CCSP SelfStudy CCSP CSI: Exam Certification Guide, Second Edition [Electronic resources] نسخه متنی

b,e

e

b

b

d,e

b

c

e

c

d

a,d

b,d

The flow of network management traffic that follows the same path as normal data is referred to as a(n) ___-band traffic flow.

In

Of the three remote-access protocols discussed in this chapter, which is the least secure and why?

Telnet. Data, including usernames and passwords, is sent in clear text.

What is the primary goal of SAFE in reference to network management?

The secure management of all devices and hosts within a network.

Give the reason for using tunneling protocols with management protocols.

The main reason for tunneling a management protocol is to secure a normally insecure protocol. An example would be the tunneling of TFTP data. Without tunneling, this data is sent in clear text and is vulnerable to various attacks.

Additionally, the remote management of a device that is outside of your management domain benefits from the use of a tunneling protocol such as IPSec.

Out-of-band management normally uses a(n) ________ network for management traffic.

Parallel

Name two usage categories that network management protocols provide?

Network management protocols provide the following usage categories:

• Remote access

• Reporting and logging

• Network monitoring and control

• File management

• Time synchronization

A network administrator should always be aware of the level of ________ a management protocol provides.

Security

What ports does SNMP use and what is the function of each port?

UDP 161
Agents listen on this port

UDP 162
Used for trap reporting to the manager

SSH is a secure shell program and provides protection from ___________, ___________, and _________________ attacks.

DNS, IP spoofing, IP source-routing

What public-key cryptosystem does SSL use during the initial exchange or handshake process?

RSA

What version of SNMP should you use if you want to ensure that SNMP traffic is encrypted?

SNMP version 3

______ management protocols should always be used in preference to ________ protocols.

Secure, insecure

NTP version 3 supports cryptographic authentication between peers. Why is this useful?

Without this authentication, it is possible for an attacker to send bogus NTP data and, hence, affect time-sensitive services such as digital certificates, which can lead to a potential DoS.

SSH can use what ciphers?

RC2, RC4, IDEA, DES, and 3DES.

If you cannot secure management data for whatever reason, you should always be aware of the potential for what?

Data interception and falsification