GAQM CEH-001 Online Practice Questions and Exam Preparation

GAQM CEH-001 Online Questions & Answers

• Question 631:

  Why would you consider sending an email to an address that you know does not exist within the company you are performing a Penetration Test for?

  A. To determine who is the holder of the root account
  B. To perform a DoS
  C. To create needless SPAM
  D. To illicit a response back that will reveal information about email servers and how they treat undeliverable mail
  E. To test for virus protection
  D. To illicit a response back that will reveal information about email servers and how they treat undeliverable mail

• Question 632:

  While examining audit logs, you discover that people are able to telnet into the SMTP server on port 25. You would like to block this, though you do not see any evidence of an attack or other wrong doing. However, you are concerned about affecting the normal functionality of the email server. From the following options choose how best you can achieve this objective?

  A. Block port 25 at the firewall.
  B. Shut off the SMTP service on the server.
  C. Force all connections to use a username and password.
  D. Switch from Windows Exchange to UNIX Sendmail.
  E. None of the above.
  E. None of the above.

• Question 633:

  Which of the following processes evaluates the adherence of an organization to its stated security policy?

  A. Vulnerability assessment
  B. Penetration testing
  C. Risk assessment
  D. Security auditing
  D. Security auditing

• Question 634:

  A hacker was able to sniff packets on a company's wireless network. The following information was discovereD.

  The Key 10110010 01001011

  The Cyphertext 01100101 01011010

  Using the Exlcusive OR, what was the original message?

  A. 00101000 11101110
  B. 11010111 00010001
  C. 00001101 10100100
  D. 11110010 01011011
  B. 11010111 00010001

• Question 635:

  Vulnerability scanners are automated tools that are used to identify vulnerabilities and misconfigurations of hosts. They also provide information regarding mitigating discovered vulnerabilities.

  

  Which of the following statements is incorrect?

  A. Vulnerability scanners attempt to identify vulnerabilities in the hosts scanned.
  B. Vulnerability scanners can help identify out-of-date software versions, missing patches, or system upgrades
  C. They can validate compliance with or deviations from the organization's security policy
  D. Vulnerability scanners can identify weakness and automatically fix and patch the vulnerabilities without user intervention
  D. Vulnerability scanners can identify weakness and automatically fix and patch the vulnerabilities without user intervention

• Question 636:

  What is the expected result of the following exploit?

  

  A. Opens up a telnet listener that requires no username or password.
  B. Create a FTP server with write permissions enabled.
  C. Creates a share called "sasfile" on the target system.
  D. Creates an account with a user name of Anonymous and a password of [email protected].
  A. Opens up a telnet listener that requires no username or password.

• Question 637:

  You wish to determine the operating system and type of web server being used. At the same time you wish to arouse no suspicion within the target organization. While some of the methods listed below work, which holds the least risk of detection?

  A. Make some phone calls and attempt to retrieve the information using social engineering.
  B. Use nmap in paranoid mode and scan the web server.
  C. Telnet to the web server and issue commands to illicit a response.
  D. Use the netcraft web site look for the target organization's web site.
  D. Use the netcraft web site look for the target organization's web site.

• Question 638:

  A hacker searches in Google for filetype:pcf to find Cisco VPN config files. Those files may contain connectivity passwords that can be decoded with which of the following?

  A. Cupp
  B. Nessus
  C. Cain and Abel
  D. John The Ripper Pro
  C. Cain and Abel

• Question 639:

  Which of the following is the best way an attacker can passively learn about technologies used in an organization?

  A. By sending web bugs to key personnel
  B. By webcrawling the organization web site
  C. By searching regional newspapers and job databases for skill sets technology hires need to possess in the organization
  D. By performing a port scan on the organization's web site
  C. By searching regional newspapers and job databases for skill sets technology hires need to possess in the organization

• Question 640:

  In an attempt to secure his 802.11b wireless network, Ulf decides to use a strategic antenna positioning. He places the antenna for the access points near the center of the building. For those access points near the outer edge of the building he uses semi- directional antennas that face towards the building's center. There is a large parking lot and outlying filed surrounding the building that extends out half a mile around the building. Ulf figures that with this and his placement of antennas, his wireless network will be safe from attack.

  Which of the following statements is true?

  A. With the 300 feet limit of a wireless signal, Ulf's network is safe.
  B. Wireless signals can be detected from miles away, Ulf's network is not safe.
  C. Ulf's network will be safe but only of he doesn't switch to 802.11a.
  D. Ulf's network will not be safe until he also enables WEP.
  D. Ulf's network will not be safe until he also enables WEP.