rogue wireless access points being connected to your network. What is the best way to detect and prevent these?

Question85: All of the following steps should be taken to prevent a Web server from IIS buffer overflow attacks except for which one?

Question86: You work as a Consumer Support Technician for ABC Inc.
The company provides troubleshooting support to users.
You are troubleshooting a computer of a user who is working on Windows Vista.
He reports that his sensitive data is being accessed by someone because of security vulnerability in the component of Windows Vista.
Which of the following features of Windows Security Center will you configure to save the user's data?

Question87: A database administrator contacts a security administrator to request firewall changes for a connection to a new internal application. The security administrator notices that the new application uses a port typically monopolized by a virus. The security administrator denies the request and suggests a new port or service be used to complete the application's task.
Which of the following is the security administrator practicing in this example?

Question88: Janet is the project manager of the NHQ Project for her company. Janet is nearly done leading the project and there have been no cost or schedule overruns in the development of the new software for her company. The project team has been completing their work on time and there is still $75,000 left in the project budget. Janet decides to have the project team implement some extra features to the project scope to use all of the $75,000 in the budget even though the customer didn't specifically ask for the added features. This scenario is an example of which one of the following?

Question89: Which of the following is the best encryption algorithm to encrypt and decrypt messages?

Question90: Which of the following are countermeasures to prevent unauthorized database access attacks?
Each correct answer represents a complete solution. Choose all that apply.

Question91: Which of the following blocks unwanted advertisements and small windows that pop up suddenly in IE, without user's initiation?

Question92: Which of the following are examples of administrative controls that involve all levels of employees within an organization and determine which users have access to what resources and information? Each correct answer represents a complete solution. Choose three.

Question93: You work as a project manager for BlueWell Inc. You are working with your team members on the risk responses in the project. Which risk response will likely cause a project to use the procurement processes?

Question94: Which of the following is the practice of a domain name registrant using the five-day "grace period" (the Add Grace Period or AGP) at the beginning of the registration of an ICANN-regulated second- level domain to test the marketability of the domain?

Question95: You are the project manager for your organization and are trying to determine which vendor your organization will use. You have determined that any vendor that would like to bid on your project work will need to have a Microsoft Certified System Engineer on staff, have eight years of Cisco experience, and have at least two references from similar projects. What have you created in this scenario?

Question96: Which of the following is a process of monitoring data packets that travel across a network?

Question97: SSH is a network protocol that allows data to be exchanged between two networks using a secure channel. Which of the following encryption algorithms can be used by the SSH protocol?
Each correct answer represents a complete solution. Choose all that apply.

Question98: A sequence number is a 32-bit number ranging from 1 to 4,294,967,295. When data is sent over the network, it is broken into fragments (packets) at the source and reassembled at the destination system. Each packet contains a sequence number that is used by the destination system to reassemble the data packets in the correct order. The Initial Sequence Number of your computer is 24171311 at login time. You connect your computer to a computer having the IP address 210.213.23.21. This whole process takes three seconds. What will the value of the Initial Sequence Number be at this moment?

Question99: Which of the following processes is NOT a part of the Project Procurement Management Knowledge Area?

Question100: Which of the following is a network protocol that allows data to be exchanged using a secure channel between two networked devices?

Question101: Which of the following is NOT a principle and practice of the 'Minimize the number of highconsequence targets' principle?

Question102: Which of the following are symptoms of a virus attack on your computer?
Each correct answer represents a complete solution. Choose two.

Question103: You work as a Network Administrator for Infosec Inc. The company has a Windows 2003-based server. You have installed McAfee antivirus as well as anti-spyware software on the server. One day, you come to know that not only have the security applications running on the server (including software firewalls, anti-virus, and anti-spyware) been disabled, but the anti-virus and anti-spyware definitions have also been deleted. You suspect that this is due to malware infection. Which of the following types of malware is the most likely cause of the issue?

Question104: Which of the following is used to translate domain names into the numerical (binary) identifiers associated with networking equipment for the purpose of locating and addressing these devices worldwide?

Question105: Which of the following terms describes the statement given below?
"It is a cryptographic protocol that provides security and data
integrity for communications over networks such as the Internet."

Question106: You are the Administrator of a Windows 2000 based network for Info Tech Inc. You install and configure Certificate Authorities (CAs) on the network. You are currently configuring the public key group policy for the domain.
You configure the group policy to specify automatic enrollment and renewal for certificates. But when you attempt to test this configuration, you find that the enrollment is not working properly.
What is the most likely cause?

Question107: A user in your department complains about a slow Internet connection. You monitor the external interface of your company's border router and notice an excessive number of half-open TCP connections. What type of attack is your company currently a victim of?

