Chapter 14 - Supplement - Sheet1

Question 1

DoS

Answer 1

Denial of Service attack. Prevents access to network resources.

Question 2

Varieties of DoS

Answer 2

Ping of Death, Smurf, SYN Flood, Tribe Flood Network, Tribe Flood Network 2000, Stacheldragt

Question 3

Ping of Death

Answer 3

Type of DoS. One Ping request sends a huge amount of data instead of the small payload PING normally carries. Most modern OSes prevent this from working.

Question 4

Smurf

Answer 4

Type of DoS. Attacker spoofs the source IP of a PING request. Sends PING request to all broadcast addresses. Router forwards reuqests to all hosts on the subnet. Response pings are sent back to victim.

Question 5

SYN Flood

Answer 5

Type of DoS. Sending a TCP/IP packet with SYN flag set to 1 causes server to open a connection and respond with SYN/ACK, waiting for an ACK. Attacker doesn’t send ACK, forcing the server to keep the connection open, using a portion of memory. Server isn’t able to respond to legitimate requests.

Question 6

Tribe Flood Network

Answer 6

Type of DoS. TFN. DDoS (Distributed Denial of Service) attack.

Question 7

Tribe Flood Network 2000

Answer 7

Type of DoS. TFN2K. DDoS (Distributed Denial of Service) attack.

Question 8

Stacheldraght

Answer 8

Type of DoS. Means barbed wire in German. Mix of techniques involving TFN and encryption.

Question 9

Types of Viruses

Answer 9

Macro Virus, Boot-Sector Virus, Multipartite Viruses File Viruses

Question 10

File Virus

Answer 10

Replaces some of all of a target program’s code with their own. The compromised file, when executed, does the damage.

Question 11

Macro Virus

Answer 11

Script of commands written in software that supports macros (EG MS Office). Annoying but harmless.

Question 12

Boot-Sector Virus

Answer 12

Infect the hard drive’s boot sector, pointing the PC in the wrong direction or removing reference to the OS.

Question 13

Multipartite Virus

Answer 13

Affects the boot sector and the hard drive’s files at once.

Question 14

Worms

Answer 14

Like viruses, but can replicate without users opening an infected file

Question 15

Buffer Overflow

Answer 15

Injecing so much data into the forms of an application that the host crashes

Question 16

War Driving

Answer 16

Driving around using high powered anttenaes to try to break into wireless networks.

Question 17

War Chalking

Answer 17

The collection of information regarding wireless networks either in chalk on the sitewalk or online

Question 18

3 ways to detect and defend against an intruder

Answer 18

Active Detection, Passive Detection, Proactive Defense Methods

Question 19

Active Detection

Answer 19

Actively deteting common hacking methods, scanning for suspicious activity, etc

Question 20

Passive Detection

Answer 20

Logging activity to be later reviewed if a threat is identified by another detection technique

Question 21

Proactive Defense Methods

Answer 21

Proactively searching for holes in your own security

Question 22

The Ping of Death and SYN floods are examples of what types of attack?

Answer 22

DoS

Question 23

How often should you update your virus definitions in your antivirus software?

Answer 23

Once a week

Question 24

What type of attack injects a command that overflows the amount of memory allocated
and executes commands that would not normally be allowed?

Answer 24

Buffer Overflow

Question 25

What type of virus attacks executable programs?

Answer 25

A File Virus

Question 26

What kind of tool could a hacker use to intercept traffic on your network?

Answer 26

Packet Sniffer

Question 27

What type of virus uses Microsoft’s Visual Basic scripting language?

Answer 27

A Macro Virus

Question 28

What is it called when someone intercepts traffic on your network that’s intended for a
different destination computer?

Answer 28

Man-in-the-middle attack

Question 29

If someone installed a wireless router on your network without your knowledge, that
would be called ___________________.

Answer 29

A rogue access point

Question 30

What software application can help automatically ensure that your Windows-based
computers have the most current security patches?

Answer 30

Windows Update

Question 31

The two different types of virus scans are ___________________.

Answer 31

On-demand and on-access virus scans