Loading...
Click 3 47-63
Quiz by Tamara Paggy
Customize this quiz to suit your class
Instantly translate to 100+ languages
Tag the questions with any skills you have. Your dashboard will track each student's mastery of each skill.
Give this quiz to my class
Multiple Choice Questions A6. You’ve hired a third-party to gather information about your company’s servers and data. The third-party will not have direct access to your internal network but can gather information from any other source. Which of the following would BEST describe this approach? ❍ A. Backdoor testing ❍ B. Passive footprinting ❍ C. OS fingerprinting ❍ D. Partially known environment A7. Which of these protocols use TLS to provide secure communication? (Select TWO) ❍ A. HTTPS ❍ B. SSH ❍ C. FTPS ❍ D. SNMPv2 ❍ E. DNSSEC ❍ F. SRTP A8. Which of these threat actors would be MOST likely to attack systems for direct financial gain? ❍ A. Organized crime ❍ B. Hacktivist ❍ C. Nation state ❍ D. Competitor A9. A security incident has occurred on a file server. Which of the following data sources should be gathered to address file storage volatility? (Select TWO) ❍ A. Partition data ❍ B. Kernel statistics ❍ C. ROM data ❍ D. Temporary file systems ❍ E. Process table Quick Answer: 33 The Details: 43 Quick Answer: 33 The Details: 44 Quick Answer: 33 The Details: 45 Quick Answer: 33 The Details: 46 6 Practice Exam A - Questions A10. An IPS at your company has found a sharp increase in traffic from all-in-one printers. After researching, your security team has found a vulnerability associated with these devices that allows the device to be remotely controlled by a third-party. Which category would BEST describe these devices? ❍ A. IoT ❍ B. RTOS ❍ C. MFD ❍ D. SoC A11. Which of the following standards provides information on privacy and managing PII? ❍ A. ISO 31000 ❍ B. ISO 27002 ❍ C. ISO 27701 ❍ D. ISO 27001 A12. Elizabeth, a security administrator, is concerned about the potential for data exfiltration using external storage drives. Which of the following would be the BEST way to prevent this method of data exfiltration? ❍ A. Create an operating system security policy to prevent the use of removable media ❍ B. Monitor removable media usage in host-based firewall logs ❍ C. Only allow applications that do not use removable media ❍ D. Define a removable media block rule in the UTM Quick Answer: 33 The Details: 47 Quick Answer: 33 The Details: 48 Quick Answer: 33 The Details: 49 Practice Exam A - Questions 7 A13. A CISO (Chief Information Security Officer) would like to decrease the response time when addressing security incidents. Unfortunately, the company does not have the budget to hire additional security engineers. Which of the following would assist the CISO with this requirement? ❍ A. ISO 27701 ❍ B. PKI ❍ C. IaaS ❍ D. SOAR A14. An insurance company has created a set of policies to handle data breaches. The security team has been given this set of requirements based on these policies: • Access records from all devices must be saved and archived • Any data access outside of normal working hours must be immediately reported • Data access must only occur inside of the country • Access logs and audit reports must be created from a single database Which of the following should be implemented by the security team to meet these requirements? (Select THREE) ❍ A. Restrict login access by IP address and GPS location ❍ B. Require government-issued identification during the onboarding process ❍ C. Add additional password complexity for accounts that access data ❍ D. Conduct monthly permission auditing ❍ E. Consolidate all logs on a SIEM ❍ F. Archive the encryption keys of all disabled accounts ❍ G. Enable time-of-day restrictions on the authentication server Quick Answer: 33 The Details: 50 Quick Answer: 33 The Details: 51 8 Practice Exam A - Questions A15. Rodney, a security engineer, is viewing this record from the firewall logs: UTC 04/05/2018 03:09:15809 AV Gateway Alert 136.127.92.171 80 -> 10.16.10.14 60818 Gateway Anti-Virus Alert: XPACK.A_7854 (Trojan) blocked. Which of the following can be observed from this log information? ❍ A. The victim's IP address is 136.127.92.171 ❍ B. A download was blocked from a web server ❍ C. A botnet DDoS attack was blocked ❍ D. The Trojan was blocked, but the file was not A16. A user connects to a third-party website and receives this message: Your connection is not private. NET::ERR_CERT_INVALID Which of the following attacks would be the MOST likely reason for this message? ❍ A. Brute force ❍ B. DoS ❍ C. On-path ❍ D. Disassociation A17. Which of the following would be the BEST way to provide a website login using existing credentials from a third-party site? ❍ A. Federation ❍ B. 802.1X ❍ C. PEAP ❍ D. EAP-FAST Quick Answer: 33 The Details: 53 Quick Answer: 33 The Details: 54 Quick Answer: 33 The Details: 55 Practice Exam A - Questions 9 A18. A system administrator, Daniel, is working on a contract that will specify a minimum required uptime for a set of Internet-facing firewalls. Daniel needs to know how often the firewall hardware is expected to fail between repairs. Which of the following would BEST describe this information? ❍ A. MTBF ❍ B. RTO ❍ C. MTTR ❍ D. MTTF A19. An attacker calls into a company’s help desk and pretends to be the director of the company’s manufacturing department. The attacker states that they have forgotten their password and they need to have the password reset quickly for an important meeting. What kind of attack would BEST describe