SCP SC0-471 Exam Practice Test Instant Access

Question 1

You have a series of new Windows Server 2003 systems, including 3 new web servers running IIS 6.0. You are concerned about the overall security of your servers, and are checking with Microsoft for any patches or updates that you might need to apply to your systems. Which of the following would you apply if you need to implement an update based on a critical Microsoft Security Bulletin?

ACritical Update

BSecurity Update

CFeature Pack

DUpdate Rollup

EMSB Update

Answer : B

Question 2

You are working on the authentication systems in your network, and are concerned with your legacy systems. In Windows NT 4.0, before Service Pack 4 (SP4), there were only two supported methods of authentication. What were those two methods?

ANetBIOS

BLM

CNTLM

DNTLMv2

EKerberos

Answer : B, C

Question 3

In your organization, the majority of employees use Microsoft Outlook Express as their email client. You are configuring these systems so that applications on the employee systems cannot send email, posing as the user of the system. Under the Security tab, which option will you select to achieve this goal?

ADo not allow other applications to send mail as me.

BDisable application mail delivery.

CPrompt me prior to application mail delivery.

DWarn me when other applications try to send mail as me.

EDo not allow applications that could potentially transmit a virus to send mail as me.

Answer : D

Question 4

You have become the lead security professional for a mid-sized organization. You are currently studying DNS issues, and configuration options. You come across the concepts of DNS Spoofing, and investigate more. What is DNS Spoofing?

ADNS Spoofing is when the DNS client submits a false DNS request to the DNS server, and the DNS server responds with correct data.

BDNS Spoofing is the DNS client submits a DNS request to the DNS server using a bogus IP address, and the DNS server responds to the incorrect host.

CDNS Spoofing is when a DNS Server responds to an unauthorized DNS client, providing that client with name resolution.

DDNS Spoofing is when a DNS client is forced to make a DNS query to an imposter DNS server, which send the client to an imposter resource.

EDNS spoofing is when a DNS server provides name resolution to clients that are located in a different IP subnet than the server itself.

Answer : D

Question 5

Which of the following is the name of the Active X authentication system Microsoft has included to prevent Active X controls from being altered or corrupted by attackers wanting to perform unwarranted operations?

ADriver Signing

BAuthenticode

CCertificate services

DNTLM

EKerberos

Answer : B

Question 6

If an attacker uses a program that sends thousands of email messages to every user of the network, some of them with over 50MB attachments. What are the possible consequences to the email server in the network?

AServer hard disk can fill to capacity

BClient hard disks can fill to capacity

CServer can completely crash

DNetwork bandwidth can be used up

EClients cannot receive new email messages

Answer : A, C

Question 7

You have recently hired an assistant to help you with managing the security of your network. You are currently running an all Windows Server 2003 environment, and are describing the issuesassociated with sharing folders. You describe different shared folder permissions. Which of the following describes the maximum abilities of the Read permission?

ADisplay folder names, filenames and data, and execute files

BRename files and folders, delete files and folders

CCreate folders, add files to folders, change or delete flies in folders

DRename files and folders, and execute files

EChange file permissions and take ownership of files

Answer : A

SCP SC0-471 Strategic Infrastructure Security Exam Practice Test