This page was exported from IT certification exam materials [ http://blog.dumpleader.com ]

Export date:Sat Jan 18 10:12:53 2025 / +0000 GMT

___________________________________________________


Title: Updated Dec 02, 2024 Test Engine to Practice Test for 1D0-671 Valid and Updated Dumps [Q39-Q62]

---------------------------------------------------


 Updated Dec 02, 2024 Test Engine to Practice Test for 1D0-671 Valid and Updated Dumps
Exam Questions for 1D0-671 Updated Versions With Test Engine


NO.39 What is the main purpose of reviewing a security incident after it has been resolved?
&nbsp;To bring charges against the ISP that carries the hacker&#8217;s account
&nbsp;To discover and report that a piece of hardware or software has purportedly failed
&nbsp;To learn what can be changed or improved in your security policy
&nbsp;To discover who within your company should be reprimanded
NO.40 Which of the following is a primary weakness of asymmetric-key encryption?
&nbsp;It is slow because it requires extensive calculations by the computer.
&nbsp;It can lead to the corruption of encrypted data during network transfer.
&nbsp;It is reliant on the Secure Sockets Layer (SSL) standard, which has been compromised.
&nbsp;It is difficult to transfer any portion of an asymmetric key securely.
NO.41 At the beginning of an IPsec session, which activity occurs during the Internet Key Exchange (IKE)?
&nbsp;Determining the number of security associations
&nbsp;Negotiating the authentication method
&nbsp;Determining the network identification number
&nbsp;Negotiating the version of IP to be used
NO.42 Which tool is best suited for identifying applications and code on a Web server that can lead to a SQL injection attack?
&nbsp;A vulnerability scanner
&nbsp;A packet sniffer
&nbsp;An intrusion-detection system
&nbsp;A network switch
NO.43 A distributed denial-of-service (DDOS) attack has occurred where both ICMP and TCP packets have crashed the company&#8217;s Web server.Which of the following techniques will best help reduce the severity of this attack?
&nbsp;Filtering traffic at the firewall
&nbsp;Changing your ISP
&nbsp;Installing Apache Server rather than Microsoft IIS
&nbsp;Placing the database and the Web server on separate systems
NO.44 Which step in security policy implementation ensures that security policy will change as technology advances?
&nbsp;Log, test and evaluate.
&nbsp;Secure each resource and service.
&nbsp;Publish the security policy.
&nbsp;Repeat the process and keep current.
NO.45 Which of the following is a common problem with proxy servers?
&nbsp;Proxy servers do not log incoming and outgoing access, so you will not be able to see details of successful and failed connections.
&nbsp;Proxy servers cannot filter out specific application-layer traffic.
&nbsp;Proxy servers may return old cached information.
&nbsp;Because proxy servers do not mask network resources, hackers may be able to access all exposed systems.
NO.46 When Tripwire discovers that a file or database has been altered, how will it alert you?
&nbsp;Via an e-mail message only
&nbsp;Via a log file entry only
&nbsp;Via a pager configured to receive a special signal
&nbsp;Via e-mail or a log file entry
NO.47 Consider the following diagram:Which of the following best describes the protocol activity shown in the diagram, along with the most likely potential threat that accompanies this protocol?
&nbsp;The ICMP Time Exceeded message, with the threat of a denial-of-service attack
&nbsp;The SIP three-way handshake, with the threat of a buffer overflow
&nbsp;The TCP three-way handshake, with the threat of a man-in-the-middle attack
&nbsp;The DNS name query, with the threat of cache poisoning
NO.48 Which of the following standards is used for digital certificates?
&nbsp;DES
&nbsp;Diffie-Hellman
&nbsp;X.509
&nbsp;RC5
NO.49 Which algorithm can use a 128-bit key, and has been adopted as a standard by various governments and corporations?
&nbsp;MARS
&nbsp;RC2
&nbsp;Advanced Encryption Standard (AES)
&nbsp;International Data Encryption Algorithm (IDEA)
NO.50 Your firewall is configured to forbid all internal traffic from going out to the Internet. You want to allow internal clients to access all Web traffic.At a minimum, what ports must you open in regards to the internal systems?
&nbsp;TCP Port 80 and all ports above 1023
&nbsp;TCP Ports 80 and 443, and all ports above 1023
&nbsp;All TCP ports above 80 and below 1023
&nbsp;TCP Ports 80 and 443
NO.51 Which of the following is most likely to address a problem with an operating system&#8217;s ability to withstand an attack that attempts to exploit a buffer overflow?
&nbsp;Firewall
