1D0-671試験無料問題集（126題）「CIW Web Security Associate 認定」

出題：1

A distributed denial-of-service (DDOS) attack has occurred where both ICMP and TCP packets have crashed the company's Web server.
Which of the following techniques will best help reduce the severity of this attack?

A. Filtering traffic at the firewall

B. Changing your ISP

C. Installing Apache Server rather than Microsoft IIS

D. Placing the database and the Web server on separate systems

正解：A 解答を投票する

出題：2

Which of the following accurately describes an aspect of an access control list (ACL)?

A. The ACL lists entities that can access a database server, but does not provide access levels.

B. The ACL defines the database roles that users have on a database server.

C. The ACL cannot determine whether a user has access to an object, but can define exactly what the user can do with that object.

D. The ACL defines users that have access to a resource on a database server.

正解：B 解答を投票する

出題：3

You purchased a network scanner six months ago. In spite of regularly conducting scans using this software, you have noticed that attackers have been able to compromise your servers over the last month.
Which of the following is the most likely explanation for this problem?

A. The network scanner has a trojan.

B. The network scanner needs to be replaced.

C. The network scanner is no substitute for scans conducted by an individual.

D. The network scanner needs an update.

正解：D 解答を投票する

出題：4

The best way to thwart a dictionary attack is by enforcing a:

A. restricted access policy.

B. proxy server policy.

C. strong password policy.

D. firewall configuration policy.

正解：C 解答を投票する

出題：5

What is the primary use of hash (one-way) encryption in networking?

A. User authentication, for non-repudiation

B. Encrypting files, for data confidentiality

C. Signing files, for data integrity

D. Key exchange, for user authentication

正解：C 解答を投票する

出題：6

A new video conferencing device has been installed on the network. You have been assigned to troubleshoot a connectivity problem between remote workers and the central company. Specifically, remote workers are having problems making any connection at all.
Which technique will most likely help you solve this problem while retaining the existing level of security at the firewall?

A. Configure the firewall to provide VPN access.

B. Configure a second network connection directly to the video conferencing device.

C. Deny all use of UDP above Port 1024.

D. Allow all use of UDP below Port 1024.

正解：A 解答を投票する

出題：7

Which of the following is the device used to authenticate and encrypt packets in IPsec?

A. Internet Key Exchange (IKE)

B. Encryption tunnel

C. Authentication Header (AH)

D. Encapsulating Security Payload (ESP)

正解：D 解答を投票する

出題：8

Which protocol uses cleartext communication by default?

A. SSL

B. IPSEC

C. POP3

D. HTTP

正解：D 解答を投票する

出題：9

An effective way to prevent a user from becoming the victim of a malicious bot is to use a technique in which the user must view a distorted text image, and then type it before he or she is allowed to proceed with a transaction.
This technique is known as a:

A. SQL injection.

B. zombie.

C. botnet.

D. CAPTCHA.

正解：D 解答を投票する

出題：10

Which component works with an operating system to increase its security ability?

A. Operating system add-on

B. Network scanner

C. Port scanner

D. Log analysis tool

正解：A 解答を投票する

1D0-671試験無料問題集「CIW Web Security Associate 認定」