EX0-106 dernières questions d'examen certification EXIN et réponses publiés

Beaucoup de travailleurs dans l'Industrie IT peut obenir un meilleur travail et améliorer son niveau de vie à travers le Certificat EXIN EX0-106. Mais la majorité des candidats dépensent beaucoup de temps et d'argent pour préparer le test, ça ne coûte pas dans cette société que le temps est tellement précieux. Pass4Test peut vous aider à économiser le temps et l'effort pendant le cours de la préparation du test EXIN EX0-106. Choisir le produit de Pass4Test particulier pour le test Certification EXIN EX0-106 vous permet à réussir 100% le test. Votre argent sera tout rendu si malheureusement vous ne passez pas le test.

Vous n'avez besoin que de faire les exercices à propos du test EXIN EX0-106 offertes par Pass4Test, vous pouvez réussir le test sans aucune doute. Et ensuite, vous aurez plus de chances de promouvoir avec le Certificat. Si vous ajoutez le produit au panier, nous vous offrirons le service 24h en ligne.

Vous pouvez télécharger tout d'abord une partie de Q&A Certification EXIN EX0-106 pour tester si Pass4Test est vraiment professionnel. Nous pouvons vous aider à réussir 100% le test EXIN EX0-106. Si malheureusement, vous ratez le test, votre argent sera 100% rendu.

Code d'Examen: EX0-106
Nom d'Examen: EXIN (SCNS Tactical Perimeter Defense)
Questions et réponses: 232 Q&As

On peut télécharger quelques parties de Q&A gratuites dans le site Pass4Test à propos de test Certification EXIN EX0-106. Vous pouvez tester notre fiabilité via le démo. Choisir Pass4Test, c'est-à-dire que vous êtes proche d'un pic ensuite de l'Industrie IT.

Nous croyons que pas mal de candidats voient les autres site web qui offrent les ressources de Q&A EXIN EX0-106. En fait, le Pass4Test est le seul site qui puisse offrir la Q&A recherchée par les experts réputés dans l'Industrie IT. Grâce à la Q&A de Pass4Test impressionée par la bonne qualité, vous pouvez réussir le test EXIN EX0-106 sans aucune doute.

Le Certificat de EXIN EX0-106 signifie aussi un nouveau jalon de la carrière, le travail aura une space plus grande à augmenter, et tout le monde dans l'industrie IT sont désireux de l'obtenir. En face d'une grande passion pour le test Certification EXIN EX0-106, le contrariété est le taux très faible à réussir. Bien sûr que l'on ne passe pas le test EX0-106 sans aucun éffort, en même temps, le test de EXIN EX0-106 demande les connaissances bien professionnelles. Le guide d'étude dans le site Pass4Test peut vous fournir un raccourci à réussir le test EXIN EX0-106 et à obtenir le Certificat de ce test. Choisissez le guide d'étude de Pass4Test, vous verrez moins de temps dépensés, moins d'efforts contribués, mais plus de chances à réussir le test. Ça c'est une solution bien rentable pour vous.

EX0-106 Démo gratuit à télécharger: http://www.pass4test.fr/EX0-106.html

NO.1 As you increase the layers of security in your organization, you must watch the network behavior
closely. How can a firewall have a negative impact on the performance of your network?
A. It can authorize sensitive information from the wrong host
B. It can block needed traffic
C. It can decrypt secure communications that were supposed to get past the firewall encrypted
D. It can restrict bandwidth based on QoS
E. It can filter packets that contain virus signatures
Answer: B

EXIN examen   EX0-106   EX0-106 examen   certification EX0-106   certification EX0-106   EX0-106

NO.2 You have implemented an IPSec policy, using only AH. You are analyzing your network traffic in
Network Monitor, which of the following statements are true about your network traffic?
A. You will not be able to view the data in the packets, as it is encrypted.
B. You will not be able to identify the upper layer protocol.
C. You will be able to view the unencrypted data in the packets.
D. You will be able to identify the encryption algorithm in use.
E. You will not be able to view the packet header.
Answer: C

EXIN examen   EX0-106   EX0-106   certification EX0-106   EX0-106

NO.3 You are monitoring the network traffic on your Frame-Relay Internet connection. You notice a large
amount of unauthorized traffic on port 21. You examine the packets, and notice there are no files being
transferred. Traffic on what other port must be examined to view any file contents?
A. 20
B. 119
C. 23
D. 80
E. 2021
Answer: A

EXIN   EX0-106   certification EX0-106   EX0-106

NO.4 What step in the process of Intrusion Detection as shown in the exhibit would determine if given alerts
were part of a bigger intrusion, or would help discover infrequent attacks?
A. 5
B. 9
C. 12
D. 10
E. 4
Answer: C

