Regarding the description of the vulnerability scanning, which of the following is wrong?

• A.Vulnerability scanning is a technology based on network remote monitoring of target network or host security performance vulnerability, which can be used for simulated attack experiments and security audits.
• B.Vulnerability scanning can be done based onthe results of ping scan results and port scan
• C.Vulnerability scanning is used to detect whether there is a vulnerability in the target host system.
  Generally, the target host is scanned for specific vulnerabilities.
• D.Vulnerability scanning is a passive preventive measure that can effectively avoid hacker attacks.

Comment: *

Name: *

Email: *

Verification: *

ASPF (Application Specific Packet Filter) is a kind of packet filtering basedon the application layer, it checks the application layer protocol information and monitor the connection state of the application layer protocol.
ASPF by Server Map table achieves a special security mechanism. Which statement about ASPF and Server map table are correct? (Multiple choice)

• A.ASPF through server map table realize dynamic to allow multi-channel protocol data to pass
• B.ASPF dynamically create and delete filtering rules
• C.Quintupleserver-map entries achieve a similar functionality with session table
• D.ASPF monitors the packets in the process of communication

Comment: *

Name: *

Email: *

Verification: *

Which of the following description about the group management for VGMP is wrong?

• A.master/slave devices exchange packets to understand each other through the heartbeat line, and backup the related commands and status information
• B.Periodically sends Hello packets between VGMP of master/slave firewall
• C.Master/slave status change of VRRP backup group needs to notify its VGMP management group
• D.Theinterface type and number of two firewalls heartbeat port may be different, as long as they can communicate with each other

Comment: *

Name: *

Email: *

Verification: *

The European TCSEC Code is dividedinto two modules, Function and Evaluation, which are mainly used in the miitary, government and commercial fields

• A.False
• B.True

Comment: *

Name: *

Email: *

Verification: *

In the classification of the information security level protection system, which of the following levels defines the damage to the social order and the public interest if the information system is destroyed? (Multiple choice)

• A.Second level System audit protection level
• B.Fourth level Structured protection
• C.Third level Security mark protection
• D.First level User-independent protection level

Comment: *

Name: *

Email: *

Verification: *