Question108: You are the project manager for the TTR project. You are in the process of gathering information for risk identification. You ask experts to participate in the process through their emails for maintaining anonymity. You collect the responses, summarize them, and are then re-circulated to the experts for further comment. Which of the following techniques are you using for risk identification?

Question109: Which of the following statements about a certification authority (CA) is true?

Question110: Which of the following can be used as a countermeasure against the SQL injection attack?
Each correct answer represents a complete solution. Choose two.

Question111: Which of the following is a physical or logical subnetwork that contains and exposes external services of an organization to a larger network, usually the Internet?

Question112: Which of the following is involved with the improvement of different courses of actions that include changes in schedule, resources, or contract?

Question113: Your company is covered under a liability insurance policy, which provides various liability coverage for information security risks, including any physical damage of assets, hacking attacks, etc. Which of the following risk management techniques is your company using?

Question114: Which of the following statements about Secure Shell (SSH) are true?
Each correct answer represents a complete solution. Choose three.

Question115: Management has asked you to perform a risk audit and report back on the results. Bonny, a project team member asks you what a risk audit is. What do you tell Bonny?

Question116: John works as a Website Administrator in ABC Inc. The company has to set a privacy policy on all the computers. The policy requires John to restrict only third party cookies that do not have a compact private policy or that use personally identifiable information without a user's implicit consent. He reports to the Technical Support Executive that he wants to set the policy. The Technical Support Executive asks him to configure the settings in the Privacy tab page. Which of the following privacy settings will John use to accomplish the task?

Question117: Maria works as a Risk Analysis Manager for Gentech Inc. She starts a new IT project. Which of the following phases of her project development process is most suitable for including risk analysis?

Question118: You have installed Windows Vista Home Premium on your home computer. The computer is connected to the Internet through an ADSL connection. You want to protect yourself from the traps of fraudulent sites. Which of the following features of Internet Explorer 7+ will you use?

Question119: Which of the following statements about Encapsulating Security Payload (ESP) are true?
Each correct answer represents a complete solution. Choose two.

Question120: John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-secure.com. He successfully performs a brute force attack on the We-are-secure server.
Now, he suggests some countermeasures to avoid such brute force attacks on the We-are- secure server. Which of the following are countermeasures against a brute force attack?
Each correct answer represents a complete solution. Choose all that apply.

Question121: You work as a Network Administrator for Perfect Solutions Inc. The company has a Linux-based network. You are working as a root user on the Linux operating system. Your company is facing an IP spoofing attack. Which of the following tools will you use to get an alert saying that an upcoming IP packet is being spoofed?

Question122: You work as a Network Administrator in a company. The NIDS is implemented on the network.
You want to monitor network traffic. Which of the following modes will you configure on the network interface card to accomplish the task?

Question123: Which of the following tools is based on Linux and used to carry out the Penetration Testing?

Question124: The Human Resources department has a parent shared folder setup on the server.
There are two groups that have access, one called managers and one called staff. There are many sub folders under the parent shared folder, one is called payroll. The parent folder access control list propagates all subfolders and all subfolders inherit the parent permission.
Which of the following is the quickest way to prevent the staff group from gaining access to the payroll folder?

Question125: Which key of the Asymmetric encryption is used to encrypt the data when a user sends a message or data to another user?

Question126: Which of the following devices would MOST likely have a DMZ interface?

Question127: Consider the following diagram:

What is the highlighted area of the diagram known as?

Question128: Rick is the project manager for TTM project. He is in the process of procuring services from vendors. He makes a contract with a vendor in which he precisely specify the services to be procured, and any changes to the procurement specification will increase the costs to the buyer.
Which type of contract is this?

Question129: Mark works as a Network Administrator for NetTech Inc. Several employees of the company work from the remote locations. The company provides a dial-up connection to employees to connect to the company's network using remote access service. Mark wants to implement call back feature for the employees who are dialing for long distance. Which of the following protocols will he use for remote access services to accomplish the task?

Question130: What is another term that can be assigned to the pre-program analysis and research to determine if a program should be initiated?

Question131: John works as a professional Ethical Hacker. He has been assigned the task of testing the security of www.we-are-secure.com. He installs a sniffer on the We-are-secure server thinking that the following protocols of the We-are-secure server are being used in the network:
HTTP
SSL
SSH
IPSec
Considering the above factors, which of the following types of packets can he expect to see captured in encrypted form when he checks the sniffer's log file?
Each correct answer represents a complete solution. Choose all that apply.

Question132: The Project Scope Management knowledge area focuses on which of the following processes?
Each correct answer represents a complete solution. Choose all that apply.

Question133: David works as a Network Administrator for NetTech Inc. The company has a Windows Server
2008 domain-based network. The network has a print server with two hard disks as basic disks, and 120 Windows XP Professional client computers. Users complain that printing is slow. To improve the printing performance, David wants to create a dynamic volume. Which of the following dynamic volumes will he create to enhance the performance?