EXIN examen   EX0-106   certification EX0-106   certification EX0-106   certification EX0-106

NO.5 As per the specifications of RFC 1191: Path MTU Discovery, MTUs have been defined so that
transmitted datagrams will not unnecessarily become fragmented when traveling across different types of
physical media. You are going to run several packet captures to be sure there are no out of spec packets
on your network. According to these specifications what are the absolute minimum and maximum MTUs?
A. 1492 Bytes and 1500 Bytes respectively
B. 68 Bytes and 65535 Bytes respectively
C. 512 Bytes and 1500 Bytes respectively
D. 512 bits and 1500 bits respectively
E. 512 bits per second and 1500 bits per second respectively
Answer: B

certification EXIN   EX0-106 examen   EX0-106   EX0-106 examen   EX0-106

NO.6 You are introducing a co-worker to the security systems in place in your organization. During the
discussion you begin talking about the network, and how it is implemented. You mention something in
RFC 791, and are asked what that is. What does RFC 791 specify the standards for?
A. IP
B. TCP
C. UDP
D. ICMP
E. Ethernet
Answer: A

EXIN   EX0-106   EX0-106   EX0-106

NO.7 You are configuring your new IDS machine, where you have recently installed Snort. While you are
working with this machine, you wish to create some basic rules to test the ability to log traffic as you desire.
Which of the following Snort rules will log any tcp traffic from any host other than 172.16.40.50 using any
port, to any host in the 10.0.10.0/24 network using any port?
A. log udp ! 172.16.40.50/32 any -> 10.0.10.0/24 any
B. log tcp ! 172.16.40.50/32 any -> 10.0.10.0/24 any
C. log udp ! 172.16.40.50/32 any <> 10.0.10.0/24 any
D. log tcp ! 172.16.40.50/32 any <> 10.0.10.0/24 any
E. log tcp ! 172.16.40.50/32 any <- 10.0.10.0/24 any
Answer: B

EXIN   EX0-106   EX0-106   EX0-106

NO.8 In order to perform promiscuous mode captures using the Wireshark capture tool on a Windows Server
2003 machine, what must first be installed?
A. IPv4 stack
B. IPv6 stack
C. WinPcap
D. Nothing, it will capture by default
E. At least two network adapters
Answer: C

EXIN   EX0-106 examen   EX0-106 examen

NO.9 You are considering your options for a new firewall deployment. At which three layers of the OSI
model does a stateful packet filtering firewall operate?
A. Presentation
B. Data Link
C. Network
D. Application
E. Transport
Answer: BCE

EXIN examen   certification EX0-106   certification EX0-106   EX0-106 examen   certification EX0-106

NO.10 You are configuring a new IDS, running Snort, in your network. To better configure Snort, you are
studying the configuration file. Which four of the following are the primary parts of the Snort configuration
file?
A. Postprocessors
B. Variables
C. Preprocessors
D. Output Plug-ins
E. Rulesets
Answer: BCDE

certification EXIN   EX0-106 examen   EX0-106 examen   EX0-106 examen   EX0-106

NO.11 If you wish to create a new rule in ISA Server 2006 so that all file attachments with an .exe extension
that come through the firewall are dropped, what would you select in the Toolbox to create this rule?
A. Content Type
B. User Group
C. Destination Set
D. Protocol Set
E. Extension Type
Answer: A

EXIN examen   EX0-106 examen   EX0-106 examen

NO.12 You have recently taken over the security of a mid-sized network. You are reviewing the current
configuration of the IPTables firewall, and notice the following rule:
ipchains -A input -p TCP -d 0.0.0.0/0 12345 -j DENY
What is the function of this rule?
A. This rule for the output chain states that all incoming packets from any host to port 12345 are to be
denied.
B. This rule for the input chain states that all incoming packets from any host to port 12345 are to be
denied.
C. This rule for the input chain states that any TCP traffic from any address destined for any IP address
and to port 12345 is to be denied.
D. This rule for the output chain states that any TCP traffic from any address destined for any IP address
and to port 12345 is to be denied.
E. This rule for the input chain states that all TCP packets inbound from any network destined to any
network is to be denied for ports 1, 2, 3, 4, and 5.
Answer: C

certification EXIN   certification EX0-106   certification EX0-106   certification EX0-106   EX0-106

NO.13 You have just installed a new Intrusion Detection System in your network. You are concerned that there
are functions this system will not be able to perform. What is a reason an IDS cannot manage hardware
failures?
A. The IDS can only manage RAID 5 failures.
B. The IDS cannot be programmed to receive SNMP alert messages.
C. The IDS cannot be programmed to receive SNMP trap messages.
D. The IDS cannot be programmed to respond to hardware failures.
E. The IDS can only inform you that an event happened.
Answer: E

