GSEC Exam Questions Tutorials

GIAC Security Essentials Questions and Answers

Question 101

Which of the following items are examples of preventive physical controls? Each correct answer represents a complete solution. Choose three.

Biometric access controls

Closed-circuit television monitors

Fire extinguishers

Locks and keys

Question 102

Which of the following statements would be seen in a Disaster Recovery Plan?

"Instructions for notification of the media can be found in Appendix A"

"The Emergency Response Plan should be executed in the case of any physical disaster listed on page 3."

"The target for restoration of business operations is 72 hours from the declaration of disaster."

"After arriving at the alternate site, utilize the server build checklist to rebuild all servers on the server rebuild list."

Question 103

Which layer of the TCP/IP Protocol Stack Is responsible for port numbers?

Network

Transport

Internet

Application

Question 104

Why would someone use port 80 for deployment of unauthorized services?

Google will detect the service listing on port 80 and post a link, so that people all over the world will surf to the rogue service.

If someone were to randomly browse to the rogue port 80 service they could be compromised.

This is a technique commonly used to perform a denial of service on the local web server.

HTTP traffic is usually allowed outbound to port 80 through the firewall in most environments.