EC-COUNCIL 312-38 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-38 Online Questions & Answers

• Question 111:

  Which type of wireless network attack is characterized by an attacker using a high gain amplifier from a nearby location to drown out the legitimate access point signal?

  A. Rogue access point attack
  B. Ad Hoc Connection attack
  C. Jamming signal attack
  D. Unauthorized association
  C. Jamming signal attack

• Question 112:

  If a network is at risk resulting from misconfiguration performed by unskilled and/or unqualified individuals, what type of threat is this?

  A. External Threats
  B. Unstructured Threats
  C. Structured Threats
  D. Internal Threats
  B. Unstructured Threats

• Question 113:

  The IP addresses reserved for experimental purposes belong to which of the following classes?

  A. Class E
  B. Class C
  C. Class A
  D. Class D
  A. Class E

• Question 114:

  Which of the following is a distance vector routing protocols? Each correct answer represents a complete solution. Choose all that apply.

  A. OSPF
  B. IGRP
  C. IS-IS
  D. REST IN PEACE
  B. IGRP
  D. REST IN PEACE

• Question 115:

  Fill in the blank with the appropriate term. The is used for routing voice conversations over the Internet. It is also known by other names such as IP Telephony, Broadband Telephony, etc.

  VoIP

  Explanation/Reference:

  The Voice over Internet Protocol (VoIP) is used for routing of voice conversation over the Internet. The VoIP is also known by other names such as IP Telephony, Broadband Telephony, etc. Analog signals are used in telephones in which the sound is received as electrical pulsation, which is amplified and then carried to a small loudspeaker attached to the other phone, and the call receiver can hear the sound. In VoIP, analog signals are changed into digital signals, which are transmitted on the Internet. VoIP is used to make free phone calls using an Internet connection, and this can be done by using any VoIP software available in the market. There are various modes for making phone calls through the Internet. Some of the important modes are as follows: Through Analog Telephone Adapter (ATA) In this mode, the traditional phone is attached to the computer through AT

  A. ATA receives analog signals from the phone and then converts these signals to digital signals. The digital signals are then received by the Internet Service Providers (ISP), and the system is ready to make calls over VoIP.

  Through IP Phone

  IP Phones look exactly like the traditional phones, but they differ in that they have RJ-45 Ethernet connectors, instead of RJ-11 phone connectors, for connecting to the computers.

  Computer To Computer

  This is the easiest way to use VoIP. For this, we need software, microphone, speakers, sound card and an Internet connection through a cable or a DSL modem.

  Soft Phones

  Soft phone is a software application that can be loaded onto a computer and used anywhere in the broadband connectivity area.

• Question 116:

  Which of the following is a drawback of traditional perimeter security?

  A. Traditional firewalls are static in nature
  B. Traditional VPNs follow identity centric instead of trust based network centric approach
  C. Traditional perimeter security is identity-centric
  D. Traditional firewalls are dynamic in nature
  A. Traditional firewalls are static in nature

• Question 117:

  Adam, a malicious hacker, has just succeeded in stealing a secure cookie via a XSS attack. He is able to replay the cookie even while the session is valid on the server. Which of the following is the most likely reason of this cause?

  A. Encryption is performed at the network layer (layer 1 encryption).
  B. Encryption is performed at the application layer (single encryption key).
  C. No encryption is applied.
  D. Two way encryption is applied.
  B. Encryption is performed at the application layer (single encryption key).

  ---

  Explanation/Reference:

  Single key encryption uses a single word or phrase as the key. The same key is used by the sender to encrypt and the receiver to decrypt. Sender and receiver initially need to have a secure way of passing the key from one to the other. With TLS or SSL this would not be possible. Symmetric encryption is a type of encryption that uses a single key to encrypt and decrypt data. Symmetric encryption algorithms are faster than public key encryption. Therefore, it is commonly used when a message sender needs to encrypt a large amount of data. Data Encryption Standard (DES) uses the symmetric encryption key algorithm to encrypt data.

• Question 118:

  Lyle is the IT director for a medium-sized food service supply company in Nebraska. Lyle's company employs over 300 workers, half of which use computers. He recently came back from a security training seminar on logical security. He now wants to ensure his company is as secure as possible. Lyle has many network nodes and workstation nodes across the network. He does not have much time for implementing a network-wide solution. He is primarily concerned about preventing any external attacks on the network by using a solution that can drop packets if they are found to be malicious. Lyle also wants this solution to be easy to implement and be network-wide. What type of solution would be best for Lyle?

  A. He should choose a HIPS solution, as this is best suited to his needs.
  B. Lyle would be best suited if he chose a NIPS implementation.
  C. A NEPT implementation would be the best choice.
  D. To better serve the security needs of his company, Lyle should use a HIDS system.
  B. Lyle would be best suited if he chose a NIPS implementation.

• Question 119:

  Choose the correct order of steps to analyze the attack surface.

  A. Identify the indicators of exposure->visualize the attack surface->simulate the attack->reduce the attack surface
  B. Visualize the attack surface->simulate the attack->identify the indicators of exposure->reduce the attack surface
  C. Identify the indicators of exposure->simulate the attack->visualize the attack surface->reduce the attack surface
  D. Visualize the attack surface->identify the indicators of exposure->simulate the attack->reduce the attack surface
  D. Visualize the attack surface->identify the indicators of exposure->simulate the attack->reduce the attack surface

• Question 120:

  Fill in the blank with the appropriate term.

  A is a physical or logical subnetwork that contains and exposes external services of an organization to a larger network.

  demilitarized zone

  Explanation/Reference:

  A demilitarized zone (DMZ) is a physical or logical subnetwork that contains and exposes external services of an organization to a larger network, usually the Internet. The purpose of a DMZ is to add an additional layer of security to an organization's Local Area Network (LAN); an external attacker only has access to equipment in the DMZ, rather than the whole of the network. Hosts in the DMZ have limited connectivity to specific hosts in the internal network, though communication with other hosts in the DMZ and to the external network is allowed. This allows hosts in the DMZ to provide services to both the internal and external networks, while an intervening firewall controls the traffic between the DMZ servers and the internal network clients. In a DMZ configuration, most computers on the LAN run behind a firewall connected to a public network such as the Internet.