Question134: Which of the following is used to detect malicious activity such as port scans or even attempts for cracking into computers by monitoring network traffic?

Question135: Which of the following wireless security features provides the best wireless security mechanism?

Question136: You are the project manager for an important, high-profile project in your matrix structure. The project team members must work with a new technology that most of the team does not have experience with. What should you do in this scenario?

Question137: Mark works as a Network Administrator for NetTech Inc. The company has a Windows Server
2008 domain based network. The network contains four Windows Server 2008 member servers with different roles and 120 Windows Vista client computers. Mark has implemented a Streaming Media Services server on the network. Users complain that they are unable to view the contents when using their Windows Media Players. Mark investigates and finds that the firewall only allows ports 80 and 443 for traffic. Mark wants to ensure that the users can view the contents. What will Mark to do to accomplish the task?

Question138: Which of the following is used to translate domain names into the numerical (binary) identifiers associated with networking equipment for the purpose of locating and addressing these devices worldwide?

Question139: Which of the following are used as a cost estimating technique during the project planning stage?
Each correct answer represents a complete solution. Choose three.

Question140: John works as a Network Administrator for We-are-secure Inc. The We-are-secure server is based on Windows Server 2003. One day, while analyzing the network security, he receives an error message that Kernel32.exe is encountering a problem. Which of the following steps should John take as a countermeasure to this situation?
Each correct answer represents a complete solution. Choose all that apply.

Question141: You work in an enterprise as a Network Engineer. Your enterprise has a secure internal network.
You want to apply an additional network packet filtering device that is intermediate to your enterprise's internal network and the outer network (internet). Which of the following network zones will you create to accomplish this task?

Question142: Which of the following features of IE prevent users from a type of scam that entice a user to disclose personal information such as social security number, bank account details, or credit card number?

Question143: You check the logs on several clients and find that there is traffic coming in on an odd port (port
1872). All clients have the Windows XP firewall turned on. What should you do to block this unwanted traffic?

Question144: All of the following are the password cracking attacks performed by the cain tool except for which one?

Question145: Which of the following authentication methods is used to enable a Web browser to provide credentials when making a request during an HTTP transaction?

Question146: Which of the following statements about Public Key Infrastructure (PKI) are true?
Each correct answer represents a complete solution. Choose two.

Question147: Which of the following is a model that uses a predefined set of access privileges for an object of the system?

Question148: Which of the following is the best encryption algorithm to encrypt and decrypt messages?

Question149: Fill in the blank with the appropriate word.
________ is also used to refer to any attempt to circumvent the security of other types of cryptographic algorithms and protocols in general, and not just encryption.

Question150: John is a malicious attacker. He illegally accesses the server of We-are-secure Inc. He then places a backdoor in the We-are-secure server and alters its log files. Which of the following steps of malicious hacking includes altering the server log files?

Question151: A router has a single Ethernet connection to a switch. In the router configuration, the Ethernet interface has three sub-interfaces, each configured with ACLs applied to them and 802.1q trunks.
Which of the following is MOST likely the reason for the sub-interfaces?

Question152: You work as a Network Administrator for Blue Well Inc. The company has a Windows Server
2008 domain-based network. All client computers on the network run Windows Vista Ultimate.
Andy, a Finance Manager, uses Windows Mail to download his e-mails to his inbox. He complains that every now and then he gets mails asking for revealing personal or financial information. He wants that such mails are not shown to him. Which of the following steps will you take to accomplish the task?

Question153: Which of the following refers to the process of verifying the identity of a person, network host, or system process?

Question154: Which of the following technologies is used to detect unauthorized attempts to access and manipulate computer systems locally or through the Internet or an intranet?

Question155: Which of the following security policies will you implement to keep safe your data when you connect your Laptop to the office network over IEEE 802.11 WLANs?
Each correct answer represents a complete solution. Choose two.

Question156: Donna, a stakeholder in your project to create new software, has approached you about adding some features to the software package. You instruct that Donna must document the change request for it to be considered for the project. Why is it important for Donna to document the change request?

Question157: Which of the following types of firewall ensures that the packets are part of the established session?

Question158: Roberta is the project manager of the KJL Project for her company. She is creating a chart that will help categorize the problems discovered during the quality control inspection process. She wants to create a chart where she can categorize the number of instances of problems and rank the problems based on frequency. Which chart should Roberta create?

Question159: Rick is a project manager of a construction project. He is aggregating the estimated costs of individual activities or work packages to establish a cost baseline. In which of the following Project Management Knowledge Areas is he working on?

Question160: Which of the following is a popular replacement for halon gas?

Question161: John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He wants to use Kismet as a wireless sniffer to sniff the We- are-secure network. Which of the following IEEE-based traffic can be sniffed with Kismet?
Each correct answer represents a complete solution. Choose all that apply.

