A security policy will take the form of a document or a collection of documents, depending on the situation or usage. It can become a point of reference in case a violation occurs that results in dismissal or other penalty. Which of the following is NOT true for a good security policy?

• A.It must be approved by court of law after verifications of the stated terms and facts
• B.It must clearly define the areas of responsibilities of the users, administrators and management
• C.It must be implemented through system administration procedures, publishing of acceptable use guide lines or other appropriate methods
• D.It must be enforceable with security tools where appropriate and with sanctions where actual prevention is not technically feasible

Comment: *

Name: *

Email: *

Verification: *

They type of attack that prevents the authorized users to access networks, systems, or applications by exhausting the network resources and sending illegal requests to an application is known as:

• A.Session Hijacking attack
• B.SQL injection attack
• C.Man in the Middle attack
• D.Denial of Service attack

Comment: *

Name: *

Email: *

Verification: *

Incident handling and response steps help you to detect, identify, respond and manage an incident. Which of the following helps in recognizing and separating the infected hosts from the information system?

• A.Sending mails to only group of friends
• B.Browsing particular government websites
• C.Inspecting the process running on the system
• D.Configuring firewall to default settings

Comment: *

Name: *

Email: *

Verification: *

Eric works as a system administrator at ABC organization and previously granted several users with access privileges to the organizations systems with unlimited permissions. These privileged users could prospectively misuse their rights unintentionally, maliciously, or could be deceived by attackers that could trick them to perform malicious activities.
Which of the following guidelines would help incident handlers eradicate insider at tacks by privileged users?

• A.Do not enable default administrative accounts to ensure accountability
• B.Do not control the access to administrators and privileged users
• C.Do not allow administrators to use unique accounts during the installation process
• D.Do not use encryption methods to prevent administrators and privileged users from accessing backup tapes and sensitive information

Comment: *

Name: *

Email: *

Verification: *

What command does a Digital Forensic Examiner use to display the list of all open ports and the associated IP
addresses on a victim computer to identify the established connections on it:

• A."ifconfig" command
• B."netstat -an" command
• C."dd" command
• D."arp" command

Comment: *

Name: *

Email: *

Verification: *