最新 [2025年03月20日]GIAC GSLC試験練習でテストの素晴らしい結果を出そう [Q222-Q246]

Share

最新 [2025年03月20日]GIAC GSLC試験練習でテストの素晴らしい結果を出そう

あなたのキャリアーを稼いで飛躍せよGIAC GSLC

質問 # 222
Which of the following statements about Digest authentication are true?
Each correct answer represents a complete solution. Choose two.

  • A. In Digest authentication, passwords are sent across a network as clear text, rather than as a has value.
  • B. Digest authentication is a more secure authentication method as compared to Basic authentication.
  • C. Digest authentication is used by wireless LANs, which follow the IEEE 802.11 standard.
  • D. In Digest authentication, passwords are sent across a network as a hash value, rather than as clear text.

正解:B、D


質問 # 223
You work as the Network Administrator for a company that does a large amount of defense contract business. A high level of security, particularly regarding sensitive documents, is required. Which of the following are the steps you should take to secure network printers?
Each correct answer represents a complete solution. Choose two.

  • A. Remove the printers from the network and do not allow remote printing.
  • B. Limit the size of print jobs on the printer.
  • C. Do not allow duplicate print jobs.
  • D. Ensure that the printers hard drive is scanned for spyware.
  • E. Secure all remote administrative protocols such as telnet.

正解:D、E


質問 # 224
You are the program manager for your organization. Management has asked that you determine when resources, such as leased equipment, are no longer needed so that you may release the resources to save time, money, and utilization of resources within your program. What program management process is management asking you to perform?

  • A. Resource control
  • B. Resource management
  • C. Contract administration
  • D. Procurement management

正解:A

解説:
Section: Volume A
Explanation/Reference:


質問 # 225
John works as a Website Administrator in ABC Inc. The users of the company always use Internet Explorer for Web browsing. One of the users opens the Privacy tab page in the Internet Options dialog box and configures the privacy settings for the Internet zone as displayed in the following images:


Which of the following statements regarding the configurations are true?
Each correct answer represents a complete solution. Choose all that apply.

  • A. Hotmail.com and Yahoo.com will not use cookies regardless of their privacy policy.
  • B. John has specifically allowed some websites to use cookies.
  • C. John has specifically blocked some websites from using cookies.
  • D. John has set a privacy policy for websites in the Internet zone.

正解:A、B、C、D


質問 # 226
Olive is the program manager for her organization. She has created a request for proposal for a large portion of her program. In this work to be procured she has set several requirements for the vendors to participate.
The chief among these requirements is a vendor must have at least four licensed electricians in his team. This requirement for four licensed electricians is an example of which one of the following terms?

  • A. Evaluation criteria
  • B. Scoring model
  • C. Vendor analysis requirements
  • D. Screening system

正解:D

解説:
Section: Volume A


質問 # 227
Rick works as the Network Administrator of a Windows 2000 network. The network consists of 30 domain controllers, 65 member servers, and 5000 workstations. All the computers on the network use Windows 2000 Advanced Server, Windows 2000 Server, and Windows 2000 Professional operating systems. The Windows
2000 Advanced Server computers are running the Cluster Service. The network uses TCP/IP as its only protocol. Once a week Rick works from home. But rest of the weekdays, he has to travel. Rick wants to be able to remotely administer each Windows 2000 server on his network with the following considerations:
* He must be able to establish a VPN connection to the Windows 2000 Server computers on the network from his home, so that the data remain encrypted and encapsulated during data transfer.
* While traveling , he must be able to connect to the network from a laptop computer via remote access connection, so that he can perform any task on the main Windows 2000 domain controller.
* While traveling, he must be able to edit the registry of the Windows 2000 Server computer.
* During the migration process to Windows 2000, he depleted all the financial resources for licensing.
Therefore, he must not be required to add additional licenses to the network.
Rick takes the following actions:
* He implements the VPN connection on the proper server, the laptop computer, and the home computer.
* He configures the VPN connection to use the IPSec protocol in Encapsulating Security Payload (ESP) Tunnel Mode.
* He implements Windows 2000 Terminal Services using the Remote Administration mode on the Windows
2000 servers.
* He installs and configures Routing and Remote Access properly.
Which of the following goals will be accomplished by these actions?
Each correct answer represents a complete solution. Choose all that apply.

