CCNA Discovery 1 Module 8 Exam Answers Version 4.0

1. Identify three techniques used in social engineering. (Choose three.)
• vishing
• phishing
• pretexting

2. During a pretexting event, how is a target typically contacted?
• by phone

3. While surfing the Internet, a user notices a box claiming a prize has been won. The user opens the box unaware that a program is being installed. An intruder now accesses the computer and retrieves personal information. What type of attack occurred?
• Trojan horse

4. What is a major characteristic of a Worm?
• exploits vulnerabilities with the intent of propagating itself across a network

5. A flood of packets with invalid source-IP addresses requests a connection on the network. The server busily tries to respond, resulting in valid requests being ignored. What type of attack occurred?
• SYN flooding

6. What type of advertising is typically annoying and associated with a specific website that is being visited?
• popups

7. What is a widely distributed approach to marketing on the Internet that advertises to as many individual users as possible via IM or e-mail?
• spam

8. What part of the security policy states what applications and usages are permitted or denied?
• acceptable use

9. Which statement is true regarding anti-virus software?
• Only after a virus is known can an anti-virus update be created for it.

10. Which two statements are true concerning anti-spam software? (Choose two.)
• When anti-spam software is loaded, legitimate e-mail may be classified as spam by mistake.
• Even with anti-spam software installed, users should be careful when opening e-mail attachments.

11. What term is used to describe a dedicated hardware device that provides firewall services?
• appliance-based

12. Which acronym refers to an area of the network that is accessible by both internal, or trusted, as well as external, or untrusted, host devices?
• DMZ

13. Which statement is true about port forwarding within a Linksys integrated router?
• Only external traffic that is destined for specific internal ports is permitted. All other traffic is denied.

14. To which part of the network does the wireless access point part of a Linksys integrated router connect?
• internal

15. Refer to the graphic. What is the purpose of the Internet Filter option of Filter IDENT (Port 113. on the Linksys integrated router?

16. What statement is true about security configuration on a Linksys integrated router?
• Internet access can be denied for specific days and times.

17. What environment would be best suited for a two-firewall network design?
• a large corporate environment

18. What is one function that is provided by a vulnerability analysis tool?
• It identifies missing security updates on a computer.

19. Many best practices exist for wired and wireless network security. The list below has one item that is not a best practice. Identify the recommendation that is not a best practice for wired and wireless security.
• Disable the wireless network when a vulnerability analysis is being performed.

20. What best practice relates to wireless access point security?
• a change of the default IP address

21. Refer to the graphic. In the Linksys Security menu, what does the SPI Firewall Protection option Enabled provide?