EXIN   certification EX0-106   EX0-106

NO.14 You are planning on implementing a token-based authentication system in your network. The network
currently is spread out over four floors of your building. There are plans to add three branch offices.
During your research you are analyzing the different types of systems. Which of the following are the two
common systems token-based authentication uses?
A. Challenge/Response
B. Random-code
C. Time-based
D. Challenge/Handshake
E. Password-Synch
Answer: AC

certification EXIN   EX0-106 examen   EX0-106

NO.15 For the new Snort rules you are building, it will be required to have Snort examine inside the content of
the packet. Which keyword is used to tell Snort to ignore a defined number of bytes before looking inside
the packet for a content match?
A. Depth
B. Offset
C. Nocase
D. Flow_Control
E. Classtype
Answer: B

EXIN   EX0-106 examen   EX0-106 examen   certification EX0-106   EX0-106 examen

NO.16 At a policy meeting you have been given the task of creating the firewall policy. What are the two basic
positions you can take when creating the policy?
A. To deny all traffic and permit only that which is required.
B. To permit only IP traffic and filter TCP traffic
C. To permit only TCP traffic and filter IP traffic
D. To permit all traffic and deny that which is required.
E. To include your internal IP address as blocked from incoming to prevent spoofing.
Answer: AD

certification EXIN   EX0-106 examen   EX0-106   EX0-106 examen

NO.17 When performing wireless network traffic analysis, what is the type and subtype for an 802.11
authentication packet?
A. Type AA Subtype AAAA
B. Type 00 Subtype 1011
C. Type 0A Subtype 0A0A
D. Type 11 Subtype 0000
E. Type A0 Subtype A1A0
Answer: B

EXIN examen   EX0-106 examen   EX0-106   EX0-106

NO.18 If you capture an 802.11 frame, and the ToDS bit is set to zero and the FromDS bit is set to zero, what
type of WLAN is this frame a part of?
A. Mesh
B. Broadcast
C. Infrastructure
D. Hierarchical
E. Ad Hoc
Answer: E

certification EXIN   certification EX0-106   EX0-106 examen   EX0-106   EX0-106

NO.19 You have configured Snort to run on your SuSe Linux machine, and you are currently making the
configuration changes to your MySQL database. What is the result of running the following command at
the mysql prompt?
source /usr/share/doc/packages/snort/schemas/create_mysql;
A. This command tells MySQL to connect to the /usr directory when source files are required for Snort
rules.
B. This command tells MySQL that the source files for Snort are located in the /usr directory.
C. This command tells MySQL where to place the Snort capture files in the database.
D. This command tells MySQL to populate the database using the fields provided by Snort.
E. This command tells MySQL where to find the source data for connecting to Snort.
Answer: D

EXIN examen   EX0-106   EX0-106   certification EX0-106

NO.20 You are configuring a Cisco Router, and are creating Access Control Lists as part of the security of the
network. When creating Wildcard Masks, which of the following rules apply?
A. If the wildcard mask bit is a 1, then do not check the corresponding bit of the IP address for a match.
B. If the wildcard mask bit is a 0, then do not check the corresponding bit of the IP address for a match.
C. If the wildcard mask bit is a 1, then do check the corresponding bit of the IP address for a match.
D. If the wildcard mask bit is a 0, then do check the corresponding bit of the IP address for a match.
E. To create a Wildcard Mask, always take the inverse of the Subnet Mask.
Answer: AD

EXIN examen   certification EX0-106   certification EX0-106   EX0-106   certification EX0-106   certification EX0-106

NO.21 You have been given the task of building the new wireless networks for your office, and you need to
verify that your equipment will not interfere with other wireless equipment frequencies. What wireless
standard allows for up to 11 Mbps transmission rates and operates in the 2.4GHz range?
A. 802.11b
B. 802.11e
C. 802.11a
D. 802.11i
E. 802.11g
Answer: A

EXIN   EX0-106 examen   EX0-106   certification EX0-106

NO.22 During your review of the logs of your Cisco router, you see the following line. What is the meaning of
this line?
%SYS-5-CONFIG_I: Configured from console by vty1 (172.16.10.1)
A. A normal, but noteworthy event
B. An informative message
C. A warning condition has occurred
D. A debugging message
E. An error condition has occurred
Answer: A