Question162: Which of the following heights of fence deters only casual trespassers?

Question163: John works as a professional Ethical Hacker. He has been assigned the task of testing the security of www.we-are-secure.com. He installs a sniffer on the We-are-secure server thinking that the following protocols of the We-are-secure server are being used in the network:
HTTP
SSL
SSH
IPSec
Considering the above factors, which of the following types of packets can he expect to see captured in encrypted form when he checks the sniffer's log file?
Each correct answer represents a complete solution. Choose all that apply.

Question164: What does a firewall check to prevent certain ports and applications from getting the packets into an Enterprise?

Question165: Which of the following processes is described in the statement below?
"It is the process of implementing risk response plans, tracking
identified risks, monitoring residual risk, identifying new risks, and
evaluating risk process effectiveness throughout the project."

Question166: You work as a Network Administrator for NetTech Inc. The company has a Windows Server 2008 Active Directory-based single domain single forest network. The company's network is connected to the Internet through a T1 line. The firewall is configured on the network for securing the internal network from the intruders on the Internet. You are designing a public key infrastructure (PKI) for the network. The network will use a root enterprise certificate authority (CA) and two subordinate CAs. The root CA will be used to issue certificates to the subordinate CAs, and the subordinate CAs will be used to issue certificates to the clients. The security policy of the company dictates that the security of high-level CAs should not be compromised. Which of the following steps will you take to implement the security policy of the company?

Question167: Which of the following IEEE standards is defined to enhance security of Wireless LANs (WLANs) that follow the IEEE 802.11 standard?

Question168: Part of your change management plan details what should happen in the change control system for your project. Theresa, a junior project manager, asks what the configuration management activities are for scope changes. You tell her that all of the following are valid configuration management activities except for which one?

Question169: Which of the following can be performed to verify the effectiveness of a quality management system?

Question170: Which function of incident handling involves in-depth investigation of the incident report or incident activity to establish the priority and threat of the incident?

Question171: The Project Procurement Management knowledge area focuses on which of the following processes?
Each correct answer represents a complete solution. Choose two.

Question172: Which of the following tasks can be performed by a malicious bot/botnet?
Each correct answer represents a complete solution. Choose all that apply.

Question173: Which of the following methods will free up bandwidth in a Wireless LAN (WLAN)?

Question174: What is the term used to describe the cost of the solution after the solution has been implemented in production by a vendor?

Question175: You work as a professional Ethical Hacker. You are assigned a project to test the security of www.weare-secure.com. You are working on the Windows Server 2003 operating system. You suspect that your friend has installed the keyghost keylogger onto your computer. Which of the following countermeasures would you employ in such a situation?
Each correct answer represents a complete solution. Choose all that apply.

Question176: Which of the following tools can be used to read NetStumbler's collected data files and present street maps showing the logged WAPs as icons, whose color and shape indicates WEP mode and signal strength?

Question177: Rick works as the Network Administrator of a Windows 2000 network. The network consists of 30 domain controllers, 65 member servers, and 5000 workstations. All the computers on the network use Windows 2000 Advanced Server, Windows 2000 Server, and Windows 2000 Professional operating systems. The Windows 2000 Advanced Server computers are running the Cluster Service. The network uses TCP/IP as its only protocol. Once a week Rick works from home. But rest of the weekdays, he has to travel. Rick wants to be able to remotely administer each Windows 2000 server on his network with the following considerations:
- He must be able to establish a VPN connection to the Windows 2000
Server computers on the network from his home, so that the data remain
encrypted and encapsulated during data transfer.
- While traveling , he must be able to connect to the network from a
laptop computer via remote access connection, so that he can perform
any task on the main Windows 2000 domain controller.
- While traveling, he must be able to edit the registry of the Windows
2000 Server computer.
- During the migration process to Windows 2000, he depleted all the
financial resources for licensing. Therefore, he must not be required
to add additional licenses to the network.
Rick takes the following actions:
- He implements the VPN connection on the proper server, the laptop
computer, and the home
computer.
- He configures the VPN connection to use the IPSec protocol in
Encapsulating Security Payload (ESP) Tunnel Mode.
- He implements Windows 2000 Terminal Services using the Remote
Administration mode on the Windows 2000 servers.
- He installs and configures Routing and Remote Access properly.
Which of the following goals will be accomplished by these actions?
Each correct answer represents a complete solution. Choose all that apply.

Question178: A honey pot is a computer trap that is used to attract potential intruders or attackers. Which of the following are some advantages of honey pots?
Each correct answer represents a complete solution. Choose all that apply.

Question179: Which of the following statements about IPSec are true?
Each correct answer represents a complete solution. Choose two.

Question180: Which of the following firewalls inspects the actual contents of packets?

