SCP SC0-471 Exam Practice Test Instant Access

Question 1

You work for a medium sized ISP and there have been several attacks of the DNS configuration recently. You are particularly concerned with DNS Spoofing and other DNS attacks. If an attacker is able to take advantage of a BIND vulnerability to gain root access, this is which type of DNS Attack?

ADNS Server Compromise

BDNS Cache Poisoning

CSpoofing the DNS Response

DDNS Source-Router Spoof

EIXFR Source-Spoof

Answer : A

Question 2

Which of the following best describes the Repair Model?

AThe model makes use of preventive measures and regular service as well as updates such as Service Packs, maintenance updates, and patches. Preventive measures can also improve the chances of the repair model working better than if the system had no preventive measures ever taken.

BThe repair model is the transference of risk to an insurance company that covers the costs of replacing the critical assets within your network. The drawbacks are increase in premiums after making a claim, high premiums anyway, down time while the insurance company is processing the claim, and claim may not pay what replacement costs are today.

CAssets will typically cost much more than the original capital outlay that it took to purchase it long ago. Repair costs can be very high and a decision to exercise this model should not be made in haste. There are also depreciation issues to deal with as well. In any case, this model should be the last resort because of cost and may be the most time consuming.

DThe repair model makes use of the acknowledged skills and abilities of the existing personnel. Knowing that assets have very specific dollar values assigned to them, the choice on how to manage the asset is based on the experience of the personnel.

EBefore incurring the cost for repair of an inoperative asset, check for maintenance agreements that may include the cost of repair or the actual repair itself. Nevertheless, the repair model should focus on the restoration of the downed asset to its working status within the network infrastructure. Keep in mind that after hardware costs, costs for the reloading or replacement of software can be a large cost factor as well.

Answer : E

Question 3

You are creating a new Auditing and Logging policy for your network. On a Windows 2003 system, if you wish to audit events like access to a file, folder, or printer, which of the following options would you use?

AAudit Account Logon Events

BAudit Account Management

CAudit Logon Events

DAudit Object Access

EAudit System Events

Answer : D

Question 4

You are setting the permissions on a new file in Linux. What will be the level of permission given to the user if you assign an Octal value of 7?

Arw-

Br-x

C---

Dr--

Erwx

Answer : E

Question 5

It has come to your attention that some machine has tried to send a packet to your DNS server containing both a DNS query and an answer that is false. What type of attack was used against your network?

ADNS overflow

BDNS poisoning through sequence prediction

CStatd overflow

DDNS cache poisoning

EDNS parse corruption

Answer : D

Question 6

As you configure your SuSe Linux computer, you make sure to modify TCP Wrappers as required by the security policy. What are two benefits that TCP Wrappers provides you with in controlling the security of the system?

AConnection Logging

BPassword Encryption

CNetwork Encryption

DNetwork Access Control

ESecure Packet Encapsulation

Answer : A, D

Question 7

Which one of the following is an incorrect mod equation?

A9 mod 3 = 0

B40 mod 10 = 0

C40 mod 9 = 4

D(6-1) mod 3 = 0

E(2+4) mod 5 = 1

Answer : D

SCP Strategic Infrastructure Security SC0-471 Exam Practice Test