Online Access Free 1D0-671 Exam Questions

Consider the following diagram:
Which of the following best describes the protocol activity shown in the diagram, along with the most likely potential threat that accompanies this protocol?

• A.The TCP three-way handshake, with the threat of a man-in-the-middle attack
• B.The ICMP Time Exceeded message, with the threat of a denial-of-service attack
• C.The DNS name query, with the threat of cache poisoning
• D.The SIP three-way handshake, with the threat of a buffer overflow

Which step in security policy implementation ensures that security policy will change as technology advances?

• A.Secure each resource and service.
• B.Repeat the process and keep current.
• C.Log, test and evaluate.
• D.Publish the security policy.

Which of the following will best help you ensure a database server can withstand a recently discovered vulnerability?

• A.Adding a buffer overflow rule to the intrusion detection system
• B.Installing a system update
• C.Updating the company vulnerability scanner and conducting a new scan
• D.Reconfiguring the firewall

All servers assume that a valid IP address belongs to the computer that sent it. Because TCP/IP contains no built-in authentication, a hacker can assume the identity of another device.
If your security depends entirely upon the TCP/IP identity, which type of attack can allow a hacker to gain access to your system?

• A.A social engineering attack
• B.A brute-force attack
• C.A denial-of-service attack
• D.A spoofing attack

Which of the following is the most likely first step to enable a server to recover from a denial-of- service attack in which all hard disk data is lost?

• A.Enable virtualization
• B.Contact a disk recovery service
• C.Rebuild your RAID 0 array
• D.Contact the backup service