What is the best means of prevention against viruses?

A. Assign read only permission to all files on your system.

B. Remove any external devices such as floppy and USB connectors.

C. Install a rootkit detection tool.

D. Install and update anti-virus scanner.

Given the following extract from the snort log on a honeypot, what service is being exploited? :

A. FTP

B. SSH

C. Telnet

D. SMTP

Susan has attached to her company's network. She has managed to synchronize her boss's sessions with that of the file server. She then intercepted his traffic destined for the server, changed it the way she wanted to and then placed it on the server in his home directory.

What kind of attack is Susan carrying on?

A. A sniffing attack

B. A spoofing attack

C. A man in the middle attack

D. A denial of service attack

You ping a target IP to check if the host is up. You do not get a response. You suspect ICMP is blocked at the firewall. Next you use hping2 tool to ping the target host and you get a response.

Why does the host respond to hping2 and not ping packet?

A. Ping packets cannot bypass firewalls

B. You must use ping 10.2.3.4 switch

C. Hping2 uses stealth TCP packets to connect

D. Hping2 uses TCP instead of ICMP by default

On wireless networks, SSID is used to identify the network.

Why are SSID not considered to be a good security mechanism to protect a wireless networks?

A. The SSID is only 32 bits in length.

B. The SSID is transmitted in clear text.

C. The SSID is the same as the MAC address for all vendors.

D. The SSID is to identify a station,not a network.