CCSP SelfStudy CCSP CSI: Exam Certification Guide, Second Edition [Electronic resources] نسخه متنی

What is the purpose of IP spoofing attacks?

1. To get packets past a firewall

2. To gain access to a network resource

3. To test router access lists

4. To inject data into a pre-existing communication channel between two systems

5. None of the above

What type of IP spoofing attack occurs if the attacker is not concerned with the responses from the target system?

1. Bidirectional

2. Blind

3. Tangential

4. Source

5. Derivational

What type of spoofing attack occurs when the attacker controls the routing tables to redirect the response packets back to his IP address?

1. Bidirectional

2. Blind

3. Tangential

4. Source

5. Derivational

In what mode must a network interface work to receive all packets on the physical network wire and pass those packets up to an application?

1. Sniffing

2. Locked

3. Unlocked

4. Sensing

5. Promiscuous

Which of the following protocols are susceptible to passive sniffers?

1. SNMP

2. SSH

3. HTTPS

4. Telnet

5. HTTP

What type of attack is an attacker executing when she connects to a system and tries various account names and common default passwords?

1. Deduction

2. Brute-force

3. Intuitive

4. Driven

For what purpose are man-in-the-middle attacks most commonly used?

1. To capture sensitive information

2. To hijack ongoing sessions

3. To deny service

4. To corrupt transmitted data

5. All of the above

Port redirection is a specific case of what general category of attack?

1. IP spoofing

2. Trust exploitation

3. Man-in-the-middle

4. Denial of service

5. None of the above

Which of the following can be used to execute a port redirection attack?

1. httptunnel

2. Ethereal

3. Netcat

4. strobe

5. Nmap

What is the most common means of propogating viruses and Trojan-horse applications?

1. E-mail

2. FTP

3. scp

4. The web

5. NetBIOS shares