1D0-571 Exam Questions

You have been asked to encrypt a large file using a secure encryption algorithm so you can send it via e-mail to your supervisor. Encryption speed is important. The key will not be...

Which of the following is the most likely first step to enable a server to recover from a denial-of- service attack in which all hard disk data is lost?

You purchased a network scanner six months ago. In spite of regularly conducting scans using this software, you have noticed that attackers have been able to compromise your server...

What is the primary use of hash (one-way) encryption in networking?

Which of the following will best help you ensure a database server can withstand a recently discovered vulnerability?

A security breach has occurred involving the company e-commerce server. Customer credit card data has been released to unauthorized third parties. Which of the following lists the...

What is the primary drawback of using symmetric-key encryption?

Which of the following is a typical target of a trojan on a Linux system?

You want to create a quick solution that allows you to obtain real-time login information for the administrative account on an LDAP server that you feel may become a target. Which...

The best way to thwart a dictionary attack is by enforcing a:

A disgruntled employee has discovered that the company Web server is not protected against a particular buffer overflow vulnerability. The disgruntled employee has created an appli...

Which of the following is a feature that you would expect desktop firewall software to provide?

Which wireless security technique is most susceptible to spoofing?

What is the preferred first step to take if an end user suspects that a desktop system has been compromised by an attacker?

Which of the following password policies will help secure employee desktop systems in case an employee's password is stolen?

Which of the following is a common problem, yet commonly overlooked, in regards to physical security in server rooms?

Which tool is best suited for identifying applications and code on a Web server that can lead to a SQL injection attack?

Consider the following image of a packet capture: This packet capture has recorded two types of attacks. Which choice lists both attack types?

Which of the following is a primary auditing activity?

You have determined that an attack is currently underway on your database server. An attacker is currently logged in, modifying data. You want to preserve logs, caching and other d...

Which of the following applications can help determine whether a denial-of-service attack is occurring against a network host?

You have just deployed an application that uses hash-based checksums to monitor changes in the configuration scripts of a database server that is accessible via the Internet. Which...

Which of the following is most likely to address a problem with an operating system's ability to withstand an attack that attempts to exploit a buffer overflow?

Consider the following diagram: Which of the following best describes the protocol activity shown in the diagram, along with the most likely potential threat that accompanies this...

An application is creating hashes of each file on an attached storage device. Which of the following will typically occur during this process?

You have been assigned to configure a DMZ that uses multiple firewall components. Specifically, you must configure a router that will authoritatively monitor and, if necessary, blo...

A distributed denial-of-service (DDOS) attack has occurred where both ICMP and TCP packets have crashed the company's Web server. Which of the following techniques will best help r...

Which of the following is considered to be the most secure default firewall policy, yet usually causes the most work from an administrative perspective?

Which of the following is most likely to pose a security threat to a Web server?

What is the first tool needed to create a secure networking environment?

Irina has contracted with a company to provide Web design consulting services. The company has asked her to use several large files available via an HTTP server. The IT department...

Requests for Web-based resources have become unacceptably slow. You have been assigned to implement a solution that helps solve this problem. Which of the following would you recom...

You have discovered that the ls, su and ps commands no longer function as expected. They do not return information in a manner similar to any other Linux system. Also, the implemen...

Which of the following organizations provides regular updates concerning security breaches and issues?

You have determined that the company Web server has several vulnerabilities, including a buffer overflow that has resulted in an attack. The Web server uses PHP and has direct conn...

Which of the following standards is used for digital certificates?

At the beginning of an IPsec session, which activity occurs during the Internet Key Exchange (IKE)?

A security breach has occurred in which a third party was able to obtain and misuse legitimate authentication information. After investigation, you determined that the specific cau...

You have implemented a version of the Kerberos protocol for your network. What service does Kerberos primarily offer?

Consider the following series of commands from a Linux system: iptables -A input -p icmp -s 0/0 - d 0/0 -j REJECT Which explanation best describes the impact of the resulting firew...

A CGI application on the company's Web server has a bug written into it. This particular bug allows the application to write data into an area of memory that has not been properly...

A new server has been placed on the network. You have been assigned to protect this server using a packet-filtering firewall. To comply with this request, you have enabled the foll...

The most popular types of proxy-oriented firewalls operate at which layer of the OSI/RM?

You are using a PKI solution that is based on Secure Sockets Layer (SSL). Which of the following describes the function of the asymmetric-key-encryption algorithm used?

Which of the following can help you authoritatively trace a network flooding attack?

You want to create a certificate for use in a Secure Sockets Layer (SSL) session. Which of the following is responsible for verifying the identity of an individual and also issuing...

Which of the following describes the practice of stateful multi-layer inspection?

Which choice lists typical firewall functions?

Consider the following image: From the information in this image, what type of attack is occurring?

Which algorithm can use a 128-bit key, and has been adopted as a standard by various governments and corporations?