GIAC
GSEC · Question #7
GSEC Question #7: Real Exam Question with Answer & Explanation
The correct answer is A. Both volumes should be converted to NTFS at install time.. Both volumes should use NTFS because it provides file-level access control and security descriptors that FAT32 lacks, making it the only appropriate choice for both personal and shared Windows XP volumes.
Question
Users at the Marketing department are receiving their new Windows XP Professional workstations. They will need to maintain local work files in the first logical volume, and will use a second volume for the information shared between the area group. Which is the best file system design for these workstations?
Options
- ABoth volumes should be converted to NTFS at install time.
- BFirst volume should be FAT32 and second volume should be NTFS.
- CFirst volume should be EFS and second volume should be FAT32.
- DBoth volumes should be converted to FAT32 with NTFS DACLs.
Explanation
Both volumes should use NTFS because it provides file-level access control and security descriptors that FAT32 lacks, making it the only appropriate choice for both personal and shared Windows XP volumes.
Common mistakes.
- B. FAT32 on the first volume offers no file-level security or DACL support, so personal work files stored there would be unprotected against other users on the same machine.
- C. EFS (Encrypting File System) is not a standalone file system - it is an encryption feature that operates on top of NTFS and cannot be selected as a volume format.
- D. FAT32 volumes do not support NTFS DACLs - NTFS access control is a native feature of the NTFS file system and cannot be applied to FAT32-formatted volumes.
Concept tested. NTFS vs FAT32 security and access control capabilities
Reference. https://learn.microsoft.com/en-us/windows-server/storage/file-server/ntfs-overview
Community Discussion
No community discussion yet for this question.