this phone call? ❍ A. Social engineering ❍ B. Tailgating ❍ C. Watering hole ❍ D. On-path A20. A security administrator has been using EAP-FAST wireless authentication since the migration from WEP to WPA2. The company’s network team now needs to support additional authentication protocols inside of an encrypted tunnel. Which of the following would meet the network team’s requirements? ❍ A. EAP-TLS ❍ B. PEAP ❍ C. EAP-TTLS ❍ D. EAP-MSCHAPv2 Quick Answer: 33 The Details: 56 Quick Answer: 33 The Details: 57 Quick Answer: 33 The Details: 58 10 Practice Exam A - Questions A21. Which of the following would be commonly provided by a CASB? (Select TWO) ❍ A. List of all internal Windows devices that have not installed the latest security patches ❍ B. List of applications in use ❍ C. Centralized log storage facility ❍ D. List of network outages for the previous month ❍ E. Verification of encrypted data transfers ❍ F. VPN connectivity for remote users A22. The embedded OS in a company’s time clock appliance is configured to reset the file system and reboot when a file system error occurs. On one of the time clocks, this file system error occurs during the startup process and causes the system to constantly reboot. Which of the following BEST describes this issue? ❍ A. DLL injection ❍ B. Resource exhaustion ❍ C. Race condition ❍ D. Weak configuration A23. A recent audit has found that existing password policies do not include any restrictions on password attempts, and users are not required to periodically change their passwords. Which of the following would correct these policy issues? (Select TWO) ❍ A. Password complexity ❍ B. Password expiration ❍ C. Password history ❍ D. Password lockout ❍ E. Password recovery Quick Answer: 33 The Details: 59 Quick Answer: 33 The Details: 60 Quick Answer: 33 The Details: 61 Practice Exam A - Questions 11 A24. What kind of security control is associated with a login banner? ❍ A. Preventive ❍ B. Deterrent ❍ C. Corrective ❍ D. Detective ❍ E. Compensating ❍ F. Physical A25. A security team has been provided with a noncredentialed vulnerability scan report created by a thirdparty. Which of the following would they expect to see on this report? ❍ A. A summary of all files with invalid group assignments ❍ B. A list of all unpatched operating system files ❍ C. The version of web server software in use ❍ D. A list of local user accounts A26. A business manager is documenting a set of steps for processing orders if the primary Internet connection fails. Which of these would BEST describe these steps? ❍ A. Communication plan ❍ B. Continuity of operations ❍ C. Stakeholder management ❍ D. Tabletop exercise A27. A security administrator is concerned about data exfiltration resulting from the use of malicious phone charging stations. Which of the following would be the BEST way to protect against this threat? ❍ A. USB data blocker ❍ B. Personal firewall ❍ C. MFA ❍ D. FDE Quick Answer: 33 The Details: 62 Quick Answer: 33 The Details: 63 Quick Answer: 33 The Details: 64 Quick Answer: 33 The Details: 65 12 Practice Exam A - Questions A28. A company would like to protect the data stored on laptops used in the field. Which of the following would be the BEST choice for this requirement? ❍ A. MAC ❍ B. SED ❍ C. CASB ❍ D. SOAR A29. A file server has a full backup performed each Monday at 1 AM. Incremental backups are performed at 1 AM on Tuesday, Wednesday, Thursday, and Friday. The system administrator needs to perform a full recovery of the file server on Thursday afternoon. How many backup sets would be required to complete the recovery? ❍ A. 2 ❍ B. 3 ❍ C. 4 ❍ D. 1THE FIDE LAWS OF CHESS. Introduction FIDE Laws of Chess cover over-the-board play. The Laws of Chess have two parts: 1. Basic Rules of Play and 2. Competitive Rules of Play. The English text is the authentic version of the Laws of Chess (which were adopted at the 93rd FIDE Congress at Chennai, India) coming into force on 1 January 2023. Preface. The Laws of Chess cannot cover all possible situations that may arise during a game, nor can they regulate all administrative questions. Where cases are not precisely regulated by an Article of the Laws, it should be possible to reach a correct decision by studying analogous situations which are regulated in the Laws. The Laws assume that arbiters have the necessary competence, sound judgement and absolute objectivity. Too detailed a rule might deprive the arbiter of his/her freedom of judgement and thus prevent him/her from finding a solution to a problem dictated by fairness, logic and special factors. FIDE appeals to all chess players and federations to accept this view. A necessary condition for a game to be rated by FIDE is that it shall be played according to the FIDE Laws of Chess. It is recommended that competitive games not rated by FIDE be played according to the FIDE Laws of Chess. Member federations may ask FIDE to give a ruling on matters relating to the Laws of Chess. BASIC RULES OF PLAY. Article 1: The Nature and Objectives of the Game of Chess 1.1 1.2 1.3 1.4 The game of chess is played between two opponents who move their pieces on a square board called a ‘chessboard’. The player with the light-coloured pieces (White) makes the first move, then the players move alternately, with the player with the dark-coloured pieces (Black) making the next move. A player is said to ‘have the move’ when his/her opponent’s move has been ‘made’. The objective of each player is to place the opponent’s king ‘under attack’ in such a way that the opponent has no legal move. 1.4.1 The player who achieves this goal is said to have ‘checkmated’ the opponent’s king and to have won the game. Leaving one’s own king under attack, exposing one’s own king to attack and also ’capturing’ the opponent’s king is not allowed. 