Cisco 210-250 Online Practice Questions and Exam Preparation

Cisco 210-250 Online Questions & Answers

• Question 251:

  Which of the following access control models use security labels to make access decisions?

  A. Mandatory access control (MAC)
  B. Role-based access control (RBAC)
  C. Identity-based access control (IBAC)
  D. Discretionary access control (DAC)
  A. Mandatory access control (MAC)

• Question 252:

  DRAG DROP

  Match the NGFW requirement to its description.

  Select and Place:

  

  

• Question 253:

  Which option constitutes data loss for an analyst reviewing data from network sources?

  A. PNG... .data stores
  B. PMOCCMOC. .Z.User.Guide
  C. PK..1. .client.data...
  D. MS.Portal
  C. PK..1. .client.data...

• Question 254:

  Which protocol or diagnostic tool helps you determine how many hops away a network is and can be exploited by an attacker?

  A. SSH
  B. traceroute
  C. ping
  D. TCP
  B. traceroute

• Question 255:

  Which of the following is a type of vulnerability where an attacker can use or cause malformed data or unexpected data to abuse an application's logic, cause a DoS attack, or execute arbitrary code?

  A. Deserialization of untrusted data
  B. Serialization of untrusted data
  C. Deserialization of encrypted data
  D. Serialization of encrypted data
  A. Deserialization of untrusted data

• Question 256:

  What method is used by Cisco OpenDNS to help prevent attacks via iFrame?

  A. Cisco OpenDNS cannot do anything to prevent this type of attack.
  B. Cisco OpenDNS will run the requested web page in a sandbox environment.
  C. Cisco OpenDNS can deny access to known malicious web sites.
  D. Cisco OpenDNS will strip out malicious information from packets.
  C. Cisco OpenDNS can deny access to known malicious web sites.

• Question 257:

  What is the difference between spear phishing and whaling?

  A. There is no difference. Both are targeted phishing.
  B. Spear phishing focuses on voice services and whaling is primarily sent through SMS messages.
  C. Both are targeted phishing, but only whaling targets individuals in executive positions.
  D. Spear phishing involves email, and whaling involves DNS cache poisoning.
  C. Both are targeted phishing, but only whaling targets individuals in executive positions.

• Question 258:

  Which two best describe the difference between XSS and CSRF? (Choose two.)

  A. XSS exploits the user's trust in a particular web site.
  B. CSRF exploits the web site's trust in a user's browser.
  C. XSS exploits the web site's trust in a user's browser.
  D. CSRF exploits the user's trust in a particular web site.
  A. XSS exploits the user's trust in a particular web site.
  B. CSRF exploits the web site's trust in a user's browser.

• Question 259:

  How do watering hole attacks avoid detection by scanning services?

  A. by focusing the malware of its campaign so that it is only delivered to visitors from the IP address range of the target organization
  B. by compromising the web server of an innocent bystander, so that the malware attack cannot be attributed to servers owned by the attacker
  C. by compromising DHCP servers of home routers so that the users will be directed to the websites that are compromised by the attacker
  D. by delivering email only to valid email addresses that are targeted from a specific list so that the volume of traffic stays low
  A. by focusing the malware of its campaign so that it is only delivered to visitors from the IP address range of the target organization

• Question 260:

  Which of the following are reasons why an attacker might use VPN technology?

  A. Attackers cannot use VPN technologies without being detected.
  B. To exfiltrate data.
  C. To encrypt traffic between a compromised host and a command and control system.
  D. To evade detection.
  B. To exfiltrate data.
  C. To encrypt traffic between a compromised host and a command and control system.
  D. To evade detection.