EC-COUNCIL 312-50V7 Online Practice Questions and Exam Preparation

EC-COUNCIL 312-50V7 Online Questions & Answers

• Question 431:

  What is the outcome of the comm"nc -l -p 2222 | nc 10.1.0.43 1234"?

  A. Netcat will listen on the 10.1.0.43 interface for 1234 seconds on port 2222.
  B. Netcat will listen on port 2222 and output anything received to a remote connection on 10.1.0.43 port 1234.
  C. Netcat will listen for a connection from 10.1.0.43 on port 1234 and output anything received to port 2222.
  D. Netcat will listen on port 2222 and then output anything received to local interface 10.1.0.43.
  B. Netcat will listen on port 2222 and output anything received to a remote connection on 10.1.0.43 port 1234.

• Question 432:

  Bob has set up three web servers on Windows Server 2008 IIS 7.0. Bob has followed all the recommendations for securing the operating system and IIS. These servers are going to run numerous e-commerce websites that are projected to bring in thousands of dollars a day. Bob is still concerned about the security of these servers because of the potential for financial loss. Bob has asked his company's firewall administrator to set the firewall to inspect all incoming traffic on ports 80 and 443 to ensure that no malicious data is getting into the network.

  Why will this not be possible?

  A. Firewalls cannot inspect traffic coming through port 443
  B. Firewalls can only inspect outbound traffic
  C. Firewalls cannot inspect traffic at all, they can only block or allow certain ports
  D. Firewalls cannot inspect traffic coming through port 80
  C. Firewalls cannot inspect traffic at all, they can only block or allow certain ports

• Question 433:

  Which of the following scanning tools is specifically designed to find potential exploits in Microsoft Windows products?

  A. Microsoft Security Baseline Analyzer
  B. Retina
  C. Core Impact
  D. Microsoft Baseline Security Analyzer
  D. Microsoft Baseline Security Analyzer

• Question 434:

  SOAP services use which technology to format information?

  A. SATA
  B. PCI
  C. XML
  D. ISDN
  C. XML

• Question 435:

  How can rainbow tables be defeated?

  A. Password salting
  B. Use of non-dictionary words
  C. All uppercase character passwords
  D. Lockout accounts under brute force password cracking attempts
  A. Password salting

• Question 436:

  A company has publicly hosted web applications and an internal Intranet protected by a firewall. Which technique will help protect against enumeration?

  A. Reject all invalid email received via SMTP.
  B. Allow full DNS zone transfers.
  C. Remove A records for internal hosts.
  D. Enable null session pipes.
  C. Remove A records for internal hosts.

• Question 437:

  What information should an IT system analysis provide to the risk assessor?

  A. Management buy-in
  B. Threat statement
  C. Security architecture
  D. Impact analysis
  C. Security architecture

• Question 438:

  At a Windows Server command prompt, which command could be used to list the running services?

  A. Sc query type= running
  B. Sc query \\servername
  C. Sc query
  D. Sc config
  C. Sc query

• Question 439:

  Which definition below best describes a covert channel?

  A. A server program using a port that is not well known
  B. Making use of a protocol in a way it was not intended to be used
  C. It is the multiplexing taking place on a communication link
  D. It is one of the weak channels used by WEP that makes it insecure
  B. Making use of a protocol in a way it was not intended to be used

• Question 440:

  You establish a new Web browser connection to Google. Since a 3-way handshake is required for any TCP connection, the following actions will take place.

  

  Which of the following packets represent completion of the 3-way handshake?

  A. 4th packet
  B. 3rdpacket
  C. 6th packet
  D. 5th packet
  D. 5th packet