312-38無料問題集「EC-COUNCIL EC-Council Certified Network Defender CND」

質問 1

Identify the correct statements regarding a DMZ zone:

（A）It includes sensitive internal servers such as database servers

（B）It is a file integrity monitoring mechanism

（C）It is a Neutral zone between a trusted network and an untrusted network

（D）It serves as a proxy

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

According to the company's security policy, all access to any network resources must use Windows Active Directory Authentication. A Linux server was recently installed to run virtual servers and it is not using Windows Authentication. What needs to happen to force this server to use Windows Authentication?

（A）Edit the PAM file to enforce Windows Authentication

（B）Edit the ADLIN file.

（C）Edit the shadow file.

（D）Remove the /var/bin/localauth.conf file.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

Which category of suspicious traffic signatures includes SYN flood attempts?

（A）Denial of Service

（B）Unauthorized access

（C）Reconnaissance

（D）Informational

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Identify the type of event that is recorded when an application driver loads successfully in Windows.

（A）Success Audit

（B）Information

（C）Warning

（D）Error

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which of the following refers to the clues, artifacts, or evidence that indicate a potential intrusion or malicious activity in an organization's infrastructure?

（A）Key risk indicators

（B）Indicators of attack

（C）Indicators of exposure

（D）Indicators of compromise

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

You are responsible for network functions and logical security throughout the corporation. Your company has over 250 servers running Windows Server 2012, 5000 workstations running Windows 10, and 200 mobile users working from laptops on Windows 8. Last week 10 of your company's laptops were stolen from a salesman, while at a conference in Barcelona. These laptops contained proprietary company information.
While
doing a damage assessment, a news story leaks about a blog post containing information about the stolen laptops and the sensitive information. What built-in Windows feature could you have implemented to protect the sensitive information on these laptops?

（A）You should have used 3DES.

（B）If you would have implemented Pretty Good Privacy (PGP).

（C）You could have implemented the Encrypted File System (EFS)

（D）You should have implemented the Distributed File System (DFS).

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Which firewall technology provides the best of both packet filtering and application-based filtering and is used in Cisco Adaptive Security Appliances?

（A）Network address translation

（B）Application level gateway

（C）VPN

（D）Stateful multilayer inspection

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Which of the following refers to a potential occurrence of an undesired event that can eventually damage and interrupt the operational and functional activities of an organization?

（A）Threat

（B）Risk

（C）Vulnerability

（D）Attack

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

Which of the following is an example of MAC model?

（A）Chinese Waterfall model

（B）Clark-Beason integrity model

（C）Bell-LaPadula model

（D）Access control matrix model

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

Which of the following types of information can be obtained through network sniffing? (Select all that apply)

（A）Programming errors

（B）Syslog traffic

（C）Telnet passwords

（D）DNS traffic

正解：B、C、D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

Which of the following can be used to disallow a system/user from accessing all applications except a specific folder on a system?

（A）Certificate rule

（B）Hash rule

（C）Path rule

（D）Internet zone rule

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

What defines the maximum time period an organization is willing to lose data during a major IT outage event?

（A）BC

（B）RPO

（C）DR

（D）RTO

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

James, a network admin in a large US based IT firm, was asked to audit and implement security controls over all network layers to achieve Defense-in-Depth. While working on this assignment, James has implemented both blacklisting and whitelisting ACLs. Which layer of defense-in-depth architecture is Jason working on currently?

（A）Application Layer

（B）Internal Network Layer

（C）Perimeter Layer

（D）Host Layer

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

The CEO of Max Rager wants to send a confidential message regarding the new formula for its coveted soft drink, SuperMax, to its manufacturer in Texas. However, he fears the message could be altered in transit. How can he prevent this incident from happening and what element of the message ensures the success of this method?

（A）Hashing; public key

（B）Hashing; hash code

（C）Asymmetric encryption; public key

（D）Symmetric encryption; secret key

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

You are an IT security consultant working on a contract for a large manufacturing company to audit their entire network. After performing all the tests and building your report, you present a number of recommendations to the company and what they should implement to become more secure. One recommendation is to install a network-based device that notifies IT employees whenever malicious or questionable traffic is found. From your talks with the company, you know that they do not want a device that actually drops traffic completely, they only want notification. What type of device are you suggesting?

（A）You are suggesting a NIPS device

（B）A HIPS device would best suite this company

（C）A NIDS device would work best for the company

（D）The best solution to cover the needs of this company would be a HIDS device.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Rick has implemented several firewalls and IDS systems across his enterprise network. What should he do to effectively correlate all incidents that pass through these security controls?

（A）Implement Simple Network Management Protocol (SNMP)

（B）Use Network Time Protocol (NTP)

（C）Use firewalls in Network Address Transition (NAT) mode

（D）Implement IPsec

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 17

Which of the following security models enable strict identity verification for every user or device attempting to access the network resources?
1. Zero-trust network model
2. Castle-and-Moat model

（A）None

（B）1 only

（C）2 only

（D）Both 1 and 2

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

Which of the following characteristics represents a normal TCP packet?

（A）The destination address is a broadcast address

（B）SYN and FIN bits are set

（C）Source or destination port b zero

（D）FIN ACK and ACK are used in terminating the connection

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 19

Which of the following entities is responsible for cloud security?

（A）Cloud broker

（B）Cloud provider

（C）Both cloud consumer and provider

（D）Cloud consumer

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

312-38 無料問題集「EC-COUNCIL EC-Council Certified Network Defender CND」

弊社を連絡する

関連リンク

トップ試験