EXIN examen   EX0-106   EX0-106   EX0-106   EX0-106

NO.23 During a training presentation, that you are delivering, you are asked how wireless networks function,
compared to the OSI Model. What two layers of the OSI Model are addressed by the 802.11 standards?
A. Physical
B. Data Link
C. Network
D. Transport
E. Session
Answer: AB

certification EXIN   EX0-106 examen   EX0-106

NO.24 You are working on your companys IPTables Firewall; you wish to create a rule to address traffic using
ports 1024 through 2048. Which of the following would you use during the creation of your rule?
A. p:1024 P:2048
B. P:1024 p2048
C. p=1024-2048
D. 1024-2048
E. 1024:2048
Answer: E

EXIN examen   EX0-106   certification EX0-106   EX0-106 examen   EX0-106

NO.25 The exhibit represents a simple routed network. Node 7 is a Windows 2000 Professional machine that
establishes a TCP communication with Node 10, a Windows 2003 Server. The routers are Cisco 2500
series running IOS 11.2.
While working at Node 10, you run a packet capture. Packets received by Node 10, and sent from Node 7
will reveal which of the following combination of source IP and source Physical addresses:
A. Source IP address 10.0.10.115, Source Physical address for Node 7
B. Source IP address 50.0.50.1, Source Physical address for Node 7
C. Source IP address for Router D's Int E0, Source Physical address for Node 7
D. Source IP address 10.0.10.115, Source Physical address Router D's Int E0
E. Source IP addresses for both Nodes 7 and Router D's Int E0, Source Physical address for both Nodes
7 and Router D's Int E0.
Answer: D

EXIN   EX0-106   EX0-106

NO.26 In the image, there are two nodes communicating directly, without an access point. In the packet on
the right side of the image, the Address 1 field is blank. If this packet is going to the other computer, what
is the value that must be filled in this blank address field?
A. 2345
B. 1234
C. ABCD
D. <null>
E. ABCD-1234
Answer: B

EXIN   EX0-106   EX0-106 examen   EX0-106

NO.27 Your network traffic has increased substantially over the last year, and you are looking into your
caching options for frequently visited websites. What are the two types of caching that ISA Server 2006
supports?
A. Reverse caching
B. Forward caching
C. Inverse caching
D. Recursive caching
E. Real-time caching
Answer: AB

EXIN   EX0-106   EX0-106   EX0-106   EX0-106   EX0-106

NO.28 The CEO of your company has just issued a statement that the network must be more secure right
away. You have discussed several options with the Chief Security Officer and the Chief Technology Officer.
The results of your discussion are to implement IPSec. What are the two prime functions of IPSec that
you can let the CEO know will be addressed with the implementation?
A. Ensure data corruptibility
B. Ensure data integrity
C. Ensure data availability
D. Ensure data security
E. Ensure data deliverability
Answer: BD

EXIN   EX0-106   EX0-106   EX0-106   EX0-106   certification EX0-106

NO.29 You are configuring the rules on your firewall, and need to take into consideration that some clients in
the network are using automatic addressing. What is the IP address range reserved for internal use for
APIPA in Microsoft networks?
A. 169.254.0.0 /4
B. 169.254.0.0 /16
C. 169.254.0.0 /8
D. 169.254.0.0 /0
E. 168.255.0.0 /16
Answer: B

certification EXIN   EX0-106   EX0-106   EX0-106 examen   EX0-106 examen

NO.30 There are several options available to you for your new wireless networking technologies, and you are
examining how different systems function. What transmission system uses short bursts combined
together as a channel?
A. Frequency Hopping Spread Spectrum (FHSS)
B. Direct Sequence Spread Spectrum (DSSS)
C. Lamar Anthell Transmission (LAT)
D. Digital Band Hopping (DBH)
E. Digital Channel Hopping (DCH)
Answer: A

EXIN examen   EX0-106   EX0-106   EX0-106   EX0-106

L'importance de la position de Certificat EXIN EX0-106 dans l'industrie IT est bien claire pour tout le monde, mais c'est pas facile à obtenir ce Certificat. Il y a beaucoup de Q&As qui manquent une haute précision des réponses. Cependant, Pass4Test peut offrir des matériaux pratiques pour toutes les personnes à participer l'examen de Certification, et il peut aussi offrir à tout moment toutes les informations que vous auriez besoin à réussir l'examen EXIN EX0-106 par votre première fois.

Le dernier examen EXIN EX0-107 EX0-106 EX0-105 EX0-103 gratuit Télécharger

Pass4Test est un site particulier d'offrir la formation à propos de test Certification IT. C'est un bon choix pour vous aider à réussir le test EXIN EX0-107 EX0-106 EX0-105 EX0-103. Pass4Test offre toutes les informations et les documentations plus nouvelles qui peut vous donner plus de chances à réussir le test.