Question181: Which of the following viruses is designed to prevent antivirus researchers from examining its code by using various methods that make tracing and disassembling difficult?

Question182: Which of the following exists between the client and the server system to provide security and allows customized NAT traversal filters to be plugged into the gateway to support address and port translation for certain application layer protocols?

Question183: Which of the following are the examples of administrative controls?
Each correct answer represents a complete solution. Choose all that apply.

Question184: You have just set up a wireless network for customers at a coffee shop. Which of the following are good security measures to implement?
Each correct answer represents a complete solution. Choose two.

Question185: Adrian knows the host names of all the computers on his network. He wants to find the IP addresses of these computers. Which of the following TCP/IP utilities can he use to find the IP addresses of these computers?
Each correct answer represents a complete solution. Choose two.

Question186: An executive in your company reports odd behavior on her PDA. After investigation you discover that a trusted device is actually copying data off the PDA. The executive tells you that the behavior started shortly after accepting an e-business card from an unknown person. What type

Question187: Which of the following wireless standards has a transmission speed of up to 720 Kbps?

Question188: Which of the following security protocols can be used to support MS-CHAPv2 for wireless client authentication? Each correct answer represents a complete solution. Choose two.

Question189: Which of the following statements are true about WPA?
Each correct answer represents a complete solution. Choose all that apply.

Question190: Victor works as a professional Ethical Hacker for SecureEnet Inc. He wants to scan the wireless network of the company. He uses a tool that is a free open-source utility for network exploration.
The tool uses raw IP packets to determine the following:
- What ports are open on our network systems
- What hosts are available on the network
- Identify unauthorized wireless access points
- What services (application name and version) those hosts are offering
- What operating systems (and OS versions) they are running
- What type of packet filters/firewalls are in use
Which of the following tools is Victor using?

Question191: Which of the following are the countermeasures against a man-in-the-middle attack?
Each correct answer represents a complete solution. Choose all that apply.

Question192: The 3-way handshake method is used by the TCP protocol to establish a connection between a client and the server. It involves three steps:
1. In the first step, a SYN message is sent from a client to the
server.
2. In the second step, a SYN/ACK message is sent from the server to the client.
3. In the third step, an ACK (usually called SYN-ACK-ACK) message is
sent from the client to the server. At this point, both the client and
the server have received acknowledgements of the TCP connection.
If the Initial Sequence Numbers of the client and server were 241713111 and 241824111 respectively at the time when the client was sending the SYN message in the first step of the TCP
3-way handshake method, what will be the value of the acknowledgement number field of the server's packet when the server was sending the SYN/ACK message to the client in the second step of the TCP 3-way handshake method?

Question193: Which of the following terms describes the statement given below?
"It is a service on a computer system (usually a server) that delays
incoming connections for as long as possible. The technique was
developed as a defense against a computer worm, and the idea is that
network abuses, such as spamming or broad scanning, are less effective
if they take too long."

Question194: Sara, a security technician, has received notice that a vendor coming in for a presentation will require access to a server outside of the network. Currently, users are only able to access remote sites through a VPN connection. How could Sara BEST accommodate the vendor?

Question195: Which interface does an IPS sensor use to communicate with a security appliance for management purposes?

Question196: You are concerned about attackers simply passing by your office, discovering your wireless network, and getting into your network via the wireless connection. Which of the following are NOT steps in securing your wireless connection?
Each correct answer represents a complete solution. Choose two.

Question197: You see the career section of a company's Web site and analyze the job profile requirements.
You conclude that the company wants professionals who have a sharp knowledge of Windows server 2003 and Windows active directory installation and placement. Which of the following steps are you using to perform hacking?

Question198: While configuring a new access layer switch, the administrator, Joe, was advised that he needed to make sure that only devices authorized to access the network would be permitted to login and utilize resources. Which of the following should the administrator implement to ensure this happens?

Question199: Which of the following attacks allows the bypassing of access control lists on servers or routers, and helps an attacker to hide?
Each correct answer represents a complete solution. Choose two.

Question200: Holly is the project manager of the GHQ Project for her organization. The project is using the AAA IT Integrators Corporation as a vendor to do a portion of the project work. Mitch Smith, the IT Directors for the AAA IT Integrators Corporation, reports that his team has completed the project work. Holly and her team review the deliverables and she confirms that Mitch's team has indeed completed the work according to the statement of work. What document should Holly refer to now to determine the next course of action with the AAA IT Integrators Corporation?

Question201: Which of the following terms refers to a prolonged loss of power?

Question202: You work as a Network Administrator for Tech Perfect Inc. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. The company has recently provided fifty laptops to its sales team members. You are required to configure an 802.11 wireless network for the laptops. The sales team members must be able to use their data placed at a server in a cabled network. The planned network should be able to handle the threat of unauthorized access and data interception by an unauthorized user.
You are also required to prevent the sales team members from communicating directly to one another. Which of the following actions will you take to accomplish the task?
Each correct answer represents a complete solution. Choose all that apply.