  • A. He will not be required to add additional licenses to the network.
  • B. He will be able to establish a VPN connection to the Windows 2000 Server computers on the network from his home, so that the data remains encrypted and encapsulated during data transfer.
  • C. While traveling, he will be able to edit the registry of the Windows 2000 Server computer.
  • D. While traveling, he will be able to connect to the network from a laptop computer via remote access connection so that he can perform any task on the main Windows 2000 domain controller.

正解:A、B、C、D

解説:
Section: Volume D


質問 # 228
A user has opened a Web site that automatically starts downloading malicious code onto his computer.
What should he do to prevent this?
Each correct answer represents a complete solution. Choose two.

  • A. Implement File Integrity Auditing
  • B. Disable Active Scripting
  • C. Disable ActiveX Controls
  • D. Configure Security Logs

正解:B、C


質問 # 229
You are concerned about rogue wireless access points being connected to your network. What is the best way to detect and prevent these?

  • A. Network anti-virus software
  • B. Network anti-spyware software
  • C. Site surveys
  • D. Protocol analyzers

正解:C


質問 # 230
Your company is covered under a liability insurance policy, which provides various liability coverage for information security risks, including any physical damage of assets, hacking attacks, etc. Which of the following risk management techniques is your company using?

  • A. Risk mitigation
  • B. Risk acceptance
  • C. Risk transfer
  • D. Risk avoidance

正解:C


質問 # 231
Which of the following intrusion detection systems (IDS) monitors network traffic and compares it against an established baseline?

  • A. Signature-based
  • B. Anomaly-based
  • C. File-based
  • D. Network-based

正解:B


質問 # 232
Which of the following programs can be used to detect stealth port scans performed by a malicious hacker?
Each correct answer represents a complete solution. Choose all that apply.

  • A. nmap
  • B. portsentry
  • C. libnids
  • D. scanlogd

正解:B、C、D


質問 # 233
You are the project manager for an important, high-profile project in your matrix structure. The project team members must work with a new technology that most of the team does not have experience with. What should you do in this scenario?

  • A. Consult with the project customer to determine if the scope can be trimmed to meet the current competency level.
  • B. Consult with the project team to determine what type of training is needed.
  • C. Consult with the project sponsor to procure additional, experienced project team members.
  • D. Consult with functional management in the matrix structure to determine if there are more suitable project team members.

正解:B

解説:
Section: Volume D


質問 # 234
John visits an online shop that stores the IDs and prices of the items to buy in a cookie.
After selecting the items that he wants to buy, the attacker changes the price of the item to 1.
Original cookie values:
ItemID1=2
ItemPrice1=900
ItemID2=1
ItemPrice2=200
Modified cookie values:
ItemID1=2
ItemPrice1=1
ItemID2=1
ItemPrice2=1
Now, he clicks the Buy button, and the prices are sent to the server that calculates the total price.
Which of the following hacking techniques is John performing?

  • A. Man-in-the-middle attack
  • B. Cookie poisoning
  • C. Computer-based social engineering
  • D. Cross site scripting

正解:B


質問 # 235
David works as a Network Administrator for NetTech Inc. The company has a Windows Server 2008 domain-based network. The network has a print server with two hard disks as basic disks, and 120 Windows XP Professional client computers. Users complain that printing is slow. To improve the printing performance, David wants to create a dynamic volume. Which of the following dynamic volumes will he create to enhance the performance?

  • A. Spanned volume
  • B. RAID-5 volume
  • C. Mirrored volume
  • D. Striped volume

正解:D


質問 # 236
Rick works as the Network Administrator of a Windows 2000 network. The network consists of 30 domain controllers, 65 member servers, and 5000 workstations. All the computers on the network use Windows
2000 Advanced Server, Windows 2000 Server, and Windows 2000 Professional operating systems. The Windows 2000 Advanced Server computers are running the Cluster Service. The network uses TCP/IP as its only protocol. Once a week Rick works from home. But rest of the weekdays, he has to travel. Rick wants to be able to remotely administer each Windows 2000 server on his network with the following considerations:
* He must be able to establish a VPN connection to the Windows 2000 Server computers on the network from his home, so that the data remain encrypted and encapsulated during data transfer.
* While traveling , he must be able to connect to the network from a laptop computer via remote access connection, so that he can perform any task on the main Windows 2000 domain controller.
* While traveling, he must be able to edit the registry of the Windows 2000 Server computer.
* During the migration process to Windows 2000, he depleted all the financial resources for licensing.
Therefore, he must not be required to add additional licenses to the network.
Rick takes the following actions:
* He implements the VPN connection on the proper server, the laptop computer, and the home computer.
* He configures the VPN connection to use the IPSec protocol in Encapsulating Security Payload (ESP) Tunnel Mode.
* He implements Windows 2000 Terminal Services using the Remote Administration mode on the Windows 2000 servers.
* He installs and configures Routing and Remote Access properly.
Which of the following goals will be accomplished by these actions?
Each correct answer represents a complete solution. Choose all that apply.

