Microsoft 98-367 Online Practice
Questions and Exam Preparation
98-367 Exam Details
Exam Code
:98-367
Exam Name
:Security Fundamentals
Certification
:Microsoft Certifications
Vendor
:Microsoft
Total Questions
:277 Q&As
Last Updated
:Jul 11, 2026
Microsoft 98-367 Online Questions &
Answers
Question 1:
You are volunteering at an organization that gets a brand new web server. To make the server more secure, you should add a second administrator account.
Select the correct answer if the underlined text does not make the statement correct. Select "No change is needed" if the underlined text makes the statement correct.
A. Disable unused services B. Enable LM authentication C. Enable NTLM authentication D. No change is needed.
A. Disable unused services
Question 2:
The purpose of User Account Control (UAC) is to:
A. Encrypt the user's account B. Limit the privileges of software C. Secure your data from corruption D. Facilitate Internet filtering
B. Limit the privileges of software
User Account Control (UAC) is a technology and security infrastructure introduced with Microsoft's Windows machines. It aims to improve the security of Microsoft Windows by limiting application software to standard user privileges until an administrator authorizes an increase or elevation. In this way, only applications trusted by the user may receive administrative privileges, and malware should be kept from compromising the operating system.
Question 3:
Which of the following is a technique used to attack an Ethernet wired or wireless network?
A. ARP poisoning B. DNS poisoning C. Mail bombing D. Keystroke logging
A. ARP poisoning
Address Resolution Protocol (ARP) spoofing, also known as ARP poisoning or ARP Poison Routing (APR), is a technique used to attack an Ethernet wired or wireless network. ARP spoofing may allow an attacker to sniff data frames on a local area network (LAN), modify the traffic, or stop the traffic altogether. The attack can only be used on networks that actually make use of ARP and not another method of address resolution. The principle of ARP spoofing is to send fake ARP messages to an Ethernet LAN. Generally, the aim is to associate the attacker's MAC address with the IP address of another node (such as the default gateway). Any traffic meant for that IP address would be mistakenly sent to the attacker instead. The attacker could then choose to forward the traffic to the actual default gateway (passive sniffing) or modify the data before forwarding it. ARP spoofing attacks can be run from a compromised host, or from an attacker's machine that is connected directly to the target Ethernet segment. Answer: C is incorrect. Mail bombing is an attack that is used to overwhelm mail servers and clients by sending a large number of unwanted e-mails. The aim of this type of attack is to completely fill the recipient's hard disk with immense, useless files, causing at best irritation, and at worst total computer failure. E-mail filtering and properly configuring email relay functionality on mail servers can be helpful for protection against this type of attack. Answer: B is incorrect. DNS poisoning is the process in which a DNS server may return an incorrect IP address, diverting traffic to another computer. Answer: D is incorrect. Keystroke logging is a method of logging and recording user keystrokes. It can be performed with software or hardware devices. Keystroke logging devices can record everything a person types using his keyboard, such as to measure employee's productivity on certain clerical tasks. These types of devices can also be used to get usernames, passwords, etc.
Question 4:
You create a new file in a folder that has inheritance enabled. By default, the new file:
A. Takes the permissions of the parent folder B. Does not take any permissions C. Takes the permissions of other folders in the same directory D. Takes the permissions of other files in the same directory
Coho Winery wants to increase their web presence and hires you to set up a new web server. Coho already has servers for their business and would like to avoid purchasing a new one. Which server is best to use as a web server, considering the security and performance concerns?
A. SQL Server B. File Server C. Domain Controller D. Application Server
C. Domain Controller
Question 6:
The purpose of Windows Server Update Services (WSUS) is to:
A. manage the deployment of patches to company servers B. provide alerts and reports on system vulnerabilities C. set permissions to the minimum level necessary for each function D. update licensing for Windows servers
A. manage the deployment of patches to company servers
Question 7:
This question requires that you evaluate the underlined text to determine if it is correct.
Malware is any kind of unwanted software that is installed without your consent.
Instructions: Review the underlined text. If it makes the statement correct, select "No change is needed". If the statement is incorrect, select the answer choice that makes the statement correct.
A. Trojans are B. Worms are C. Viruses are D. No change is needed
D. No change is needed
Question 8:
You want to standardize security throughout your network. You primarily use Microsoft operating systems for servers and workstations. What is the best way to have standardized security (i.e. same password policies, lockout policies, etc.) throughout the network on clients and servers?
A. Publish the desired policies to all employees directing them to implement according to policy. B. Configure each computer to adhere to the standard policies. C. When installing new workstations or servers, image a machine that has proper security settings and install the new machine with that image. D. Utilize Windows Security Templates for all computers.
D. Utilize Windows Security Templates for all computers.
Windows templates are a method for setting security policies in a template, then applying that template to multiple computers.
Answer: C is incorrect. This would only work for new computers and will not help you with existing computers on your network.
Answer: A is incorrect. Asking employees to implement security policies will usually result in an uneven application of the policies. Some employees will get them properly implemented, some won't. Answer: B is incorrect. While this would
work, it would be very labor intensive and is not the recommended method.
Question 9:
For each of the following statements, select Yes if the statement is true. Otherwise, select No. Each correct selection is worth one point.
Hot Area:
Question 10:
Which two are included in an enterprise antivirus program? (Choose two.)
A. Attack surface scanning B. On-demand scanning C. Packet scanning D. Scheduled scanning
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only Microsoft exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your 98-367 exam preparations
and Microsoft certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.