All GSEC Test Inside GIAC Questions

GIAC Security Essentials Questions and Answers

Question 65

Which of the following is NOT a recommended best practice for securing Terminal Services and Remote Desktop?

Options:

Require TLS authentication and data encryption whenever possible.

Make sure to allow all TCP 3389 traffic through the external firewall.

Group Policy should be used to lock down the virtual desktops of thin-client users.

Consider using IPSec or a VPN in addition to the RDP encryption if you are concerned about future RDP vulnerabilities.

Question 66

A folder D:\Files\Marketing has the following NTFS permissions:

• Administrators: Full Control

• Marketing: Change and Authenticated

• Users: Read

It has been shared on the server as "MARKETING", with the following share permissions:

• Full Control share permissions for the Marketing group

Which of the following effective permissions apply if a user from the Sales group accesses the \\FILESERVER\MARKETING shared folder?

Options:

No access

Full Control

Read

Change

Question 67

The Linux command to make the /etc/shadow file, already owned by root, readable only by root is which of the following?

Options:

chmod 444/etc/shadow

chown root: root/etc/shadow

chmod 400/etc/shadow

chown 400 /etc/shadow

Question 68

Which of the following TCP dump output lines indicates the first step in the TCP 3-way handshake?

Options:

07:09:43.368615 download.net 39904 > ftp.com.21: S

733381829:733381829(0) win 8760 (DF)

07:09:43.370302 ftp.com.21 > download.net.39904: S

1192930639:1192930639(0} ack 733381830 win 1024

1460> (DF)

09:09:22.346383 ftp.com.21 > download.net.39904: , rst 1 win

2440(DF)

07:09:43.370355 download.net.39904 > ftp.com.21: , ack 1 win

8760 (DF)

Winter Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

GIAC Security Essentials Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce