nerdexam
GIAC

GSLC · Question #187

GSLC Question #187: Real Exam Question with Answer & Explanation

The correct answer is D. Site surveys. Wireless site surveys are the most effective method to detect and locate rogue access points by physically enumerating every AP broadcasting in a facility.

Question

You are concerned about rogue wireless access points being connected to your network. What is the best way to detect and prevent these?

Options

  • ANetwork anti-spyware software
  • BProtocol analyzers
  • CNetwork anti-virus software
  • DSite surveys

Explanation

Wireless site surveys are the most effective method to detect and locate rogue access points by physically enumerating every AP broadcasting in a facility.

Common mistakes.

  • A. Anti-spyware software targets malicious programs running on endpoint systems and has no mechanism to discover unauthorized wireless hardware attached to the network infrastructure.
  • B. Protocol analyzers passively capture and decode network traffic on a specific segment but do not scan the RF environment to systematically enumerate all broadcasting access points.
  • C. Anti-virus software detects and removes malware on host systems and cannot identify or physically locate rogue wireless hardware devices.

Concept tested. Detecting rogue wireless access points via site surveys

Reference. https://csrc.nist.gov/publications/detail/sp/800-153/final

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GSLC Practice