Vce 312-50v12 Questions Latest

Page: 42 / 42

Question 168

Bob is doing a password assessment for one of his clients. Bob suspects that security policies are not in place. He also suspects that weak passwords are probably the norm throughout the company he is evaluating. Bob is familiar with password weaknesses and key loggers.

Which of the following options best represents the means that Bob can adopt to retrieve passwords from his clients hosts and servers?

Options:

Hardware, Software, and Sniffing.

Hardware and Software Keyloggers.

Passwords are always best obtained using Hardware key loggers.

Software only, they are the most effective.

Question 169

You are a Network Security Officer. You have two machines. The first machine (192.168.0.99) has snort installed, and the second machine (192.168.0.150) has kiwi syslog installed. You perform a syn scan in your network, and you notice that kiwi syslog is not receiving the alert message from snort. You decide to run wireshark in the snort machine to check if the messages are going to the kiwi syslog machine. What Wireshark filter will show the connections from the snort machine to kiwi syslog machine?

Options:

tcp.srcport= = 514 && ip.src= = 192.168.0.99

tcp.srcport= = 514 && ip.src= = 192.168.150

tcp.dstport= = 514 && ip.dst= = 192.168.0.99

tcp.dstport= = 514 && ip.dst= = 192.168.0.150

Question 170

The “Gray-box testing” methodology enforces what kind of restriction?

Options:

Only the external operation of a system is accessible to the tester.

The internal operation of a system in only partly accessible to the tester.

Only the internal operation of a system is known to the tester.

The internal operation of a system is completely known to the tester.

Question 171

What ports should be blocked on the firewall to prevent NetBIOS traffic from not coming through the firewall if your network is comprised of Windows NT, 2000, and XP?