GSLC Online Practice Questions and Answers

You work as a Network Administrator for Tech Perfect Inc. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. The company has recently provided laptops to its sales team members. You have configured access points in the network to enable a wireless network. The company's security policy states that all users using laptops must use smart cards for authentication. Select and

place the authentication method you are required to configure to implement the security policy of the company.

Select and Place:

Which of the following statements is true about the difference between worms and Trojan horses?

A. Trojan horses are a form of malicious codes while worms are not.

B. Trojan horses are harmful to computers while worms are not.

C. Worms replicate themselves while Trojan horses do not.

D. Worms can be distributed through emails while Trojan horses cannot.

A user has opened a Web site that automatically starts downloading malicious code onto his computer.

What should he do to prevent this?

Each correct answer represents a complete solution. Choose two.

A. Disable ActiveX Controls

B. Disable Active Scripting

C. Implement File Integrity Auditing

D. Configure Security Logs

What type of security metrics are used to illustrate results at the executive level shown below?

A. Key performance indicators

B. CVSS scores

C. Learning objectives

D. Critical path activities

Which of the following protocols uses a combination of public key and symmetric encryption to provide communication privacy, authentication, and message integrity for secure browsing on the Internet?

A. MS-CHAP v2

B. SSL

C. WEP

D. EFS

All of the following are the outputs of the Acquire Project Team process except for which one?

A. Resource calendars

B. Enterprise environmental factors

C. Project staff assignments

D. Project management plan updates

You are working on your computer system with Linux Operating system. After working for a few hours, the hard disk goes to the inactive state (sleep). You try to restart the system and check the power circuits. You later discover that the hard disk has crashed. Which of the following precaution methods should you apply to keep your computer safe from such issues?

A. Use Incident handling.

B. Use SMART model.

C. Use OODA loop.

D. Use Information assurance.

John visits an online shop that stores the IDs and prices of the items to buy in a cookie. After selecting the items that he wants to buy, the attacker changes the price of the item to 1.

Original cookie values: ItemID1=2 ItemPrice1=900 ItemID2=1 ItemPrice2=200 Modified cookie values: ItemID1=2 ItemPrice1=1 ItemID2=1 ItemPrice2=1 Now, he clicks the Buy button, and the prices are sent to the server that calculates the total price. Which of the following hacking techniques is John performing?

A. Cookie poisoning

B. Cross site scripting

C. Man-in-the-middle attack

D. Computer-based social engineering

Mark works as a Network Administrator for Technet Inc. The company has a Windows 2003 domainbased network. The network has a file server that uses a RAID-5 volume. The RAID-5 volume is configured with five hard disk drives. Over the weekend, a drive in the RAID-5 volume fails. What will Mark do to restore the RAID-5 volume?

A. Replace the failed drive with a new one, use Disk Management, select a new area of free space, and then regenerate the volume.

B. Use FDISK to delete the RAID-5 volume, and then restore data from the tape backup.

C. Use Disk Management, select the failed drive, and then regenerate the volume.

D. Replace the failed drive with a new one, use FDISK, select a new area of free space, and then regenerate the volume.

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He is using the Linux operating system. He wants to use a wireless sniffer to sniff the We-are-secure network. Which of the following tools will he use to accomplish his task?

A. Snadboy's Revelation

B. Kismet

C. NetStumbler

D. WEPCrack