Create Next App

Exam contains 239 questions

Page 1 of 40

Question 1 🔥

Which of the following is NOT a recommended best practice for securing Terminal Services and Remote Desktop?

Which database solution meets these requirements?

A. Require TLS authentication and data encryption whenever possible.

Highly voted

B. Make sure to allow all TCP 3389 traffic through the external firewall.

Highly voted

C. Group Policy should be used to lock down the virtual desktops of thin-client users.

Highly voted

D. Consider using IPSec or a VPN in addition to the RDP encryption if you are concerned about future RDP vulnerabilities.

Highly voted

Discussion of the question

Question 2 🔥

What is the motivation behind SYN/FIN scanning?

Which database solution meets these requirements?

A. The SYN/FIN combination is useful for signaling to certain Trojans.

Highly voted

B. SYN/FIN packets are commonly used to launch denial of service attacks against BSD hosts.

Highly voted

C. The crafted SYN/FIN packet sometimes gets past firewalls and filtering routers.

Highly voted

D. A SYN/FIN packet is used in session hijacking to take over a session.

Highly voted

Discussion of the question

Question 3 🔥

There is not universal agreement on the names of the layers in the TCP/IP networking model. Which of the following is one of the functions of the bottom layer which is sometimes called the Network Access or Link Layer?

Which database solution meets these requirements?

A. Provides end-to-end data delivery service for user applications

Highly voted

B. Handles the routing of the data packets over the network

Highly voted

C. Manages IP addressing and encryption for data packets

Highly voted

D. Defines the procedures for interfacing with Ethernet devices

Highly voted

Discussion of the question

Question 4 🔥

You are the security director for an off-shore banking site. From a business perspective, what is a major factor to consider before running your new vulnerability scanner against the company's business systems?

Which database solution meets these requirements?

A. It may harm otherwise healthy systems.

Highly voted

B. It may produce false negative results.

Highly voted

C. It may generate false positive results.

Highly voted

D. It may not return enough benefit for the cost.

Highly voted

Discussion of the question

Question 5 🔥

When using Pretty Good Privacy (PGP) to digitally sign a message, the signature is created in a two-step process. First, the message to be signed is submitted toPGP's cryptographic hash algorithm. What is one of the hash algorithms used by PGP for this process?

Which database solution meets these requirements?

A. Blowfish

Highly voted

B. DES

Highly voted

C. SHA-l

Highly voted

D. Cast

Highly voted

Discussion of the question

Question 6 🔥

When an IIS filename extension is mapped, what does this mean?

Which database solution meets these requirements?

A. Files with the mapped extensions cannot be interpreted by the web server.

Highly voted

B. The file and all the data from the browser's request are handed off to the mapped interpreter.

Highly voted

C. The files with the mapped extensions are interpreted by CMD.EXE.

Highly voted

D. The files with the mapped extensions are interpreted by the web browser.

Highly voted

Discussion of the question

Ready to Pass Your Certification Test

giac GSEC

Exam contains 239 questions

Lorem ipsum dolor sit amet consectetur. Eget sed turpis aenean sit aenean. Integer at nam ullamcorper a.

Company

Product

Resources

Follow us