Question203: You are a Web Administrator of Millennium Inc. The company has hosted its Web site within its network. The management wants the company's vendors to be able to connect to the corporate site from their locations through the Internet. As a public network is involved in this process, you are concerned about the security of data transmitted between the vendors and the corporate site.
Which of the following can help you?

Question204: Which of the following cryptographic system services ensures that information will not be disclosed to any unauthorized person on a local network?

Question205: Which type of virus is able to alter its own code to avoid being detected by anti-virus software?

Question206: You are working in a functional organization and are managing the IHH Project. Your project will likely last for six months and has a budget constraint of $1,876,000. You'll be dealing with a functional manager to manage costs and resources in the project. Who will have authority over assigning the project team members to activities?

Question207: Which of the following relies on a physical characteristic of the user to verify his identity?

Question208: You have configured a virtualized Internet browser on your Windows XP professional computer.
Using the virtualized Internet browser, you can protect your operating system from which of the following?

Question209: Your company network has been infected with a virus. You have cleaned all PCs, workstations, and servers. However your network still keeps getting re-infected with the same virus. Which of the following could NOT be a cause for this?
Each correct answer represents a complete solution. Choose two.

Question210: PsPasswd is a tool used by network administrators to change an account password on the local or remote system. Which of the following are the command syntaxes used by the PsPasswd tool?
Each correct answer represents a complete solution. Choose all that apply.

Question211: An Active Attack is a type of steganography attack in which the attacker changes the carrier during the communication process. Which of the following techniques is used for smoothing the transition and controlling contrast on the hard edges, where there is significant color transition?

Question212: You work as a Network Administrator for Infonet Inc. The company has a Windows Server 2008 domain-based network. The network has three Windows Server 2008 member servers and 150 Windows Vista client computers. The network contains a Windows Server 2008 Core computer named SERVER1 with NTFS file system. SERVER1 has a 802.11 wireless LAN adapter.
The Wireless LAN Service is installed on SERVER1.
You want to know about the 802.11 wireless LAN interface information, network information, and wireless settings on the system on SERVER1.
Which of the following commands will you use to accomplish the task?

Question213: You are a project manager for a recycling company. You are in the process of reviewing proposals from sellers for recycling equipment. You notice the scope statement states the company required to abide by the environmental agencies regulations regarding waste. As a result, you select proposals that automatically include features such as scrubbers and baghouses to reduce hazardous waste. Which of the following is true regarding the scope statement?

Question214: Which of the following types of computers is used for attracting potential intruders?

Question215: Which of the following evidences are the collection of facts that, when considered together, can be used to infer a conclusion about the malicious activity/person?

Question216: You configure a wireless router at your home. To secure your home Wireless LAN (WLAN), you implement WEP. Now you want to connect your client computer to the WLAN.
Which of the following is the required information that you will need to configure the client computer? Each correct answer represents a part of the solution. Choose two.

Question217: Which of the following encrypts its code differently with each infection or generation of infections?

Question218: You are the program manager for your organization. Management has asked that you determine when resources, such as leased equipment, are no longer needed so that you may release the resources to save time, money, and utilization of resources within your program. What program management process is management asking you to perform?

Question219: In which of the following attacks does an attacker create the IP packets with a forged (spoofed) source IP address with the purpose of concealing the identity of the sender or impersonating another computing system?

Question220: Which of the following terms related to risk management represents the estimated frequency at which a threat is expected to occur?

Question221: Which of the following are the countermeasures against WEP cracking?
Each correct answer represents a part of the solution. Choose all that apply.

Question222: Which of the following attacks is any form of cryptanalysis where the attacker can observe the operation of a cipher under several different keys whose values are initially unknown, but where some mathematical relationship connecting the keys is known to the attacker?

Question223: Mark works as a Network Administrator for NetTech Inc. The company has a Windows 2003 Active Directory domain-based network. The domain consists of two Windows 2003 member servers and 500 Windows XP Professional client computers. The member servers are working as file servers. All the member servers are located in an OU named MEMSERV. Mark wants to test IPSec interoperability on the network. For this purpose, he creates a GPO named EXP. In the EXP GPO, he creates an IPSec policy named IPTEST. The IPTEST policy contains a rule that specifies the use of Encapsulating Security Payload (ESP) with null encryption. The IPTEST policy is applied to the member servers by linking the EXP GPO to the MEMSERV OU. After testing the IPSec interoperability, Mark wants to ensure that the member servers no longer use the IPTEST policy. What will he do to accomplish the task?

Question224: Which of the following is a software testing method that uses an internal perspective of the system to design test cases based on the internal structure?

Question225: How can you calculate the Annualized Loss Expectancy (ALE) that may occur due to a threat?

