• Home
  • Articles
  • CIW 1D0-671 Study Guide Archives Updated on Nov 26, 2024 [Q67-Q88]

CIW 1D0-671 Study Guide Archives Updated on Nov 26, 2024 [Q67-Q88]

Share

CIW 1D0-671 Study Guide Archives Updated on Nov 26, 2024

Download 1D0-671 Mock Test Study Material

NEW QUESTION # 67
Which of the following is most likely to address a problem with an operating system's ability to withstand an attack that attempts to exploit a buffer overflow?

  • A. Software update
  • B. Network scanner
  • C. Intrusion detection system
  • D. Firewall

Answer: A


NEW QUESTION # 68
Which choice lists typical firewall functions?

  • A. Logging traffic and creating a choke point
  • B. Creating a VLAN and configuring the intrusion-detection system
  • C. Issuing alerts and limiting host access
  • D. Implementing the security policy and scanning the internal network

Answer: A


NEW QUESTION # 69
Which algorithm can use a 128-bit key, and has been adopted as a standard by various governments and corporations?

  • A. RC2
  • B. Advanced Encryption Standard (AES)
  • C. MARS
  • D. International Data Encryption Algorithm (IDEA)

Answer: B


NEW QUESTION # 70
Which type of attack requires that the hacker be physically located between the two legitimate hosts being attacked?

  • A. Bug-based attack
  • B. Brute-force and dictionary attack
  • C. E-mail virus attack
  • D. Man-in-the-middle attack

Answer: D


NEW QUESTION # 71
What is the primary drawback of using symmetric-key encryption?

  • A. Key transport across a network
  • B. Denial-of-service attacks
  • C. Inability to support convergence traffic
  • D. Speed of encryption

Answer: A


NEW QUESTION # 72
Why can instant messaging (IM) and peer-to-peer (P2P) applications be considered a threat to network security?

  • A. Because they use ports below 1023 and many firewalls are not configured to block this traffic
  • B. Because they use ports above 1023 and many firewalls are not configured to block this traffic
  • C. Because they usually lie outside the broadcast domain
  • D. Because they are susceptible to VLAN hopping

Answer: B


NEW QUESTION # 73
Consider the following image:
From the information in this image, what type of attack is occurring?

  • A. A brute-force attack
  • B. A connection-hijacking attackC.A connection-hijacking attack
  • C. A man-in-the-middle attack
  • D. A spoofing attackD.A spoofing attack

Answer: A


NEW QUESTION # 74
Which of the following can help reduce the likelihood of a successful dictionary attack?

  • A. The use of Microsoft Active Directory
  • B. An IPSEC-based VPN
  • C. A strong password policy
  • D. A security policy

Answer: C


NEW QUESTION # 75
Which term describes a firewall topology element that consists of a subnet of computers?

  • A. Firewall box
  • B. Security strategy
  • C. Demilitarized zone (DMZ)
  • D. Zone

Answer: C


NEW QUESTION # 76
Which of the following can effectively thwart VLAN hopping?

  • A. Enabling multiple firewalls on your broadcast domain
  • B. Removing the default VLAN setting (VLAN1) from any trunk port
  • C. Ensuring that each trunk port retains its default VLAN setting (VLAN1)
  • D. Enabling your network's autotrunking capability

Answer: B


NEW QUESTION # 77
Consider the following diagram:
Which type of attack is occurring?

  • A. Distributed denial-of-service attack
  • B. Denial-of-service attack
  • C. Man-in-the-middle attack using a packet sniffer
  • D. Polymorphic virus-based attack

Answer: A


NEW QUESTION # 78
What is the primary use of hash (one-way) encryption in networking?

  • A. Key exchange, for user authentication
  • B. User authentication, for non-repudiation
  • C. Signing files, for data integrity
  • D. Encrypting files, for data confidentiality

Answer: C


NEW QUESTION # 79
You want to create a quick solution that allows you to obtain real-time login information for the administrative account on an LDAP server that you feel may become a target.
Which of the following will accomplish this goal?

  • A. Create a dummy administrator account on the system so that a potential hacker is distracted from the real login account.
  • B. Reinstall the LDAP service on the server so that it is updated and more secure.
  • C. Create a login script for the administrative account that records logins to a separate server.
  • D. Install an application that creates checksums of the contents on the hard disk.

Answer: C


NEW QUESTION # 80
Which of the following is most likely to pose a security threat to a Web server?

  • A. CGI scripts
  • B. Database connections
  • C. LDAP servers
  • D. Flash or Silverlight animation files

Answer: A


NEW QUESTION # 81
An effective way to prevent a user from becoming the victim of a malicious bot is to use a technique in which the user must view a distorted text image, and then type it before he or she is allowed to proceed with a transaction.
This technique is known as a:

  • A. botnet.
  • B. CAPTCHA.
  • C. zombie.
  • D. SQL injection.

Answer: B


NEW QUESTION # 82
Considering physical security, which of the following should you look for when identifying a room that will act as a server room?

  • A. Electrical outlets
  • B. False ceilings
  • C. Power over Ethernet (PoE) settings
  • D. Space for backup servers

Answer: B


NEW QUESTION # 83
Which of the following is the simplest, most common firewall design?

  • A. A dual-homed bastion host
  • B. A screened subnet
  • C. A screening router
  • D. A single-homed bastion host

Answer: C


NEW QUESTION # 84
Which protocol uses cleartext communication by default?

  • A. HTTP
  • B. POP3
  • C. SSL
  • D. IPSEC

Answer: A


NEW QUESTION # 85
Which of the following security measures presents the most risk?

  • A. A jail
  • B. A login script
  • C. A firewall application
  • D. A tripwire

Answer: A


NEW QUESTION # 86
Which of the following describes the practice of stateful multi-layer inspection?

  • A. Using a VLAN on a firewall to enable masquerading of private IP addresses
  • B. Prioritizing voice and video data to reduce congestion
  • C. Using Quality of Service (QoS) on a proxy-oriented firewall
  • D. Inspecting packets in all layers of the OSI/RM with a packet filter

Answer: D


NEW QUESTION # 87
A new video conferencing device has been installed on the network. You have been assigned to troubleshoot a connectivity problem between remote workers and the central company. Specifically, remote workers are having problems making any connection at all.
Which technique will most likely help you solve this problem while retaining the existing level of security at the firewall?

  • A. Allow all use of UDP below Port 1024.
  • B. Configure the firewall to provide VPN access.
  • C. Configure a second network connection directly to the video conferencing device.
  • D. Deny all use of UDP above Port 1024.

Answer: B


NEW QUESTION # 88
......

1D0-671 Questions Prepare with Learning Information: https://www.prepawayete.com/CIW/1D0-671-practice-exam-dumps.html

Practice Material for 1D0-671 Exam Question Preparation: https://drive.google.com/open?id=1sVKueQU5QW0b-GDWID5fKGT576wAEr-b

Related Articles

more
CIW 1D0-671 Certification Practice Exam

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

Useful Links

Latest Updated