Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 1031:

  Which type of attack affects the availability of the target?

  A. SQL injection
  B. cross-site scripting
  C. social engineering
  D. denial of service
  D. denial of service

• Question 1032:

  Which of the following is true about root certificates?

  A. A root certificate contains information about the user.
  B. A root certificate contains information about the network security device
  C. A root certificate contains the public key of the CA.
  D. Root certificates never expire
  C. A root certificate contains the public key of the CA.

• Question 1033:

  In what two ways does the pass-the-hash attack allow an attacker to gain access to workstations, servers, and key services? (Choose two.)

  A. Servers use the passed hash directly rather than computing a local version of the same password to make password hashing more efficient.
  B. These attacks allow attackers to take advantage of other systems' horizontal acknowledgment of user permissions without requiring re-authentication.
  C. Many systems will accept a hash of the user password allowing the captured hash to be used for authentication.
  D. All systems store passwords as hashes which can be interchanged among systems regardless of hashing algorithm.
  E. All hash technologies have been reversed with publicly available rainbow tables for all hashes, giving attackers an easy ability to reverse any hash.
  B. These attacks allow attackers to take advantage of other systems' horizontal acknowledgment of user permissions without requiring re-authentication.
  C. Many systems will accept a hash of the user password allowing the captured hash to be used for authentication.

• Question 1034:

  Which of the following are properties of a secure digital identity? (Select all that apply.)

  A. Unique
  B. Nondescriptive
  C. Encrypted
  D. Nominative
  A. Unique
  B. Nondescriptive

• Question 1035:

  Why is a transparent firewall considered a "bump in the wire" or "stealth firewall"?

  A. It is a bump on the wire because it filters packets at the OSI physical layer.
  B. Using separate IP subnets for inside and outside interfaces, packets are inspected quietly.
  C. A transparent firewall is considered a Layer 2 firewall and has no routing capabilities.
  D. Transparent firewalls work in "stealth mode" by using network taps.
  E. Because transparent firewalls can route between inside and outside interfaces, packets are "bumped" between them by using special firewall rule-sets.
  C. A transparent firewall is considered a Layer 2 firewall and has no routing capabilities.

• Question 1036:

  What do attackers use to launch an attack on a location without the attack coming directly from the attacker's location?

  A. spear phishing
  B. malware that is controlled through CnC
  C. direct SYN flood attack
  D. ping of death
  B. malware that is controlled through CnC

• Question 1037:

  Microsoft has operating systems that are targeted for which two kinds of devices? (Choose two.)

  A. servers
  B. network routers
  C. network switches
  D. personal printers
  E. personal computers
  A. servers
  E. personal computers

• Question 1038:

  According to RFC 1035, which transport protocol is recommended for use with DNS queries?

  A. Transmission Control Protocol
  B. Reliable Data Protocol
  C. Hypertext Transfer Protocol
  D. User Datagram Protocol
  D. User Datagram Protocol

• Question 1039:

  How would you copy a file that is called evidence from the local system to a Linux host at 192.168.1.33?

  A. scp evidence [email protected]:evidence
  B. scp [email protected]:evidence evidence
  C. ssh evidence [email protected]:evidence
  D. ssh [email protected]:evidence evidence
  A. scp evidence [email protected]:evidence

• Question 1040:

  Which two network devices are used to separate collision domains? (Choose two.)

  A. switch
  B. hub
  C. bridge
  D. repeater
  E. router
  A. switch
  E. router