La solution offerte par Pass4Test comprenant un test simulation bien proche de test réel EXIN EX0-107 EX0-106 EX0-105 EX0-103 peut vous assurer à réussir 100% le test EXIN EX0-107 EX0-106 EX0-105 EX0-103. D'ailleur, le service de la mise à jour gratuite est aussi pour vous. Maintenant, vous pouvez télécharger le démo gratuit pour prendre un essai.

Pass4Test peut offrir la facilité aux candidats qui préparent le test EXIN EX0-107 EX0-106 EX0-105 EX0-103. Nombreux de candidats choisissent le Pass4Test à préparer le test et réussir finalement à la première fois. Les experts de Pass4Test sont expérimentés et spécialistes. Ils profitent leurs expériences riches et connaissances professionnelles à rechercher la Q&A EXIN EX0-107 EX0-106 EX0-105 EX0-103 selon le résumé de test réel EXIN EX0-107 EX0-106 EX0-105 EX0-103. Vous pouvez réussir le test à la première fois sans aucune doute.

Vous pouvez s'exercer en Internet avec le démo gratuit. Vous allez découvrir que la Q&A de Pass4Test est laquelle le plus complète. C'est ce que vous voulez.

Le test EXIN EX0-107 EX0-106 EX0-105 EX0-103 est populaire dans l'Industrie IT. Il y a beaucoup de professionnels IT veulent ce passport de IT. Votre vie et salaire sera améliorée avec ce Certificat. Vous aurez une meilleure assurance.

Code d'Examen: EX0-107

Nom d'Examen: EXIN (SCNP Strategic Infrastructure Security)

Questions et réponses: 233 Q&As

Code d'Examen: EX0-106

Nom d'Examen: EXIN (SCNS Tactical Perimeter Defense)

Questions et réponses: 232 Q&As

Code d'Examen: EX0-105

Nom d'Examen: EXIN (Information Security Foundation based on ISO/IEC 27002 )

Questions et réponses: 80 Q&As

Code d'Examen: EX0-103

Nom d'Examen: EXIN (ISO/IEC 20000 Foundation)

Questions et réponses: 116 Q&As

Vous pouvez télécharger tout d'abord une partie de Q&A Certification EXIN EX0-107 EX0-106 EX0-105 EX0-103 pour tester si Pass4Test est vraiment professionnel. Nous pouvons vous aider à réussir 100% le test EXIN EX0-107 EX0-106 EX0-105 EX0-103. Si malheureusement, vous ratez le test, votre argent sera 100% rendu.

EX0-107 Démo gratuit à télécharger: http://www.pass4test.fr/EX0-107.html

NO.1 In the past it was, at times, difficult to locate current information on security vulnerabilities. What is the
name of the security communitys effort to create a comprehensive database of multiple vulnerabilities and
security tools?
A. Common Vulnerabilities and Exploits
B. Cataloged Venerations and Exposures
C. Common Vulnerabilities and Exposures
D. Cataloged Vulnerabilities and Exposures
E. Cataloged Vulnerabilities and Exploits
Answer: C

EXIN   EX0-107 examen   EX0-107 examen   EX0-107   EX0-107

NO.2 When using the 3DES encryption ( C = EK1[DK2[EK1[P]]] ) , what is the function of C?
A. C is the text before encryption
B. C is the first encryption key
C. C is the second encryption key
D. C is the decryption key
E. C is the text after encryption
Answer: E

EXIN   EX0-107   certification EX0-107   EX0-107

NO.3 You are aware of the significance and security risk that Social Engineering plays on your company. Of
the following Scenarios, select those that, just as described, represent potentially dangerous Social
Engineering:
A. A writer from a local college newspapers calls and speaks to a network administrator. On the call the
writer requests an interview about the current trends in technology and offers to invite the administrator to
speak at a seminar.
B. An anonymous caller calls and wishes to speak with the receptionist. On the call the caller asks the
receptionist the normal business hours that the organization is open to the public.
C. An anonymous caller calls and wishes to speak with the purchaser of IT hardware and software. On the
call the caller lists several new products that the purchaser may be interested in evaluating. The caller
asks for a time to come and visit to demonstrate the new products.
D. An email, sent by the Vice President of Sales and Marketing, is received by the Help Desk asking to
reset the password of the VP of Sales and Marketing.
E. An email is received by the Chief Security Officer (CSO) about a possible upgrade coming from the ISP
to a different brand of router. The CSO is asked for the current network's configuration data and the
emailer discusses the method, plan, and expected dates for the rollover to the new equipment.
Answer: DE

