單項(xiàng)選擇題How doTCP SYN attacks take advantage ofTCPto prevent new connections from being established to a host under attack?()

A.These attacks send multiple FIN segments forcing TCP connection release.
B.These attacks fill up a hosts’ listen queue by failing to ACK partially openedTCPconnections.
C.These attacks take advantage of the hosts transmit backoff algorithm by sending jam signals to the host.
D.These attacks increment the ISN of each segment by a random number causing constant TCP retransmissions.
E.These attacks send TCP RST segments in response toconnection SYN+ACK segments forcing SYN retransmissions.





您可能感興趣的試卷

你可能感興趣的試題

1.單項(xiàng)選擇題What group in Cisco IOS does 1536-bit Diffie-Hellman prime modulus equivalent too?()

A. group 3
B. group 1
C. group 5
D. group 7

3.單項(xiàng)選擇題ASDM on the ASA platform is executed as:()

A. An active-x applicationor a java script application
B. A java script application and a PHP application.
C. A fully compiled .NET framework application
D. A fully operational Visual Basic application
E. A java applet running in the context of your browser or a stand alone application using the java run-timeenvironment

4.單項(xiàng)選擇題In an L2TP voluntary tunneling scenario, the VPDN tunnel is terminated between:()

A. The client and the NAS.
B. The NAS andthe LNS.
C. The NAS and the LAC.
D. The client and the LNS.

5.單項(xiàng)選擇題CSA protects your host by: ()

A. Preventing browsers from opening network sockets inlistening state.
B. Preventingbuffer overflows.
C. Preventingusers from entering unencrypted passwords
D. Preventing browsers from acting as client to webservers.

6.多項(xiàng)選擇題Which statements are true concerning NAT? ()

A. NAT provides 1 to manyaddress mapping.
B. NAT provides 1 to 1 address mapping.
C. NAT is only useful forTCP/UDP and ICMP traffic.
D. NAT can be used for all IP traffic.

7.多項(xiàng)選擇題Which two statements are correct about the aaa authentication login default grouptacacs+ localglobal configuration command? ()

A. this login authenticationmethod list is automaticallyapplied to all lines except those that have a named method list explicitly defined
B. If the user fails the TACACS+ authentication then the local database on the router will be used to authenticatethe user
C. if the tacacs+ server fails to respond then the local database on the router will be used to authenticate the user 
D. "login" is the name of the method list being configured
E. if the tacacs+ server is unavailable, authentication will succeed automaticallyby default

9.多項(xiàng)選擇題Which of the following statements that describe Diffie Hellman Key exchange are correct? ()

A. A DH key exchange is an algorithm that utilizes asymmetric cryptographic keys.
B. The DH key exchange is used to establish a shared secret over an insecure medium during an IPSec phase 1 exchange.
C. The DH exchange is susceptible to man-in-the-middle attacks.
D. The DH exchange is used to authenticate the peer device duringan IPSec phase 1 exchange.
E.A DH exchange provides Perfect Forward Secrecy (PFS).

10.單項(xiàng)選擇題Which Cisco security software product mitigates Day Zero attacks on desktops and servers - stopping known and unknown attacks without requiring reconfigurations or updates on the endpoints?()

A. Cisco Secure Desktop (CSD)
B. NAC Appliance Agent (NAA)
C. Cisco SecurityAgent (CSA)
D. SSLVPN Client (SVC)
E. Cisco TrustAgent (CTA)

最新試題

Which access methods can CS-MARS use toget configuration information from an Adaptive SecurityAppliance (ASA)? ()

題型:多項(xiàng)選擇題

TACACS+ authentication uses whichthree packet types? ()

題型:多項(xiàng)選擇題

Select the two correctstatements from the list below that describe DES and 3DES: ()

題型:多項(xiàng)選擇題

In an L2TP voluntary tunneling scenario, the VPDN tunnel is terminated between:()

題型:?jiǎn)雾?xiàng)選擇題

Which Cisco security software product mitigates Day Zero attacks on desktops and servers - stopping known and unknown attacks without requiring reconfigurations or updates on the endpoints?()

題型:?jiǎn)雾?xiàng)選擇題

Which ones are the two type of ciphers?()

題型:?jiǎn)雾?xiàng)選擇題

Which statements are true concerning NAT? ()

題型:多項(xiàng)選擇題

For a router to obtain a certificate from a CA, what is the first stepof the certificate enrollment process?()

題型:?jiǎn)雾?xiàng)選擇題

Which should be the key driver for a company security policy’s creation, implementation and enforcement?()

題型:?jiǎn)雾?xiàng)選擇題

When implementing best practices for IP Source Address Spoofing and Defeating Denial of Service Attacks with IP SourceAddress Spoofing, what RFC is commonly usedto protect your network?()

題型:?jiǎn)雾?xiàng)選擇題