Security Attacks and Network Domains Quiz

Questions and Answers

What is the main risk of having unnecessary ports open on a firewall?

• It can increase the cost of network management.
• It can allow unauthorized access from the Internet. (correct)
• It can limit the functionality of the server.
• It can slow down network performance.

What defines the boundary between trusted and untrusted zones in an IT infrastructure?

• Switch
• Router
• Server
• Firewall (correct)

Which type of attack can severely disrupt an organization's ability to send and receive emails?

• Phishing
• Man-in-the-middle attack
• SQL injection
• Denial of Service (DOS) (correct)

What is a potential consequence of a successful SQL injection attack on a database server?

Corruption of data (D)

What characterizes a local user in a Windows environment?

Authorization is unique to the computer they log into. (D)

What allows mobile users to securely access a local network?

Virtual Private Network (VPN) (A)

Which domain represents the storage of user-accessed servers such as email and databases?

System/Application Storage Domain (C)

In what way does the access method differ between local and domain users in Windows?

Domain users require domain controller verification. (B)

What does the LAN domain primarily consist of?

A sub-network of servers and clients (C)

Which of the following best describes a WAN domain?

A communications network spanning a large geographic area (D)

What is one of the main advantages of a remote access domain?

Enables remote users to access resources at any time (D)

How does VPN technology aid remote users?

By providing a safe and encrypted connection (A)

What is a potential drawback of using IPsec VPN for remote access?

It generally requires installation and configuration of client software (A)

What role do domain controllers play in a LAN domain?

They handle user approval and access management (D)

Which of the following is NOT a characteristic of remote access domains?

Permitting access only from dedicated terminals (D)

What is one of the primary uses of a remote access VPN?

To enable secure access to corporate applications (A)

What is a potential consequence of an attacker gaining access to a business' system?

Unauthorized alteration or disclosure of information (A)

What is a software vulnerability?

A flaw in software that allows unauthorized access (B)

Which of the following is considered a common preventative measure against data loss?

Performing regular data backups (D)

Which application is likely to contain software vulnerabilities?

Adobe Flash (C)

What could lead to a denial of service (DOS) attack?

Gaining unauthorized access to a business’ system (C)

What is the most significant risk to the system/application domain mentioned?

Data loss (C)

Which practice helps in minimizing data access risks?

Implementing encryption and data handling standards (A)

Server software vulnerabilities can be more damaging because they involve what?

Software used to provide crucial services (D)

What should be avoided to maintain the reputation of the profession?

Engaging in unethical conduct (B)

Which action is essential for keeping stakeholders informed about progress?

Regularly sharing detailed reports (A)

What is the primary function of a VPN client?

To establish secure communication with a target network (C)

What is a crucial component of promoting a professional work environment?

Supporting colleagues' development (A)

What is a disadvantage of using an SSL VPN?

More configuration is required on the firewall (D)

What should be done if an ethical violation is observed?

Report it promptly to the appropriate governing body (C)

When using IPsec VPN connections, what can be a challenge for IT personnel?

Managing multiple active VPN connections (C)

Which of the following reflects a core ethical value in a professional setting?

Encouraging transparent communication (D)

What is likely the consequence of failing to keep stakeholders informed?

Potential misunderstandings and distrust (A)

Which component is essential for configuring a VPN client?

A pre-shared security key and gateway IP address (B)

What is a key advantage of using a Secure Socket Layer VPN?

End users can easily install the VPN client from a public portal (B)

What should be the focus when encouraging colleagues in their professional development?

Providing constructive feedback (A)

How should one approach resolving ethical issues at work?

By addressing the issue openly and transparently (A)

What is a potential issue for users and IT personnel regarding the installation of VPN clients?

Workers may need the client configured when they are away from the office (C)

Which of the following is true about SSL VPN setup?

The IT department does not need to manage individual devices (A)

What type of processing overhead is typically associated with using many IPsec VPN connections?

High processing overhead for network performance (C)

Study Notes

Security Attacks and Threats

• Denial of Service (DOS) and Distributed Denial of Service (DDOS) attacks can incapacitate servers.
• File Transfer Protocol (FTP) may facilitate anonymous uploads of illegal software.
• Firewalls filter traffic between trusted and untrusted zones in a Local Area Network (LAN) and Wide Area Network (WAN).
• Open ports on firewalls increase vulnerability to external access.

Network Domains

• The LAN domain comprises sub-networks with servers and clients managed by a centralized database.
• The WAN domain spans extensive geographic areas, either private for business connections or public for network interconnectivity.
• Remote Access Domain allows flexible access to system resources, enhancing collaboration and productivity across global teams.

User Types in Windows

• Local users’ credentials are stored locally on the computer, allowing access only to that machine.
• Domain users’ credentials are managed by a domain controller, facilitating access across multiple computers within a network.

Remote Access Technologies

• IPsec VPN provides a secure remote access solution but requires a client installation on users’ machines, which may complicate access.
• SSL VPN enables easier client installation from public portals, with less direct IT intervention.

Software and Server Vulnerabilities

• Software vulnerabilities may arise in any application, including common ones like Adobe Flash or custom in-house software.
• Server vulnerabilities present heightened risks due to potential access to critical services and operating systems.

Data Loss and Prevention

• Data loss can occur during storage, transmission, or processing, making it a significant concern in the system/application domain.
• Regular data backups and off-site storage are essential for data recovery and risk mitigation.

Risk Reduction Strategies

• Employ physical security for sensitive areas and implement encryption standards to protect data.
• Limit access to data, maintaining an awareness of all network applications.
• Promote ethical standards and professional conduct among colleagues to safeguard the profession's reputation.

Description

Test your knowledge on security attacks such as DoS and DDoS, and understand the different network domains including LAN and WAN. This quiz covers key concepts crucial for managing network security and user types in Windows environments.