EXIN   EX0-107   certification EX0-107   EX0-107 examen   EX0-107

NO.4 If you encrypt or decrypt files and folders located on a remote computer that has been enabled for
remote encryption; the data that is transmitted over the network by this process is not encrypted. In order
to keep data encrypted as it is transmitted over the network, which of the following must you do?
A. You must implement EFS.
B. You must implement B2 security for Windows.
C. You must use IPSec.
D. You must use a recovery agent.
E. You must transmit the entire folder, not individual files.
Answer: C

certification EXIN   EX0-107   EX0-107   EX0-107 examen   certification EX0-107   EX0-107 examen

NO.5 You have just become the senior security professional in your office. After you have taken a complete
inventory of the network and resources, you begin to work on planning for a successful security
implementation in the network. You are aware of the many tools provided for securing Windows 2003
machines in your network. What is the function of Secedit.exe?
A. This tool is used to set the NTFS security permissions on objects in the domain.
B. This tool is used to create an initial security database for the domain.
C. This tool is used to analyze a large number of computers in a domain-based infrastructure.
D. This tool provides an analysis of the local system NTFS security.
E. This tool provides a single point of management where security options can be applied to a local
computer or can be imported to a GPO.
Answer: C

EXIN   EX0-107   certification EX0-107

NO.6 What type of cipher is used by an algorithm that encrypts data one bit at a time?
A. 64-bit encryption Cipher
B. Block Cipher
C. Stream Cipher
D. Diffuse Cipher
E. Split Cipher
Answer: C

EXIN   EX0-107   EX0-107 examen   EX0-107

NO.7 In order for your newly written security policy to have any weight, it must be implemented. Which of
the following are the three components of a successful Security Policy Implementation in an organization?
A. Policy Monitoring
B. Policy Design
C. Policy Committee
D. Policy Enforcement
E. Policy Documentation
Answer: ABD

EXIN examen   certification EX0-107   certification EX0-107

NO.8 During the configuration of your Linux system, you are working with the available drives in the
computer. What syntax defines the First (Primary) IDE hard disk drive?
A. /dev/sda
B. /dev/fda
C. /dev/hd1
D. /dev/hda
E. /dev/fd1
Answer: D

EXIN   EX0-107 examen   EX0-107   EX0-107   certification EX0-107   certification EX0-107

NO.9 In the process of public key cryptography, which of the following is true?
A. Only the public key is used to encrypt and decrypt
B. Only the private key can encrypt and only the public key can decrypt
C. Only the public key can encrypt and only the private key can decrypt
D. The private key is used to encrypt and decrypt
E. If the public key encrypts, then only the private key can decrypt
Answer: E

certification EXIN   certification EX0-107   certification EX0-107   EX0-107 examen

NO.10 Which of the following are symmetric encryption algorithms?
A. MD5
B. RSA
C. Diffie-Hellman
D. 3DES
E. AES
Answer: DE

EXIN   EX0-107   EX0-107   EX0-107 examen

NO.11 Recently, you have seen an increase in intrusion attempts and in network traffic. You decide to use
Snort to run a packet capture and analyze the traffic that is present. Looking at the example, what type of
traffic did Snort capture in this log file?
A. NetBus Scan
B. Trojan Scan
C. Ping Sweep
D. Port Scan
E. Ping Sweep
Answer: D

EXIN   EX0-107   EX0-107   EX0-107 examen

NO.12 You are discussing the design and infrastructure of the Internet with several colleagues when a
disagreement begins over the actual function of the NAP in the Internets design. What is the function of a
NAP in the physical structure of the Internet?
A. The NAP provides for a layered connection system of ISPs connecting to the backbone.
B. The NAP provides the actual connection point between a local user and the Internet.
C. The NAP provides the physical network with communication channels for the Internet and voice/data
applications.
D. The NAP provides a national interconnection of systems, called peering centers, to the NSPs.
E. The NAP provides for a connection point between an ISP and the backbone of the Internet.
Answer: E

EXIN   EX0-107   EX0-107   EX0-107 examen   EX0-107   EX0-107

NO.13 During the review of the security logs you notice some unusual traffic. It seems that a user has
connected to your Web site ten times in the last week, and each time has visited every single page on the
site. You are concerned this may be leading up to some sort of attack. What is this user most likely getting
ready to do?
A. Mirror the entire web site.
B. Download entire DNS entries.
C. Scan all ports on a web server.
D. Perform a Distributed Denial of Service attack through the Web server.
E. Allow users to log on to the Internet without an ISP.
Answer: A

