更新された検証済みのGSEC問題集と解答には100%一発合格保証問題集はここ [Q221-Q241]

Share

更新された検証済みのGSEC問題集と解答には100%一発合格保証問題集はここ

合格GIAC Information Security GSEC試験問題には385問があります

質問 # 221
Which common firewall feature can be utilized to generate a forensic trail of evidence and to identify attack trends against your network?

  • A. State Table
  • B. NAT
  • C. Content filtering
  • D. Logging

正解:D


質問 # 222
Your organization has broken its network into several sections/segments, which are separated by firewalls, ACLs and VLANs. The purpose is to defend segments of the network from potential attacks that originate in a different segment or that attempt to spread across segments.
This style of defense-in-depth protection is best described as which of the following?

  • A. Vector-oriented
  • B. Information-centric
  • C. Protected enclaves
  • D. Uniform protection

正解:C


質問 # 223
When you log into your Windows desktop what information does your Security Access Token (SAT) contain?

  • A. The Security ID numbers (SIDs) of all authenticated local users
  • B. A list of your domain privileges
  • C. A list of cached authentications
  • D. The Security ID numbers (SIDs) of all the groups to which you belong

正解:B


質問 # 224
Mark works as a Network Administrator for NetTech Inc. The company has a Windows 2003 domain- based network. The network contains ten Windows 2003 member servers, 150 Windows XP Professional client computers. According to the company's security policy, Mark needs to check whether all the computers in the network have all available security updates and shared folders. He also needs to check the file system type on each computer's hard disk. Mark installs and runs MBSACLI.EXE with the appropriate switches on a server.
Which of the following tasks will he accomplish?

  • A. None of the tasks will be accomplished.
  • B. He will be able to check the file system type on each computer's hard disk.
  • C. He will be able to check all available security updates and shared folders.
  • D. He will be able to accomplish all the tasks.

正解:D

解説:
Explanation


質問 # 225
The process of enumerating all hosts on a network defines which of the following activities?

  • A. Network mapping
  • B. Vulnerability scanning
  • C. GPS mapping
  • D. Port scanning

正解:A


質問 # 226
Andrew works as a Network Administrator for Infonet Inc. The company's network has a Web server that hosts the company's Web site. Andrew wants to increase the security of the Web site by implementing Secure Sockets Layer (SSL). Which of the following types of encryption does SSL use? Each correct answer represents a complete solution. Choose two.

  • A. Synchronous
  • B. Symmetric
  • C. Secret
  • D. Asymmetric

正解:B、D


質問 # 227
With regard to defense-in-depth, which of the following statements about network design principles is correct?

  • A. A secure network design will seek to separate resources by providing a security boundary between systems that have different network security requirements.
  • B. A secure network design requires that systems that have access to the Internet should not be accessible from the Internet and that systems accessible from the Internet should not have access to the Internet.
  • C. A secure network design requires that networks utilize VLAN (Virtual LAN) implementations to insure that private and semi-public systems are unable to reach each other without going through a firewall.
  • D. A secure network design will seek to provide an effective administrative structure by providing a single choke-point for the network from which all security controls and restrictions will be enforced.

正解:A

解説:
Explanation/Reference:


質問 # 228
Which of the following TCP packet flags indicates that host should IMMEDIATELY terminate the connection containing the packet?

  • A. FIN
  • B. RST
  • C. SYN
  • D. URG

正解:B


質問 # 229
Which of the following is a standard Unix command that would most likely be used to copy raw file system data for later forensic analysis?

  • A. gzip
  • B. backup
  • C. cp
  • D. dd

正解:D


質問 # 230
Which of the following quantifies the effects of a potential disaster over a period of time?

  • A. Risk Assessment
  • B. Lessons Learned
  • C. Disaster Recovery Planning
  • D. Business Impact Analysis

正解:D


質問 # 231
Where are user accounts and passwords stored in a decentralized privilege management environment?

  • A. On a central authentication server.
  • B. On more than one server.
  • C. On each server.
  • D. On a server configured for decentralized privilege management.

正解:C


質問 # 232
What is the maximum passphrase length in Windows 2000/XP/2003?

  • A. 127 characters
  • B. 95 characters
  • C. 63 characters
  • D. 255 characters

正解:A


質問 # 233
What file instructs programs like Web spiders NOT to search certain areas of a site?

  • A. Restricted.txt
  • B. Search.txt
  • C. Robots.txt
  • D. Spider.txt

正解:C


質問 # 234
You work as a Network Administrator for Tech2tech Inc. You have configured a network-based IDS for
your company.
You have physically installed sensors at all key positions throughout the network such that they all report
to the command console.
What will be the key functions of the sensors in such a physical layout?
Each correct answer represents a complete solution. Choose all that apply.

  • A. To collect data from operating system logs
  • B. To collect data from Web servers
  • C. To analyze for known signatures
  • D. To notify the console with an alert if any intrusion is detected

正解:C、D


質問 # 235
What is the function of the TTL (Time to Live) field in IPv4 and the Hop Limit field in IPv6 In an IP Packet header?

  • A. These fields are recalculated based on the required time for a packet to arrive at its destination.
  • B. These fields are initialized to an initial value to prevent packet fragmentation and fragmentation attacks.
  • C. These fields are decremented each time a packet is retransmitted to minimize the possibility of routing loops.
  • D. These fields are incremented each time a packet is transmitted to indicate the number of routers that an IP packet has traversed.

正解:C


質問 # 236
A web application requires multifactor authentication when a user accesses the application from a home office but does not require this when the user is in the office. What access control model is this describing?

  • A. Lattice based access control
  • B. Variable trust access control
  • C. Role based access control
  • D. Access control list

正解:B


質問 # 237
A Network Engineer is charged with maintaining and protecting a network with a high availability requirement. In addition to other defenses, they have chosen to implement a NIPS. How should the NIPS failure conditions be configured to ensure availability if the NIPS is installed in front of the Firewall that protects the DMZ?

  • A. Fail-open
  • B. Fail-closed
  • C. Fail safe
  • D. Fail smart

正解:A


質問 # 238
You are responsible for technical support at a company. One of the employees complains that his new laptop cannot connect to the company wireless network. You have verified that he is entering a valid password/passkey. What is the most likely problem?

  • A. His operating system is incompatible.
  • B. A firewall is blocking him.
  • C. His laptop is incompatible.
  • D. MAC filtering is blocking him.

正解:D


質問 # 239
Which of the following can be done over telephone lines, e-mail, instant messaging, and any other method of communication considered private.

  • A. Spoofing
  • B. Shielding
  • C. Packaging
  • D. Eavesdropping

正解:D


質問 # 240
Which of the following networking topologies uses a hub to connect computers?

  • A. Cycle
  • B. Star
  • C. Ring
  • D. Bus

正解:B


質問 # 241
......

究極の無料ガイド準備GSEC試験問題と解答:https://drive.google.com/open?id=1xbEStp-xy7w6qHgHKhWmz7ZzTDAR6wrQ

合格させるGSECテストエンジンPDFで完全版無料問題集がここに:https://jp.fast2test.com/GSEC-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어