A CGI application on the company's Web server has a bug written into it. This particular bug allows the application to write data into an area of memory that has not been properly allocated to the application. An attacker has created an application that takes advantage of this bug to obtain credit card information. Which of the following security threats is the attacker exploiting, and what can be done to solve the problem?
A. - Buffer overflow - Work with the Web developer to solve the problem
B. - SQL injection - Work with a database administrator to solve the problem
C. - Denial of service - Contact the organization that wrote the code for the Web server
D. - Man-in-the-middle attack - Contact the company auditor
Consider the following series of commands from a Linux system: iptables -A input -p icmp -s 0/0 璬 0/0 -j REJECT Which explanation best describes the impact of the resulting firewall ruleset?
A. Individuals on remote networks will no longer be able to use SSH to control internal network resources.
B. Internal hosts will not be able to ping each other using ICMP.
C. Stateful multi-layer inspection has been enabled.
D. Individuals on remote networks will not be able to use ping to troubleshoot connections.
You have implemented a version of the Kerberos protocol for your network. What service does Kerberos primarily offer?
A. Authentication
B. Encryption
C. Non-repudiation
D. Data integrity
Which of the following standards is used for digital certificates?
A. DES
B. Diffie-Hellman
C. X.509
D. RC5
At the beginning of an IPsec session, which activity occurs during the Internet Key Exchange (IKE)?
A. Determining the number of security associations
B. Negotiating the authentication method
C. Determining the network identification number
D. Negotiating the version of IP to be used
A security breach has occurred in which a third party was able to obtain and misuse legitimate authentication information. After investigation, you determined that the specific cause for the breach was that end users have been placing their passwords underneath their keyboards. Which step will best help you resolve this problem?
A. Discipline specific end users as object lessons to the rest of the staff and reset passwords on all systems immediately.
B. Change all passwords on the company servers immediately and inform end users that their passwords will be changing on a regular basis.
C. Set passwords to expire at specific intervals and establish mandatory continual training sessions.
D. Inform end users that their passwords will be changing on a regular basis and require more complex passwords.
You have determined that the company Web server has several vulnerabilities, including a buffer overflow that has resulted in an attack. The Web server uses PHP and has direct connections to an Oracle database server. It also uses many CGI scripts. Which of the following is the most effective way to respond to this attack?
A. Installing software updates for the Web server daemon
B. Using the POST method instead of the GET method for a Web form
C. Installing an intrusion detection service to monitor logins
D. Using the GET method instead of the POST method for a Web form
What is the primary use of hash (one-way) encryption in networking?
A. Signing files, for data integrity
B. Encrypting files, for data confidentiality
C. Key exchange, for user authentication
D. User authentication, for non-repudiation
Which of the following will best help you ensure a database server can withstand a recently discovered vulnerability?
A. Updating the company vulnerability scanner and conducting a new scan
B. Adding a buffer overflow rule to the intrusion detection system
C. Reconfiguring the firewall
D. Installing a system update
Which of the following is the most likely first step to enable a server to recover from a denial-of- service attack in which all hard disk data is lost?
A. Enable virtualization
B. Contact the backup service
C. Contact a disk recovery service
D. Rebuild your RAID 0 array
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CIW exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 1D0-571 exam preparations and CIW certification application, do not hesitate to visit our Vcedump.com to find your solutions here.