EXIN examen   EX0-107   EX0-107   EX0-107 examen

NO.14 During a one week investigation into the security of your network you work on identifying the
information that is leaked to the Internet, either directly or indirectly. One thing you decide to evaluate is
the information stored in the Whois lookup of your organizational website. Of the following, what pieces of
information can be identified via this method?
A. Registrar
B. Mailing Address
C. Contact Name
D. Record Update
E. Network Addresses (Private)
Answer: ABCD

certification EXIN   EX0-107   EX0-107   EX0-107 examen   EX0-107

NO.15 Recently, you have seen an increase in intrusion attempts and in network traffic. You decide to use
Snort to run a packet capture and analyze the traffic that is present. Looking at the example, what type of
traffic did Snort capture in this log file?
A. Windows 2000 Ping Request
B. Windows NT 4.0 Ping Request
C. Linux Ping Request
D. Linux Ping Response
E. Windows NT 4.0 Ping Response
Answer: B

certification EXIN   EX0-107   certification EX0-107   EX0-107 examen   certification EX0-107

NO.16 You are working on the authentication systems in your network, and are concerned with your legacy
systems. In Windows NT 4.0, before Service Pack 4 (SP4), there were only two supported methods of
authentication. What were those two methods?
A. NetBIOS
B. LM
C. NTLM
D. NTLMv2
E. Kerberos
Answer: BC

EXIN   certification EX0-107   EX0-107   EX0-107 examen   EX0-107

NO.17 To maintain the security of your network you routinely run several checks of the network and
computers. Often you use the built-in tools, such as netstat. If you run the following command: netstat -e
which of the following will be the result?
A. Displays all connections and listening ports
B. Displays Ethernet statistics
C. Displays addresses and port numbers in numerical form
D. Shows connections for the protocol specified
E. Displays per-protocol statistics
Answer: B

certification EXIN   EX0-107   EX0-107 examen

NO.18 As per the guidelines in the ISO Security Policy standard, what is the purpose of the section on
Business Continuity Planning?
A. The objectives of this section are to maintain appropriate protection of corporate assets and to ensure
that information assets receive an appropriate level of protection.
B. The objectives of this section are to provide management direction and support for information security.
C. The objectives of this section are to counteract interruptions to business activities and to critical
business processes from the effects of major failures or disasters.
D. The objectives of this section are to avoid breaches of any criminal or civil law, statutory, regulatory or
contractual obligations and of any security requirements, and to ensure compliance of systems with
organizational security policies and standards.
E. The objectives of this section are to control access to information, to prevent unauthorized access to
information systems, to ensure the protection of networked services, and to prevent unauthorized
computer access.
Answer: C

EXIN examen   certification EX0-107   certification EX0-107   EX0-107

NO.19 You are configuring the lines that control access to exported objects on your server running NFS. If
you have a directory called /Tech and you wish to export this directory to network 192.168.20.0/24,
allowing root access, and the permissions of read and write, which of the following lines will accomplish
this?
A. (RW) no_root_squash /Tech 192.168.20.0/24
B. /Tech 192.168.20.0/24 (rw) no_root_squash
C. (RW) no_root_squash 192.168.20.0/24 /Tech
D. (RW)no_root_squash:/Tech 192.168.20.0/24
E. /Tech 192.168.20.0/24(rw) no_root_squash
Answer: E

EXIN examen   EX0-107   EX0-107 examen

NO.20 You have become the lead security professional for a mid-sized organization. You are currently
studying DNS issues, and configuration options. You come across the concepts of DNS Spoofing, and
investigate more. What is DNS Spoofing?
A. DNS Spoofing is when the DNS client submits a false DNS request to the DNS server, and the DNS
server responds with correct data.
B. DNS Spoofing is the DNS client submits a DNS request to the DNS server using a bogus IP address,
and the DNS server responds to the incorrect host.
C. DNS Spoofing is when a DNS Server responds to an unauthorized DNS client, providing that client with
name resolution.
D. DNS Spoofing is when a DNS client is forced to make a DNS query to an imposter DNS server, which
send the client to an imposter resource.
E. DNS spoofing is when a DNS server provides name resolution to clients that are located in a different
IP subnet than the server itself.
Answer: D

EXIN examen   EX0-107   certification EX0-107

NO.21 Often times attackers will run scans against the network to identify different network and operating
systems, and resources that are available. If an attacker runs scans on the network, and you are logging
the connections, which of the following represent the legitimate combination of packets that will be sent
between the attacker and target?
A. Attacker PSH-FIN Scan, Target RST-FIN Response
B. Attacker ACK Scan, Target NULL Response
C. Attacker NULL Scan, Target RST Response
D. Attacker SYN Scan, Target NULL Response
E. Attacker FIN Scan, Target RST Response
Answer: CE

