1D0-571 by CIW Actual Free Exam Questions And Answers

Question 1

You have implemented a version of the Kerberos protocol for your network. What service does Kerberos primarily offer?

A. Authentication

B. Non-repudiation

C. Encryption

D. Data integrity

Discussion 0

Correct Answer: A Vote an answer

Question 2

A new video conferencing device has been installed on the network. You have been assigned to troubleshoot a connectivity problem between remote workers and the central company. Specifically, remote workers are having problems making any connection at all.
Which technique will most likely help you solve this problem while retaining the existing level of security at the firewall?

A. Allow all use of UDP below Port 1024.

B. Configure a second network connection directly to the video conferencing device.

C. Configure the firewall to provide VPN access.

D. Deny all use of UDP above Port 1024.

Discussion 0

Correct Answer: C Vote an answer

Question 3

Consider the following series of commands from a Linux system: iptables -A input -p icmp - s 0/0 -d 0/0 -j REJECT Which explanation best describes the impact of the resulting firewall ruleset?

A. Internal hosts will not be able to ping each other using ICMP.

B. Individuals on remote networks will no longer be able to use SSH to control internal network resources.

C. Individuals on remote networks will not be able to use ping to troubleshoot connections.

D. Stateful multi-layer inspection has been enabled.

Discussion 0

Correct Answer: C Vote an answer

Question 4

Which of the following is a primary weakness of asymmetric-key encryption?

A. It is slow because it requires extensive calculations by the computer.

B. It is reliant on the Secure Sockets Layer (SSL) standard, which has been compromised.

C. It can lead to the corruption of encrypted data during network transfer.

D. It is difficult to transfer any portion of an asymmetric key securely.

Discussion 0

Correct Answer: A Vote an answer

Question 5

Which of the following describes the practice of stateful multi-layer inspection?

A. Prioritizing voice and video data to reduce congestion

B. Inspecting packets in all layers of the OSI/RM with a packet filter

C. Using a VLAN on a firewall to enable masquerading of private IP addresses

D. Using Quality of Service (QoS) on a proxy-oriented firewall

Discussion 0

Correct Answer: B Vote an answer

Question 6

You have determined that the company Web server has several vulnerabilities, including a buffer overflow that has resulted in an attack. The Web server uses PHP and has direct connections to an Oracle database server. It also uses many CGI scripts. Which of the following is the most effective way to respond to this attack?

A. Installing an intrusion detection service to monitor logins

B. Using the POST method instead of the GET method for a Web form

C. Installing software updates for the Web server daemon

D. Using the GET method instead of the POST method for a Web form

Discussion 0

Correct Answer: C Vote an answer

Question 7

Which tool is best suited for identifying applications and code on a Web server that can lead to a SQL injection attack?

A. A network switch

B. An intrusion-detection system

C. A vulnerability scanner

D. A packet sniffer

Discussion 0

Correct Answer: C Vote an answer

CIW v5 Security Essentials - 1D0-571 Exam Practice Test

Contact Us

Useful Links

Latest Updated