Security Attacks and Network Domains Quiz

Questions and Answers

What is the main risk of having unnecessary ports open on a firewall?

It can increase the cost of network management.

It can allow unauthorized access from the Internet. (correct)

It can limit the functionality of the server.

It can slow down network performance.

What defines the boundary between trusted and untrusted zones in an IT infrastructure?

Switch

Router

Server

Firewall (correct)

Which type of attack can severely disrupt an organization's ability to send and receive emails?

Phishing

Man-in-the-middle attack

SQL injection

Denial of Service (DOS) (correct)

What is a potential consequence of a successful SQL injection attack on a database server?

Corruption of data

What characterizes a local user in a Windows environment?

Authorization is unique to the computer they log into.

What allows mobile users to securely access a local network?

Virtual Private Network (VPN)

Which domain represents the storage of user-accessed servers such as email and databases?

System/Application Storage Domain

In what way does the access method differ between local and domain users in Windows?

Domain users require domain controller verification.

What does the LAN domain primarily consist of?

A sub-network of servers and clients

Which of the following best describes a WAN domain?

A communications network spanning a large geographic area

What is one of the main advantages of a remote access domain?

Enables remote users to access resources at any time

How does VPN technology aid remote users?

By providing a safe and encrypted connection

What is a potential drawback of using IPsec VPN for remote access?

It generally requires installation and configuration of client software

What role do domain controllers play in a LAN domain?

They handle user approval and access management

Which of the following is NOT a characteristic of remote access domains?

Permitting access only from dedicated terminals

What is one of the primary uses of a remote access VPN?

To enable secure access to corporate applications

What is a potential consequence of an attacker gaining access to a business' system?

Unauthorized alteration or disclosure of information

What is a software vulnerability?

A flaw in software that allows unauthorized access

Which of the following is considered a common preventative measure against data loss?

Performing regular data backups

Which application is likely to contain software vulnerabilities?

Adobe Flash

What could lead to a denial of service (DOS) attack?

Gaining unauthorized access to a business’ system

What is the most significant risk to the system/application domain mentioned?

Data loss

Which practice helps in minimizing data access risks?

Implementing encryption and data handling standards

Server software vulnerabilities can be more damaging because they involve what?

Software used to provide crucial services

What should be avoided to maintain the reputation of the profession?

Engaging in unethical conduct

Which action is essential for keeping stakeholders informed about progress?

Regularly sharing detailed reports

What is the primary function of a VPN client?

To establish secure communication with a target network

What is a crucial component of promoting a professional work environment?

Supporting colleagues' development

What is a disadvantage of using an SSL VPN?

More configuration is required on the firewall

What should be done if an ethical violation is observed?

Report it promptly to the appropriate governing body

When using IPsec VPN connections, what can be a challenge for IT personnel?

Managing multiple active VPN connections

Which of the following reflects a core ethical value in a professional setting?

Encouraging transparent communication

What is likely the consequence of failing to keep stakeholders informed?

Potential misunderstandings and distrust

Which component is essential for configuring a VPN client?

A pre-shared security key and gateway IP address

What is a key advantage of using a Secure Socket Layer VPN?

End users can easily install the VPN client from a public portal

What should be the focus when encouraging colleagues in their professional development?

Providing constructive feedback

How should one approach resolving ethical issues at work?

By addressing the issue openly and transparently

What is a potential issue for users and IT personnel regarding the installation of VPN clients?

Workers may need the client configured when they are away from the office

Which of the following is true about SSL VPN setup?

The IT department does not need to manage individual devices

What type of processing overhead is typically associated with using many IPsec VPN connections?

High processing overhead for network performance

Study Notes

Security Attacks and Threats

• Denial of Service (DOS) and Distributed Denial of Service (DDOS) attacks can incapacitate servers.
• File Transfer Protocol (FTP) may facilitate anonymous uploads of illegal software.
• Firewalls filter traffic between trusted and untrusted zones in a Local Area Network (LAN) and Wide Area Network (WAN).
• Open ports on firewalls increase vulnerability to external access.

Network Domains

• The LAN domain comprises sub-networks with servers and clients managed by a centralized database.
• The WAN domain spans extensive geographic areas, either private for business connections or public for network interconnectivity.
• Remote Access Domain allows flexible access to system resources, enhancing collaboration and productivity across global teams.

User Types in Windows

• Local users’ credentials are stored locally on the computer, allowing access only to that machine.
• Domain users’ credentials are managed by a domain controller, facilitating access across multiple computers within a network.

Remote Access Technologies

• IPsec VPN provides a secure remote access solution but requires a client installation on users’ machines, which may complicate access.
• SSL VPN enables easier client installation from public portals, with less direct IT intervention.

Software and Server Vulnerabilities

• Software vulnerabilities may arise in any application, including common ones like Adobe Flash or custom in-house software.
• Server vulnerabilities present heightened risks due to potential access to critical services and operating systems.

Data Loss and Prevention

• Data loss can occur during storage, transmission, or processing, making it a significant concern in the system/application domain.
• Regular data backups and off-site storage are essential for data recovery and risk mitigation.

Risk Reduction Strategies

• Employ physical security for sensitive areas and implement encryption standards to protect data.
• Limit access to data, maintaining an awareness of all network applications.
• Promote ethical standards and professional conduct among colleagues to safeguard the profession's reputation.

Description

Test your knowledge on security attacks such as DoS and DDoS, and understand the different network domains including LAN and WAN. This quiz covers key concepts crucial for managing network security and user types in Windows environments.