Host-Based Intrusion Detection System (IDS) Quiz

Questions and Answers

What should be done if you cannot determine that all access is valid?

• Deploy multifactor authentication
• Consider all passwords compromised (correct)
• Encrypt password files
• Create a strong password policy

What type of attack prevents a system from processing or responding to legitimate traffic or requests for resources and objects?

• Malicious packet injection
• Distributed denial of service (DDoS)
• Denial of service (DoS) (correct)
• Distributed reflective denial of service (DRDoS)

What can result in DoS conditions, aside from malicious attacks?

• Power outages
• Virus infections
• Hardware failures
• Coding errors in operating systems, services, and applications (correct)

What is the purpose of account lockout controls?

To prevent brute-force attacks (C)

What type of attack involves sending numerous update, session, or control packets to various Internet service servers or routers with a spoofed source address for the intended victim?

Distributed reflective denial of service (DRDoS) (A)

What is the result of a DRDoS attack?

Flood of update packets, session acknowledgment responses, or error messages sent to the victim (C)

What can be affected by a DRDoS attack?

Both the victim's system and upstream systems (D)

What should be done to address self-inflicted DoS conditions?

Apply patches quickly (D)

What is a common consequence of a DoS attack?

System slow down or unresponsiveness (D)

What is a benefit of deploying multifactor authentication?

Enhanced security against unauthorized access (D)