Security Flashcards Preview

CompTIA N+ N10-006 > Security > Flashcards

Flashcards in Security Deck (21)
Loading flashcards...
1

What is NAC?

Network Admission Control

Agent that checks criteria in order to connect to network (persistent (on 24/7) / non-persistent)

2

What is smurfing?

DDoS where ICMP packets are sent with a spoofed address of the victim

3

What is Bluejacking vs Bluesnarfing?

Bluejacking - Sending data to device
Bluesnarfing - Stealing information

4

What is DHCP Snooping?

Untrusted ports for DHCP are blocked if DORA packets are sent from a rogue device

5

What is ARP inspection?

Makes sure no one is lying about L2 to L3 mapping

6

How would you stop MAC address spoofing on a switch?

Port security

7

With an ACL (Access Control List) is rule order important?

Yes

8

What piece of agent software is used in 802.1x between a computer and switch?

Supplicant

9

What is EAP?

Extensible Authentication Protocol
801.1x

10

What is PAP?

Password Authentication Protocol
Insecure clear text

11

What is an industry standard for authenticating on serial connections?

CHAP
MSCHAP

12

What is Kerberos?

Authenticates in Active Directory

13

What is stateful firewall inspection?

Remembers session of outbound packets on a socket and only permits inbound traffic to that socket

Socket - IP address + Port Number

14

What is an Application/Content aware firewall?

Can analyse and block specific content within a site

15

What is a virtual wire vs routed firewall?

Virtual wire is L2 and does not use IP address as a hop in network path

16

What is a quarantine VLAN also known as?

Remediation network

17

What is edge vs access control?

Access control determines which network resources can be accessed

18

What is the procedure for computer forensics?

First responder
Secure the area (escalate when necessary)
Document the scene
eDiscovery
Evidence/data collection
Chain of custody
Data transport
Forensics report
Legal hold

19

What is banner grabbing/OUI?

Getting information about a computer system

20

What is EAP-PEAP?

Authentication that works with RADIUS servers

21

What is EAP-TLS?

Supports client side digital certificates for authentication with APs