Question226: John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He is using the Linux operating system. He wants to use a wireless sniffer to sniff the We-are-secure network. Which of the following tools will he use to accomplish his task?

Question227: You are a project manager of a large construction project. Within the project you are working with several vendors to complete different phases of the construction. Your client has asked that you arrange for some of the materials a vendor is to install next week in the project to be changed.
According to the change management plan what subsystem will need to manage this change request?

Question228: Which of the following items are generally analyzed by Internet filters?
Each correct answer represents a complete solution. Choose three.

Question229: Mark works as a Network Administrator for NetTech Inc. The company has a Windows 2003 Active Directory domain-based network. The domain consists of four domain controllers, six Windows 2003 member servers, and 500 Windows XP Professional client computers. The PKI infrastructure is already configured on the network. The current configuration of the network allows only managers to use EFS on local computers. Sometimes Mark faces problems when managers lose their private keys due to the user profile becoming corrupt or being lost. Due to this, the files that were persistently encrypted by using the corresponding public key are inaccessible. He wants to restore access to the encrypted files as quickly as possible. What will he do to accomplish the task?

Question230: Which of the following is a fake target that deters hackers from locating your real network?

Question231: Which of the following terms describes an attempt to transfer DNS zone data?

Question232: You are concerned about war driving bringing hackers attention to your wireless network. What is the most basic step you can take to mitigate this risk?

Question233: Victor works as a professional Ethical Hacker for SecureEnet Inc. He has been assigned a job to test an image, in which some secret information is hidden, using Steganography. Victor performs the following techniques to accomplish the task:
1. Smoothening and decreasing contrast by averaging the pixels of the area where significant color transitions occurs.
2. Reducing noise by adjusting color and averaging pixel value.
3. Sharpening, Rotating, Resampling, and Softening the image.
Which of the following Steganography attacks is Victor using?

Question234: Atechnician is deploying virtual machines for multiple customers on a single physical host to reduce power consumption in a data center. Which of the following should be recommended to isolate the VMs from one another?

Question235: Which of the following is the process of rewriting source and destination addresses of IP packets as they pass through a router or firewall?

Question236: Which of the following programs collects email addresses of users and creates a mailing list?

Question237: What course of action can be taken by a party if the current negotiations fail and an agreement cannot be reached?

Question238: Which of the following tools is used to attack the Digital Watermarking?

Question239: You work as a Software Developer for PassGuide Inc. The company uses Visual Studio.NET as its application development platform. You create an application using .NET Framework.
You use the application to create an assembly. Now you need to encrypt assembly data.
The company has not provided encryption requirements to you.
Which of the following symmetric cryptography classes will you use to accomplish this task?

Question240: Which of the following is a signature-based intrusion detection system (IDS) ?

Question241: Which of the following is a part of a company's network that lies in between the Internet and a private network?

Question242: IDS systems can be classified in many different ways. Which of the following is not a way that IDS systems are commonly classified?

Question243: Which of the following is an authentication protocol used by clients to dial-in to computers running Windows 2000 Server?

Question244: John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He receives the following e-mail:

The e-mail that John has received is an example of __________.

Question245: You work as a Network Administrator for Net World International. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. There are ten Sales Managers in the company. The company has recently provided laptops to all its Sales Managers. All the laptops run Windows XP Professional. These laptops will be connected to the company's network through wireless connections. The company's management wants to implement Shared Key authentication for these laptops. When you try to configure the network interface card of one of the laptops for Shared Key authentication, you find no such option.
What will you do to enable Shared Key authentication?

Question246: You work as a Software Developer for PassGuide Inc. The company has several branches worldwide. The company uses Visual Studio.NET 2005 as its application development platform.
You have recently finished the development of an application using .NET Framework 2.0. The application can be used only for cryptography. Therefore, you have implemented the application on a computer. What will you call the computer that implemented cryptography?

Question247: You work as a Network Administrator for Infonet Inc. The company has a Windows Server 2008 Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. All client computers on the network run Windows XP Professional. You configure a public key infrastructure (PKI) on the network. You configure a root CA and a subordinate CA on the network. For security reasons, you want to take the root CA offline. You are required to configure the CA servers to support for certificate revocation. Choose the steps you will require to accomplish the task.

Question248: According to the security requirements given in case study, which of the following security method should you implement to provide data security between NSILegal and NSIHR?
(Click the Exhibit button on the toolbar to see the case study.)

Question249: Andrew works as a Network Administrator for Infonet Inc. The company's network has a Web server that hosts the company's Web site. Andrew wants to increase the security of the Web site by implementing Secure Sockets Layer (SSL). Which of the following types of encryption does SSL use?
Each correct answer represents a complete solution. Choose two.

