Frequent Questions      

     Security+ Practice Questions

 

Intrusion detection and security baselines

 

Home
Up                           Previous         Next

Q4. Sam has written a script to analyze the Web server logs for any un-authorized or suspicious activity. This is an example of which of the following?

A. Operating system hardening

B. Network hardening

C. Application hardening

D. Honeypot

  Correct Answer: C

 

Explanation:

There are three basic ways of hardening.

1. Operating system hardening: Here the operating system is hardened (making tough to intrude). Few points that would help in hardening an operating system:

a. Changing default administrator account names, and passwords

b. Using file access and user access permissions

c. Applying any OS hot fixes as and when they are available

2. Network hardening: This involve the following

a. Restricting access to network shares

b. Disabling/removing protocols and services that are not required.

c. Applying Firewalls such as CheckPoint FireWall or NAT (Network Address Translation)

d. Restricting wireless access where it may lead to vulnerability

3. Application Hardening: Applications such as DNS servers, Web server, Mail servers, File and print servers can be hardened by the following means:

a. Applying latest patches and hotfixes

b. Installing anti-virus software where applicable, such as mail server

c. Changing the default user names and passwords that the applications use.

Home
Up                      Previous         Next

 


Disclaimer: All Simulation Exams practice tests, study guides and/or material are neither sponsored by, nor endorsed by, nor affiliated with Cisco® Systems, Inc., Microsoft® Corporation, Inc., CompTIA® , Check Point Software Corp., Prosoft® or any other company. All trademarks are trademarks of their respective owners and duly  acknowledged. MCSE ™, MCSE+I ™ are registered trademarks of Microsoft® Corporation and CCNA™, CCNP™, CCIE™ are registered trade marks of Cisco® Systems. A+™, Network+™, i-Net+™, Server+™ are registered trade marks of CompTIA®. CCSA™, CCSE™ are registered trademarks of CheckPoint® Software Corp. CIW™ is a trade mark of Prosoft®. Thank-you for your interest in Simulation Exams. Please see read me file before you download, install, and/or use any software from SimulationExams.com  For any information or questions regarding this Website, please e-mail webmaster at simulationexams.com

Copyright © 2000-2015 SimulationExams.com All rights reserved

Website design by Anandsoft.com