EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V7 Online Questions & Answers

• Question 131:

  David is a security administrator working in Boston. David has been asked by the office's manager to block all POP3 traffic at the firewall because he believes employees are spending too much time reading personal email. How can David block POP3 at the firewall?

  A. David can block port 125 at the firewall.
  B. David can block all EHLO requests that originate from inside the office.
  C. David can stop POP3 traffic by blocking all HELO requests that originate from inside the office.
  D. David can block port 110 to block all POP3 traffic.
  D. David can block port 110 to block all POP3 traffic.

• Question 132:

  Vulnerability scanners are automated tools that are used to identify vulnerabilities and misconfigurations of hosts. They also provide information regarding mitigating discovered vulnerabilities.

  

  Which of the following statements is incorrect?

  A. Vulnerability scanners attempt to identify vulnerabilities in the hosts scanned.
  B. Vulnerability scanners can help identify out-of-date software versions, missing patches, or system upgrades
  C. They can validate compliance with or deviations from the organization's security policy
  D. Vulnerability scanners can identify weakness and automatically fix and patch the vulnerabilities without user intervention
  D. Vulnerability scanners can identify weakness and automatically fix and patch the vulnerabilities without user intervention

• Question 133:

  A Network Administrator was recently promoted to Chief Security Officer at a local university. One of employee's new responsibilities is to manage the implementation of an RFID card access system to a new server room on campus. The server room will house student enrollment information that is securely backed up to an off-site location.

  During a meeting with an outside consultant, the Chief Security Officer explains that he is concerned that the existing security controls have not been designed properly. Currently, the Network Administrator is responsible for approving and issuing RFID card access to the server room, as well as reviewing the electronic access logs on a weekly basis.

  Which of the following is an issue with the situation?

  A. Segregation of duties
  B. Undue influence
  C. Lack of experience
  D. Inadequate disaster recovery plan
  A. Segregation of duties

• Question 134:

  What is the most secure way to mitigate the theft of corporate information from a laptop that was left in a hotel room?

  A. Set a BIOS password.
  B. Encrypt the data on the hard drive.
  C. Use a strong logon password to the operating system.
  D. Back up everything on the laptop and store the backup in a safe place.
  B. Encrypt the data on the hard drive.

• Question 135:

  You want to know whether a packet filter is in front of 192.168.1.10. Pings to 192.168.1.10 don't get answered. A basic nmap scan of 192.168.1.10 seems to hang without returning any information. What should you do next?

  A. Run NULL TCP hping2 against 192.168.1.10
  B. Run nmap XMAS scan against 192.168.1.10
  C. The firewall is blocking all the scans to 192.168.1.10
  D. Use NetScan Tools Pro to conduct the scan
  A. Run NULL TCP hping2 against 192.168.1.10

• Question 136:

  You are the security administrator of Jaco Banking Systems located in Boston. You are setting up e- banking website (http://www.ejacobank.com) authentication system. Instead of issuing banking customer with a single password, you give them a printed list of 100 unique passwords. Each time the customer needs to log into the e-banking system website, the customer enters the next password on the list. If someone sees them type the password using shoulder surfing, MiTM or keyloggers, then no damage is done because the password will not be accepted a second time. Once the list of 100 passwords is almost finished, the system automatically sends out a new password list by encrypted e- mail to the customer.

  You are confident that this security implementation will protect the customer from password abuse.

  Two months later, a group of hackers called "HackJihad" found a way to access the one-time password list issued to customers of Jaco Banking Systems. The hackers set up a fake website (http://www.e- jacobank.com) and used phishing attacks to direct ignorant customers to it. The fake website asked users for their e- banking username and password, and the next unused entry from their one-time password sheet. The hackers collected 200 customer's username/passwords this way. They transferred money from the customer's bank account to various offshore accounts. Your decision of password policy implementation has cost the bank with USD 925,000 to hackers. You immediately shut down the e-banking website while figuring out the next best security solution

  What effective security solution will you recommend in this case?

  A. Implement Biometrics based password authentication system. Record the customers face image to the authentication database
  B. Configure your firewall to block logon attempts of more than three wrong tries
  C. Enable a complex password policy of 20 characters and ask the user to change the password immediately after they logon and do not store password histories
  D. Implement RSA SecureID based authentication system
  D. Implement RSA SecureID based authentication system

• Question 137:

  John the Ripper is a technical assessment tool used to test the weakness of which of the following?

  A. Usernames
  B. File permissions
  C. Firewall rulesets
  D. Passwords
  D. Passwords

• Question 138:

  Which of the following is a hashing algorithm?

  A. MD5
  B. PGP
  C. DES
  D. ROT13
  A. MD5

• Question 139:

  Bob is going to perform an active session hijack against Brownies Inc. He has found a target that allows session oriented connections (Telnet) and performs the sequence prediction on the target operating system. He manages to find an

  active session due to the high level of traffic on the network.

  What is Bob supposed to do next?

  A. Take over the session
  B. Reverse sequence prediction
  C. Guess the sequence numbers
  D. Take one of the parties offline
  C. Guess the sequence numbers

• Question 140:

  What type of OS fingerprinting technique sends specially crafted packets to the remote OS and analyzes the received response?

  A. Passive
  B. Reflective
  C. Active
  D. Distributive
  C. Active