  • A. He will not be required to add additional licenses to the network.
  • B. He will be able to establish a VPN connection to the Windows 2000 Server computers on the network from his home, so that the data remains encrypted and encapsulated during data transfer.
  • C. While traveling, he will be able to edit the registry of the Windows 2000 Server computer.
  • D. While traveling, he will be able to connect to the network from a laptop computer via remote access connection so that he can perform any task on the main Windows 2000 domain controller.

正解:A、B、C、D


質問 # 237
You work as a Network Administrator for Marioxnet Inc. You have the responsibility of handling two routers with BGP protocol for the enterprise's network. One of the two routers gets flooded with an unexpected number of data packets, while the other router starves with no packets reaching it. Which of the following attacks can be a potential cause of this?

  • A. Spoofing
  • B. Denial-of-Service
  • C. Packet manipulation
  • D. Eavesdropping

正解:B


質問 # 238
SIMULATION
Fill in the blank with the appropriate term.
____________is a configuration of a network card that makes the card pass all traffic it receives to the central processing unit rather than just packets addressed to it.

正解:

解説:
Promiscuous mode


質問 # 239
The promiscuous mode is a configuration of a network card that makes the card pass all traffic it receives to the central processing unit rather than just packets addressed to it. Which of the following tools works by placing the host system network card into the promiscuous mode?

  • A. THC-Scan
  • B. Sniffer
  • C. NetStumbler
  • D. Snort

正解:B


質問 # 240
You work as a Network Administrator for Net World International. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. All client computers on the network run Windows XP Professional.
You configure a public key infrastructure (PKI) on the network. You configure a root CA and a subordinate CA on the network. For security reasons, you want to take the root CA offline. You are required to configure the CA servers to support for certificate revocation. Choose the steps you will require to accomplish the task.

正解:

解説:


質問 # 241
Janet is the project manager of the NHQ Project for her company. Janet is nearly done leading the project and there have been no cost or schedule overruns in the development of the new software for her company. The project team has been completing their work on time and there is still $75,000 left in the project budget. Janet decides to have the project team implement some extra features to the project scope to use all of the $75,000 in the budget even though the customer didn't specifically ask for the added features. This scenario is an example of which one of the following?

  • A. Value added change
  • B. Gold plating
  • C. Scope creep
  • D. Change management

正解:B


質問 # 242
Which of the following is the method of hiding data within another media type such as graphic or document?

  • A. Spoofing
  • B. Packet sniffing
  • C. Steganography
  • D. Cryptanalysis

正解:C


質問 # 243
Which of the following tools is an automated tool that is used to implement SQL injections and to retrieve data from Web server databases?

  • A. ADMutate
  • B. Fragroute
  • C. Absinthe
  • D. Stick

正解:C


質問 # 244
A project team member has just identified a new project risk. The risk event is determined to have significant impact but a low probability in the project. Should the risk event happen it'll cause the project to be delayed by three weeks, which will cause new risk in the project. What should the project manager do with the risk event?

  • A. Add the identified risk to the low-level risk watchlist.
  • B. Add the identified risk to the issues log.
  • C. Add the identified risk to the risk register.
  • D. Add the identified risk to a quality control management control chart.

正解:C

解説:
Section: Volume B


質問 # 245
You are a project manager of a construction project. You are documenting project purchasing decisions, specifying the approach, and identifying potential sellers. You are in which of the following processes?

  • A. Administer Procurements
  • B. Close Procurements
  • C. Plan Procurements
  • D. Conduct Procurements

正解:C

解説:
Section: Volume A


質問 # 246
......

正真正銘のベスト資料GSLCオンライン練習試験:https://www.jpntest.com/shiken/GSLC-mondaishu

365日更新し続けるGSLC最高の問題集はこちら:https://drive.google.com/open?id=1gpJfbCekRUffKhBWJX28DhlL8T-Chrja

弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

オンラインサポート時間:( UTC+9 ) 9:00-24:00
月曜日から土曜日まで

サポート:現在連絡