Question250: Victor wants to use Wireless Zero Configuration (WZC) to establish a wireless network connection using his computer running on Windows XP operating system.
Which of the following are the most likely threats to his computer?
Each correct answer represents a complete solution. Choose two.

Question251: In what type of attack does an attacker capture packets containing passwords or digital signatures whenever packets pass between two hosts on a network?

Question252: Which of the following is an input of the close procurements process?

Question253: Which of the following are the types of access controls?
Each correct answer represents a complete solution. Choose three.

Question254: Every network device contains a unique built in Media Access Control (MAC) address, which is used to identify the authentic device to limit the network access. Which of the following addresses is a valid MAC address?

Question255: John works as a Website Administrator in ABC Inc. The users of the company always use Internet Explorer for Web browsing. One of the users opens the Privacy tab page in the Internet Options dialog box and configures the privacy settings for the Internet zone as displayed in the following images:


Which of the following statements regarding the configurations are true?
Each correct answer represents a complete solution. Choose all that apply.

Question256: A war dialer is a tool that is used to scan thousands of telephone numbers to detect vulnerable modems. It provides an attacker unauthorized access to a computer. Which of the following tools can an attacker use to perform war dialing?
Each correct answer represents a complete solution. Choose all that apply.

Question257: Fill in the blank with the appropriate term.
NOTE. Do not use abbreviation.
________ is a configurable client identification that allows a client to communicate with a particular base station.

Question258: In which of the following techniques does an attacker change the address of the phishing site in such a manner that it can bypass filters or other application defenses that have been put in place to block specific IP addresses?

Question259: A user has opened a Web site that automatically starts downloading malicious code onto his computer. What should he do to prevent this?
Each correct answer represents a complete solution. Choose two.

Question260: Which of the following files must be configured to enable hostname lookups to use the Domain Name Service (DNS)?

Question261: Which of the following algorithms can be used to check the integrity of a file?
Each correct answer represents a complete solution. Choose two.

Question262: John works as an IT Technician for PassGuide Inc. One morning, John receives an e-mail from the company's Manager asking him to provide his logon ID and password, but the company policy restricts users from disclosing their logon IDs and passwords. Which type of possible attack is this?

Question263: Your project spans the entire organization. You would like to assess the risk of the project but are worried that some of the managers involved in the project could affect the outcome of any risk identification meeting. Your worry is based on the fact that some employees would not want to publicly identify risk events that could make their supervisors look bad. You would like a method that would allow participants to anonymously identify risk events. What risk identification method could you use?

Question264: You are the program manager for your project. You are working with the project managers regarding the procurement processes for their projects. You have ruled out one particular contract type because it is considered too risky for the program. Which one of the following contract types is usually considered to be the most dangerous for the buyer?

Question265: Joseph works as a Network Administrator for WebTech Inc. He has to set up a centralized area on the network so that each employee can share resources and documents with one another.
Which of the following will he configure to accomplish the task?

Question266: You work as an Administrator for Bluesky Inc. The company has 145 Windows XP Professional client computers and eighty Windows 2003 Server computers. You want to install a security layer of WAP specifically designed for a wireless environment. You also want to ensure that the security layer provides privacy, data integrity, and authentication for client-server communications over a wireless network. Moreover, you want a client and server to be authenticated so that wireless transactions remain secure and the connection is encrypted. Which of the following options will you use to accomplish the task?

Question267: Rick works as a Computer Forensic Investigator for BlueWells Inc. He has been informed that some confidential information is being leaked out by an employee of the company. Rick suspects that someone is sending the information through email. He checks the emails sent by some employees to other networks. Rick finds out that Sam, an employee of the Sales department, is continuously sending text files that contain special symbols, graphics, and signs. Rick suspects that Sam is using the Steganography technique to send data in a disguised form. Which of the following techniques is Sam using?
Each correct answer represents a part of the solution. Choose all that apply.

Question268: Maria has been recently appointed as a Network Administrator in Gentech Inc. She has been tasked to perform network security testing to find out the vulnerabilities and shortcomings of the present network infrastructure. Which of the following testing approaches will she apply to accomplish this task?

Question269: Which of the following options is an approach to restricting system access to authorized users?

Question270: Kerberos is a computer network authentication protocol that allows individuals communicating over a non-secure network to prove their identity to one another in a secure manner. Which of the following statements are true about the Kerberos authentication scheme?
Each correct answer represents a complete solution. Choose all that apply.

Question271: Which of the following attacks allows an attacker to recover the key in an RC4 encrypted stream from a large number of messages in that stream?

Question272: Which firewall architecture uses two NICs with a screening router inserted between the host and the untrusted network?

Question273: The Project Scope Management knowledge area focuses on which of the following processes?
Each correct answer represents a complete solution. Choose all that apply.

Question274: In the image of the Screened Host Firewall Architecture given below, select the element that is commonly known as the access router.