IT415 Cybersecurity: OS Overview

Questions and Answers

What tool can be used to manage ACLs on files in Windows?

• Task Manager
• Windows Explorer (correct)
• Network Monitor
• Device Manager

Which of the following describes the primary purpose of ACLs in Windows?

• To manage user permissions and access to resources (correct)
• To monitor system disk usage
• To increase internet speed
• To enhance graphic performance

How does the Windows Firewall utilize ACLs?

• To optimize system performance
• To schedule system backups
• To control application updates
• To manage inbound and outbound traffic (correct)

What action can be specified in an ACL for a user on a folder?

Set read-only access (C)

Which of the following is NOT a feature of Windows security?

Network File Sharing (A)

Which command is specifically mentioned for setting ACLs in Windows?

icacls (A)

What can ACLs control in regards to system processes?

Access to files and what actions they can perform (C)

For what reason would specific IP addresses be configured in an ACL within a firewall?

To allow access to only trusted users (D)

What is the primary purpose of Access Control Lists (ACLs)?

To protect critical assets by defining access permissions (D)

Which type of ACL is responsible for auditing access to an object?

System ACL (SACL) (C)

How do Discretionary ACLs (DACLs) function?

They control access to an object based on user permissions (B)

In the context of network security, what analogy is used to describe security measures?

Locking your house or car (A)

What is the critical differentiator between DACLs and SACLs?

DACLs are used for access protection, whereas SACLs are for access auditing. (B)

What action is not typically permitted by an ACL in a Windows system?

Delete system logs without permission (A)

Which of the following best describes the relationship between Windows and Linux ACLs?

Linux ACLs provide more granular permission settings than Windows ACLs. (C)

What significant risk does poorly configured ACLs pose in an IT environment?

Unauthorized access to critical resources (D)

What is one reason Linux is considered more secure than other operating systems?

It is less susceptible to viruses and malware. (D)

Which tool is specifically mentioned as a command-line utility for managing network traffic in Linux?

iptables (C)

How are Linux ACLs typically configured compared to Windows ACLs?

Using command-line tools. (B)

What does SELinux refer to in the context of Linux security?

A set of permissions and policies. (D)

What are ACLs in Linux used for?

Allowing or denying traffic based on IP address, port, or protocol. (C)

What advantage does the command-line approach of managing ACLs in Linux offer?

More granular configuration options. (B)

Why is integrity considered a key factor in the context of ACL implementation?

It ensures that only authorized users can access data. (C)

Which distribution is NOT mentioned as an example of a Linux operating system?

MacOS (B)

Flashcards are hidden until you start studying

Study Notes

Overview of Operating Systems in Network Security

• Focus on Windows and Linux, highlighting their roles in network security.
• Emphasize the importance of security features and Access Control Lists (ACLs).

Access Control Lists (ACLs) in Windows

• ACLs define user permissions for accessing resources; analogous to locking a house or car.
• Types of ACLs:
  • Discretionary ACLs (DACLs): Control access based on user permissions (e.g., allowing specific users to modify files).
  • System ACLs (SACLs): Used for auditing access, recording attempts and actions on objects.
• Tools to manage ACLs include icacls, Windows Explorer, and PowerShell.
• Example: Use icacls command to set read-only access for a user on a specified folder.

Security Features in Windows

• Built-in features for protection against unauthorized access include:
  • User Account Control (UAC)
  • BitLocker
  • Windows Defender
  • Windows Firewall
• ACLs associate specific actions (read, write, execute) with users or system processes for securing files and registry keys.

Implementing IPv4 ACLs in Windows

• Windows Firewall utilizes ACLs to manage traffic flow based on IP addresses, ports, and protocols.
• Example: Configure an ACL to permit only specific IP addresses to access a web server.

Overview of Linux Operating System

• Linux, an open-source OS, features various distributions such as Ubuntu, CentOS, and Red Hat.
• Considered more secure than other OSs like Windows due to lower susceptibility to viruses and malware.

Security Features in Linux

• Linux includes robust security measures:
  • SELinux
  • AppArmor
  • iptables for network traffic management.
• iptables is a command-line interface for configuring the netfilter firewall responsible for traffic filtering.

ACL Management Comparison: Windows vs. Linux

• Linux ACLs are often more granular, configured primarily through command-line tools like setfacl.
• Windows ACLs are generally managed via graphical interfaces and PowerShell, which allows broader configurational capabilities.

Importance of ACLs

• ACLs are vital for maintaining security, integrity, and sustainability in access management.
• Strong ACL practices help ensure trust, innovation, and effective stewardship of information systems.