1D0-671試験無料問題集（126題）「CIW Web Security Associate 認定」

出題：1

Consider the following diagram involving two firewall-protected networks:
Which of the following is necessary for each of the firewalls to allow private IP addresses to be passed on to the Internet?

A. Masquerading

B. Chargeback

C. DMZ creation

D. Stateful multi-layer inspection

正解：A 解答を投票する

出題：2

You want to create a quick solution that allows you to obtain real-time login information for the administrative account on an LDAP server that you feel may become a target.
Which of the following will accomplish this goal?

A. Create a dummy administrator account on the system so that a potential hacker is distracted from the real login account.

B. Install an application that creates checksums of the contents on the hard disk.

C. Reinstall the LDAP service on the server so that it is updated and more secure.

D. Create a login script for the administrative account that records logins to a separate server.

正解：D 解答を投票する

出題：3

What is the primary use of hash (one-way) encryption in networking?

A. User authentication, for non-repudiation

B. Encrypting files, for data confidentiality

C. Signing files, for data integrity

D. Key exchange, for user authentication

正解：C 解答を投票する

出題：4

Why should you notify the hacker's ISP if you have successfully identified a hacker?

A. You can have the ISP terminate the connection so the attack can be stopped.

B. You can have the ISP reconfigure the hacker's routing tables.

C. You can have the ISP retaliate by altering the hacker's login script.

D. You can have the ISP retaliate by placing a trojan or virus on the hacker's system.

正解：A 解答を投票する

出題：5

Which of the following commands would you use to create a simple personal firewall that blocks all incoming ICMP traffic?

A. iptables -A INPUT -p icmp -s 10.100.100.0/24 -d 0/0 -j DROP

B. iptables -A INPUT -p icmp -s 10.100.100.0/255.255.255 -d 0/0 -j KILL

C. iptables - INPUT -p icmp -s 0/0 -d 0/0 -j KILL

D. iptables -A INPUT -p icmp -s 0/0 -d 0/0 -j DROP

正解：D 解答を投票する

出題：6

Which choice lists the designated stages of a hacker attack in the correct order?

A. Sniffing, penetration, control

B. Sniffing, discovery, penetration

C. Discovery, penetration, control

D. Penetration, discovery, control

正解：C 解答を投票する

出題：7

Consider the following image of a packet capture:
This packet capture has recorded two types of attacks.
Which choice lists both attack types?

A. A SQL injection attack and a virus attackD.A SQL injection attack and a virus attack

B. A worm attack and a botnet attack C.A worm attack and a botnet attack

C. A dictionary attack and a worm-based attackA.A dictionary attack and a worm-based attack

D. A syn flood attack and a spoofing attackB.A syn flood attack and a spoofing attack

正解：D 解答を投票する

出題：8

What is the primary strength of symmetric-key encryption?

A. It creates a ash?of a text, enabling data integrity.It creates a ?ash?of a text, enabling data integrity.

B. It can encrypt large amounts of data very quickly.

C. It allows easy and secure exchange of the secret key.

D. It provides non-repudiation services more efficiently than asymmetric-key encryption.

正解：B 解答を投票する

出題：9

The vast majority of hackers are which type of attacker?

A. Casual attacker

B. Disgruntled employee

C. Spy

D. Determined attacker

正解：A 解答を投票する

出題：10

What is the purpose of a revocation certificate?

A. It prevents a man-in-the-middle attack on your network.

B. It allows you to quickly publish the fact that the key pair is no longer valid because it has been compromised.

C. It logs remote user activity on a VPN.

D. It allows the user who creates asymmetric code to freely disseminate the code at his or her discretion.

正解：B 解答を投票する

1D0-671試験無料問題集「CIW Web Security Associate 認定」