&nbsp;Software update
&nbsp;Intrusion detection system
&nbsp;Network scanner
NO.52 Which of the following describes the practice of stateful multi-layer inspection?
&nbsp;Inspecting packets in all layers of the OSI/RM with a packet filter
&nbsp;Using Quality of Service (QoS) on a proxy-oriented firewall
&nbsp;Prioritizing voice and video data to reduce congestion
&nbsp;Using a VLAN on a firewall to enable masquerading of private IP addresses
NO.53 Why can instant messaging (IM) and peer-to-peer (P2P) applications be considered a threat to network security?
&nbsp;Because they use ports above 1023 and many firewalls are not configured to block this traffic
&nbsp;Because they are susceptible to VLAN hopping
&nbsp;Because they usually lie outside the broadcast domain
&nbsp;Because they use ports below 1023 and many firewalls are not configured to block this traffic
NO.54 Which of the following causes problems with firewalls
&nbsp;Control FTP
&nbsp;Data FTP
&nbsp;Active FTP
&nbsp;Passive FTP
NO.55 Consider the following diagram involving two firewall-protected networks:Which of the following is necessary for each of the firewalls to allow private IP addresses to be passed on to the Internet?
&nbsp;Chargeback
&nbsp;Stateful multi-layer inspection
&nbsp;Masquerading
&nbsp;DMZ creation
NO.56 Which of the following is a primary auditing activity?
&nbsp;Encrypting data files
&nbsp;Changing login accounts
&nbsp;Checking log files
&nbsp;Configuring the firewall
NO.57 How do activity logs help to implement and maintain a security plan?
&nbsp;Activity logs provide advice on firewall installation, because they enable network baseline creation.
&nbsp;Activity logs remind users to log on with strong passwords, because the logs can be analyzed to see if users are complying with policy.
&nbsp;Activity logs allow you to determine if and how an unauthorized activity occurred.
&nbsp;Activity logs dissuade would-be hackers from breaching your security.
NO.58 David has enabled auditing on the C, D and E drives of his Web server. This server runs Windows Server 2003 and uses all SCSI components. After David has finished his change, the help desk receives calls from customers complaining that transactions are being completed at an unusually slow rate.What has David failed to consider?
&nbsp;The performance effects that auditing can have on a system
&nbsp;The restriction that auditing cannot be established on a RAID array in Windows Server 2003
&nbsp;Network latency and system uptime requirements that appear to be system performance problems
&nbsp;The limitation that auditing can be performed on only two disks of a RAID array
NO.59 What is the term for a self-replicating program or algorithm that consumes system resources?
&nbsp;Illicit server
&nbsp;Root kit
&nbsp;Trojan
&nbsp;Worm
NO.60 Which of the following is considered to be the most secure default firewall policy, yet usually causes the most work from an administrative perspective?
&nbsp;Configuring the firewall to respond automatically to threats
&nbsp;Blocking all access by default, then allowing only necessary connections
&nbsp;Configuring the firewall to coordinate with the intrusion-detection system
&nbsp;Allowing all access by default, then blocking only suspect network connections
NO.61 What distinguishes hash encryption from other forms of encryption?
&nbsp;Hash encryption creates a mathematically matched key pair in which one half of the pair encrypts, and the other half decrypts.
&nbsp;Hash encryption creates a single key that is used to encrypt and decrypt information.
&nbsp;Hash encryption is the encryption method of choice when conducting e-commerce transactions.
&nbsp;Hash encryption is used for information that you want never to be decrypted or read.
NO.62 Which of the following is a security principle that allows you to protect your network resources?
&nbsp;Realize that some high-end systems should stand alone.
&nbsp;Avoid being suspicious of legitimate activity.
&nbsp;Deploy security enforcement only in the largest departments.
&nbsp;Provide training for end users and IT workers.
&nbsp;Loading &#8230;


1D0-671 Exam Dumps - Free Demo &amp; 365 Day Updates: https://www.dumpleader.com/1D0-671_exam.html


---------------------------------------------------


Images: https://blog.dumpleader.com/wp-content/plugins/watu/loading.gif

https://blog.dumpleader.com/wp-content/plugins/watu/loading.gif


---------------------------------------------------


---------------------------------------------------


Post date: 2024-12-02 15:49:33

Post date GMT: 2024-12-02 15:49:33

Post modified date: 2024-12-02 15:49:33

Post modified date GMT: 2024-12-02 15:49:33