EXIN   EX0-107   EX0-107   EX0-107   EX0-107   EX0-107 examen

NO.22 What is the name of the informational page that is relevant to a particular command in Linux?
A. Readme Page
B. Lnx_nfo Page
C. Man Page
D. X_Win Page
E. Cmd_Doc Page
Answer: C

EXIN   EX0-107 examen   EX0-107 examen

NO.23 As per the guidelines in the ISO Security Policy standard, what is the purpose of the section on
Physical and Environmental Security?
A. The objectives of this section are to avoid breaches of any criminal or civil law, statutory, regulatory or
contractual obligations and of any security requirements, and to ensure compliance of systems with
organizational security policies and standards.
B. The objectives of this section are to prevent unauthorized access, damage and interference to
business premises and information; to prevent loss, damage or compromise of assets and interruption to
business activities; to prevent compromise or theft of information and information processing facilities.
C. The objectives of this section are to provide management direction and support for information
security.
D. The objectives of this section are to maintain appropriate protection of corporate assets and to ensure
that information assets receive an appropriate level of protection.
E. The objectives of this section are to control access to information, to prevent unauthorized access to
information systems, to ensure the protection of networked services, and to prevent unauthorized
computer access.
Answer: B

EXIN   EX0-107   EX0-107   certification EX0-107   EX0-107 examen

NO.24 You have just downloaded a new file, called scnpfile.tar.gz. You are going to verify the file prior to
un-archiving the file. Which command do you need to type to un-compress the file, prior to un-archiving?
A. tar xvf scnpfile.tar.gz
B. tar -zxvf scnpfile.tar.gz
C. gunzip scnpfile.tar.gz
D. gunzip -xvf scnpfile.tar.gz
E. gunzip -zxvf scnpfile.tar.gz
Answer: C

EXIN   EX0-107 examen   certification EX0-107   EX0-107   certification EX0-107

NO.25 To increase the security of your network and systems, it has been decided that EFS will be
implemented in the appropriate situations. Two users are working on a common file, and often email this
file back and forth between each other. Is this a situation where the use of EFS will create effective
security, and why (or why not)?
A. No, the security will remain the same since both users will share the same key for encryption.
B. Yes, since the file will be using two keys for encryption the security will increase.
C. No, the security will remain the same since both users will share the same key for decryption.
D. Yes, since the file will be using two keys for decryption the security will increase.
E. No, EFS cannot be used for files that are shared between users.
Answer: E

EXIN   certification EX0-107   EX0-107   EX0-107

NO.26 On Monday, during a routine check of a users Windows workstation, you find the following program,
called regedit.bat on the users local hard drive:
Net localgroup administrators local /all
Start regedit.exe
Exit
What is this program capable of doing on this computer?
A. Nothing, the first line is coded wrong.
B. It will add the administrators to the local group
C. It will add the local user to all local groups
D. It will add the administrators to all local groups
E. It will add the local user to the administrators group
Answer: E

EXIN   certification EX0-107   EX0-107 examen   certification EX0-107   EX0-107

NO.27 What is a problem with symmetric key cryptography?
A. It is slower than asymmetric key cryptography
B. Secure distribution of the public key
C. There is a lack of encryption protocols that can use symmetric key cryptography
D. Secure distribution of a secret key
E. Symmetric key cryptography is reserved for the NSA
Answer: D

EXIN   EX0-107   EX0-107 examen

NO.28 Attackers have the ability to use programs that are able to reveal local passwords by placing some
kind of a pointer/cursor over the asterisks in a program's password field. The reason that such tools can
uncover passwords in some Operating Systems is because:
A. the passwords are simply masked with asterisks
B. the etc/passwd file is on a FAT32 partition
C. the passwords are decrypted on screen
D. the password text is stored in ASCII format
E. the etc/passwd file is on a FAT16 partition
Answer: A

EXIN   EX0-107   certification EX0-107

NO.29 You are configuring the permissions to a file, called file1, on your Linux file server. You wish to change
the permissions to remove the execute permission from the others and group. Which of the following
commands will complete this task?
A. umask x-og file1
B. umask og-x file1
C. chmod xog- file1
D. chmod x-og file1
E. chmod og-x file1
Answer: E

certification EXIN   EX0-107   certification EX0-107   EX0-107 examen   EX0-107 examen

NO.30 Recently, you have seen an increase in intrusion attempts and in network traffic. You decide to use
Snort to run a packet capture and analyze the traffic that is present. Looking at the example, what type of
traffic did Snort capture in this log file?
A. Windows 2000 Ping Request
B. Windows NT 4.0 Ping Request
C. Linux Ping Request
D. Linux Ping Response
E. Windows NT 4.0 Ping Response
Answer: B

certification EXIN   EX0-107   EX0-107   EX0-107 examen