SECURITY + PRACTICE EXAM NEWEST ACTUAL EXAM COMPLETE 150 QUESTIONS AND CORRECT DETAILED ANSWERS (VERIFIED ANSWERS) |ALREADY GRADED A+||BRAND NEW VERSION!!

SECURITY + Practice Exam


SECURITY + PRACTICE EXAM NEWEST ACTUAL EXAM COMPLETE 150
QUESTIONS AND CORRECT DETAILED ANSWERS (VERIFIED ANSWERS)
|ALREADY GRADED A+||BRAND NEW VERSION!!
You detected an intrusion and are taking the necessary steps to preserve the
evidence. You want to make sure the evidence will be admissible in a court of law.
What should you do?
A. Ensure a proper chain of custody
B. Practice due care
C. Immediately turn of the computer and store the media in a safe place
D. Follow the company's evidence collection policy - Correct Answer-A. Ensure a
proper chain of custody


Which of the following is NOT an application layer security protocol?
A. IPSec
B. SET
C. SSH
D. S-HTTP - Correct Answer-A. IPSec


What port does the Domain Name Service (DNS) use by default?
A. 27
B. 46
C. 53
D. 80
E. 110
1|Page

, SECURITY + Practice Exam

F. 161 - Correct Answer-C. 53


You want to setup a secure method of sending and receiving email. Which two of
the following protocols can be used for this purpose? (Choose all that apply)
A. S/MIME
B. IPSec
C. TLS
D. PGP - Correct Answer-A. S/MIME and D. PGP


What allows for all activities on a network or system to be traced to the user who
performed them?
A. Accountability
B. Authentication
C. Authorization
D. Identification
E. Verification - Correct Answer-A. Accountability


Which of the following encryption algorithms can be used in PGP for data
encryption? (Choose all that apply)
A. IDEA
B. TripleDes
C. ECC
D. Diffie-Helman - Correct Answer-A. IDEA and B. TripleDes



2|Page

, SECURITY + Practice Exam

Which of the following manages peer authentication and key exchange for an
IPSec connection?
A. IKE
B. ISAKMP
C. Oakley
D. Policy Agent - Correct Answer-A. IKE


A set of instructions normally implemented on a computer system as a procedure
to manipulate data is called a(n)?
A. Algorithm
B. Procedure
C. Process
D. Program
E. Time slicer - Correct Answer-A. Algorithm


What is the term used to describe the type of attack where a DNS server accepts
and uses incorrect information from a host that does not have authority to supply
that information?
A. DNS cache corruption
B. DNS cache poisoning
C. DNS caching
D. DNS spoofing
E. Name server smurf
F. Name server teardrop - Correct Answer-D. DNS spoofing

3|Page

, SECURITY + Practice Exam



Your daily bandwidth monitoring report of your Internet connection shows an
excessive amount of outgoing traffic on port 25. You have seen peaks in the
reports before but this report shows many peaks outside office times. What
should you do?
A. Close the UDP and TCP port 25 on the firewall
B. Check if relaying is denied for unauthorized domains
C. Scan all systems in the company for viruses and malware
D. Implement a proxy server to reduce HTTP traffic - Correct Answer-B. Check if
relaying is denied for unauthorized domains


What types of encryption are used for adding a digital signature to a message?
(choose all that apply)
A. Asymmetric
B. Symmetric
C. Hashing
D. Bulk - Correct Answer-A. Asymmetric and C. Hashing


User in your department complain about a slow Internet connection. You monitor
the external interface of your company's border router and notice a huge mount
of half-open TCP connections. What type of attack is your company currently a
victim of?
A. Smurf attack
B. DDOS attack
C. TCP Hijacking attack


4|Page