A security analyst is reviewing the password policy for a service account that is used for a critical network service. The password policy for this account is as follows:

Which of the following adjustments would be the MOST appropriate for the service account?

• A.Set the minimum password age to seven days
• B.Set the maximum password age to 15 days
• C.Disable account lockouts
• D.Increase password length to 18 characters

Comment: *

Name: *

Email: *

Verification: *

A security analyst is attempting to identify vulnerabilities in a customer's web application without impacting the system or its dat a. Which of the following BEST describes the vulnerability scanning concept performed?

• A.Aggressive scan
• B.Passive scan
• C.Non-credentialed scan
• D.Compliance scan

Comment: *

Name: *

Email: *

Verification: *

A security administrator suspects that a DDoS attack is affecting the DNS server. The administrator
accesses a workstation with the hostname of workstation01 on the network and obtains the following
output from the ipconfig command:

The administrator successfully pings the DNS server from the workstation. Which of the following
commands should be issued from the workstation to verify the DDoS attack is no longer occuring?

• A.dig workstation01.com
• B.dig www.google.com
• C.dig 192.168.1.26
• D.dig 192.168.1.254

Comment: *

Name: *

Email: *

Verification: *

Task: Configure the firewall (fill out the table) to allow these four rules:
Only allow the Accounting computer to have HTTPS access to the Administrative server.
Only allow the HR computer to be able to communicate with the Server 2 System over SCP.
Allow the IT computer to have access to both the Administrative Server 1 and Administrative Server 2

• A.Use the following answer for this simulation task.
  Below table has all the answers required for this question.
  
  Firewall rules act like ACLs, and they are used to dictate what traffic can pass between the firewall and the internal network. Three possible actions can be taken based on the rule's criteria:
  Block the connection Allow the connection
  Allow the connection only if it is secured
  TCP is responsible for providing a reliable, one-to-one, connection-oriented session. TCP establishes a connection and ensures that the other end receives any packets sent.
  Two hosts communicate packet results with each other. TCP also ensures that packets are decoded and sequenced properly. This connection is persistent during the session.
  When the session ends, the connection is torn down.
  UDP provides an unreliable connectionless communication method between hosts.
  Port 443 is used for secure web connections? HTTPS and is a TCP port.
  Thus to make sure only the Accounting computer has HTTPS access to the Administrative server you should use TCP port 443 and set the rule to allow communication between 10.4.255.10/24 (Accounting) and 10.4.255.101 (Administrative server1) Thus to make sure that only the HR computer has access to Server2 over SCP you need use of TCP port 22 and set the rule to allow communication between 10.4.255.10/23 (HR) and 10.4.255.2 (server2) Thus to make sure that the IT computer can access both the Administrative servers you need to use a port and accompanying port number and set the rule to allow communication between: 10.4.255.10.25 (IT computer) and 10.4.255.101 (Administrative server1)
  10.4.255.10.25 (IT computer) and 10.4.255.102 (Administrative server2)
• B.Use the following answer for this simulation task.
  Below table has all the answers required for this question.
  
  Firewall rules act like ACLs, and they are used to dictate what traffic can pass between the firewall and the internal network. Three possible actions can be taken based on the rule's criteria:
  Block the connection Allow the connection
  Allow the connection only if it is secured
  TCP is responsible for providing a reliable, one-to-one, connection-oriented session. TCP establishes a connection and ensures that the other end receives any packets sent.
  Two hosts communicate packet results with each other. TCP also ensures that packets are decoded and sequenced properly. This connection is persistent during the session.
  When the session ends, the connection is torn down.
  UDP provides an unreliable connectionless communication method between hosts. UDP is considered a best-effort protocol, but it's considerably faster than TCP.
  The sessions don't establish a synchronized session like the kind used in TCP, and UDP doesn't guarantee error-free communications.
  The primary purpose of UDP is to send small packets of information.
  The application is responsible for acknowledging the correct reception of the data. Port 22 is used by both SSH and SCP with UDP.
  Port 443 is used for secure web connections? HTTPS and is a TCP port.
  Thus to make sure only the Accounting computer has HTTPS access to the Administrative server you should use TCP port 443 and set the rule to allow communication between 10.4.255.10/24 (Accounting) and 10.4.255.101 (Administrative server1) Thus to make sure that only the HR computer has access to Server2 over SCP you need use of TCP port 22 and set the rule to allow communication between 10.4.255.10/23 (HR) and 10.4.255.2 (server2) Thus to make sure that the IT computer can access both the Administrative servers you need to use a port and accompanying port number and set the rule to allow communication between: 10.4.255.10.25 (IT computer) and 10.4.255.101 (Administrative server1)
  10.4.255.10.25 (IT computer) and 10.4.255.102 (Administrative server2)

Comment: *

Name: *

Email: *

Verification: *

An organization plans to implement multifactor authentication techniques within the enterprise network architecture. Each authentication factor is expected to be a unique control.
Which of the following BEST describes the proper employment of multifactor authentication?

• A.Proximity card, fingerprint scanner, PIN
• B.Fingerprint scanner, voice recognition, proximity card
• C.Smart card, user PKI certificate, privileged user certificate
• D.Voice recognition, smart card, proximity card

Comment: *

Name: *

Email: *

Verification: *