Home > Articles

  • Print
  • + Share This
This chapter is from the book

Test Your Skills

Multiple Choice Questions

  1. Which of the following scanners provides information regarding the target system’s registry?

    1. Cerberus
    2. NetCop
    3. NetBrute
    4. Active Ports
  2. What is the minimum level of security (using the chapter’s 1–10 scale) that any organizational network should have?

    1. 1
    2. 3
    3. 5
    4. 7
  3. Which of the following is the most fundamental aspect of security?

    1. Shutting down unused services
    2. Implementing an IDS
    3. Patching the operating system
    4. Conducting periodic security audits
  4. What is the best device, method, or technique to help you be aware of attacks in progress?

    1. Server logs
    2. Firewall logs
    3. IDS
    4. NAT
  5. VPNs should be used for what type of communications?

    1. All external connections to your network
    2. All external connections that might transmit sensitive data
    3. All internal communications
    4. All internal communications that might transmit sensitive data
  6. What is not a primary reason for documenting your security activities and audits?

    1. To prove due diligence in case of litigation
    2. To provide information in case of any external or internal audit
    3. To get new personnel up to speed on the current state of security
    4. To demonstrate how much work the network administrators actually do
  7. Which of the following is the least necessary security device/software?

    1. Firewall at the perimeter
    2. Anti-spyware on all machines
    3. Antivirus on all machines
    4. Encryption for all internal transmissions
  8. How should used media be disposed of?

    1. It should not be. It should be archived.
    2. It should be disposed of normally after 5 years.
    3. It should be destroyed thoroughly prior to disposal.
    4. It should be archived and never destroyed if it contains sensitive data.
  9. Which of the following utilities can reveal shared drives on a system?

    1. NetCop
    2. NetBrute
    3. NetGuard
    4. NetMaster
  10. Which of the following scanners provides information about the Windows Registry?

    1. NetCop
    2. SATAN
    3. Cerberus
    4. SAINT
  11. Which of the following scanners is a Unix-only tool popular with hackers?

    1. NetCop
    2. SATAN
    3. Cerberus
    4. SAINT
  12. What is the most distinctive feature of SAINT?

    1. Its registry report
    2. Its prioritization of vulnerabilities
    3. Its scans for shared drives
    4. Its capability to map network traffic
  13. What is the most important reason to use NetStat or NetStat Live?

    1. To detect DoS attempts
    2. To find registry vulnerabilities
    3. To check passwords
    4. To determine normal network traffic
  14. What is the best approach when using scanners?

    1. Pick any single scanner and use it.
    2. Use three or four different scanners.
    3. Find the most thorough scanner and use it.
    4. Use every scanner type you can find.
  15. What tools, besides port and security scanners, might you wish to use to assess security?

    1. An IDS
    2. A firewall
    3. A virus
    4. A password cracker

Exercises

Exercise 12.1: Using NetBrute

  1. Download NetBrute and install it according to the instructions found in the product.
  2. Scan either a laboratory computer or your own PC for open ports.
  3. Document what you find. Also note anything that NetBrute provides that NetCop did not.

Exercise 12.2: Using Cerberus

  1. Download Cerberus and install it according to the instructions found in the product.
  2. Scan either a laboratory computer or your own PC for open ports.
  3. Note what you found that neither NetCop nor NetBrute detected.

Exercise 12.3: Using SATAN

Note: This exercise requires a Unix-based operating system

  1. Download SATAN and install it according to the instructions found in the product.
  2. Scan either a laboratory computer or your own PC for open ports.
  3. Document what you find. Particularly note any differences between the results from SATAN and the Windows-based software.

Exercise 12.4: Using Other Port Scanners

  1. Download any other port scanner and install according to the instructions found.
  2. Scan either a laboratory computer or your own PC for open ports.
  3. Document differences between the results from that port scanner and NetCop, NetBrute, and Cerberus.

Exercise 12.5: Patching a System

  1. Take a lab machine, preferably one that has not been checked for patches in some time.
  2. Go to www.microsoft.com and run the Windows Update you will find on the left-hand side of the screen.
  3. Note how many critical and recommended patches the machine has.

Exercise 12.6: Physical Security

Note: This is ideal for a group exercise.

  1. Consider your educational institution. Examine (as much as possible) the physical security for servers and technology.
  2. Devise your own plan for improving security.
  3. Your plan might include additions such as

    • Biometrics
    • Alarms
    • Restricting access to keys
    • Putting routers under lock and key

Projects

Project 12.1: Using the Security Rating Scale

Using the Security Rating Scale outlined at the beginning of this chapter, rate the security of your campus computer systems and network. Provide clear reasons for each of your ratings on the scale and recommendations for ways to improve the system’s security.

Project 12.2: Assessing Security Policies

Find an organization that will allow you to review their security policies. You can try inquiring at any place you work, asking friends and relatives if you might check with their company’s IT department, or checking with your college/university IT department. Make sure the organization has no objection to your review before you proceed.

The organization you review should have written security policies. Summarize the organization’s policies and make recommendations for changes you feel are needed to improve security there. You can also use resources that define appropriate security policies to compare against the policies of your chosen organization. Some sources for this information include:

Project 12.3: Performing a Full Audit

Note: This exercise requires a fully equipped lab (at least 10 machines) and is probably best done in groups.

You and your team should conduct a complete audit of the chosen lab and write a detailed account of what you find. The audit must include a review of lab policies, probing the machines, checking for patches, and all other items mentioned in this chapter.

  • + Share This
  • 🔖 Save To Your Account