1.4.2 The opponent whose king has been checkmated has lost the game. 1.5 If the position is such that neither player can possibly checkmate the opponent’s king, the game is drawn (see Article 5.2.2). Article 2: The Initial Position of the Pieces on the Chessboard 2.1 2.2 The chessboard is composed of an 8 x 8 grid of 64 equal squares alternately light (the ‘white’ squares) and dark (the ‘black’ squares). The chessboard is placed between the players in such a way that the near corner square to the right of the player is white. At the beginning of the game White has 16 light-coloured pieces (the ‘white’ pieces); Black has 16 dark-coloured pieces (the ‘black’ pieces). These pieces are as follows: A white king usually indicated by the symbol K A white queen Two white rooks Two white bishops Two white knights Eight white pawns A black king A black queen Two black rooks Two black bishops Two black knights Eight black pawns usually indicated by the symbol Q usually indicated by the symbol R usually indicated by the symbol B usually indicated by the symbol N usually indicated by the symbol usually indicated by the symbol K usually indicated by the symbol Q usually indicated by the symbol R usually indicated by the symbol B usually indicated by the symbol N usually indicated by the symbol Staunton Pieces p Q K B N R 9 2.3 The initial position of the pieces on the chessboard is as follows: 2.4 The eight vertical columns of squares are called ‘files’. The eight horizontal rows of squares are called ‘ranks’. A straight line of squares of the same colour, running from one edge of the board to an adjacent edge, is called a ‘diagonal’. Article 3: The Moves of the Pieces 3.1 It is not permitted to move a piece to a square occupied by a piece of the same colour. 3.1.1 If a piece moves to a square occupied by an opponent’s piece the latter is captured and removed from the chessboard as part of the same move. 3.1.2 A piece is said to attack an opponent’s piece if the piece could make a capture on that square according to Articles 3.2 to 3.8. 3.1.3 A piece is considered to attack a square even if this piece is constrained from moving to that square because it would then leave or place the king of its own colour under attack. 3.2 The bishop may move to any square along a diagonal on which it stands. 3.3 The rook may move to any square along the file or the rank on which it stands. 3.4 The queen may move to any square along the file, the rank or a diagonal on which it stands. 3.5 3.6 3.7 When making these moves, the bishop, rook or queen may not move over any intervening pieces. The knight may move to one of the squares nearest to that on which it stands but not on the same rank, file or diagonal. 3.7 When making these moves, the bishop, rook or queen may not move over any intervening pieces. The knight may move to one of the squares nearest to that on which it stands but not on the same rank, file or diagonal. The pawn: 3.7.1 The pawn may move forward to the square immediately in front of it on the same file, provided that this square is unoccupied, or 3.7.2 on its first move the pawn may move as in 3.7.1 or alternatively it may advance two squares along the same file, provided that both squares are unoccupied, or 3.7.3 the pawn may move to a square occupied by an opponent’s piece diagonally in front of it on an adjacent file, capturing that piece. 3.7.3.1 A pawn occupying a square on the same rank as and on an adjacent file to an opponent’s pawn which has just advanced two squares in one move from its original square may capture this opponent’s pawn as though the latter had been moved only one square. 3.7.3.2 This capture is only legal on the move following this advance and is called an ‘en passant’ capture. 3.7.3.3 When a player, having the move, plays a pawn to the rank furthest from its starting position, he/she must exchange that pawn as part of the same move for a new queen, rook, bishop or knight of the same colour on the intended square of arrival. This is called the square of ‘promotion’. 3.7.3.4 The player's choice is not restricted to pieces that have been captured previously. 3.7.3.5 This exchange of a pawn for another piece is called promotion, and the effect of the new piece is immediate. 3.8 There are two different ways of moving the king: 3.8.1 by moving to an adjoining square. 3.8.2 by ‘castling’. This is a move of the king and either rook of the same colour along the player’s first rank, counting as a single move of the king and executed as follows: the king is transferred from its original square two squares towards the rook on its original square, then that rook is transferred to the square the king has just crossed. 3.8.2.1 The right to castle has been lost: 3.8.2.1.1 If the king has already moved, or 3.8.2.1.2 With a rook that has already moved. 3.8.2.2 Castling is prevented temporarily: 3.8.2.2.1 if the square on which the king stands, or the square which it must cross, or the square which it is to occupy, is attacked by one or more of the opponent's pieces, or 3.8.2.2.2 if there is any piece between the king and the rook with which castling is to be effected. 3.9 The king in check: 3.9.1 The king is said to be 'in check' if it is attacked by one or more of the opponent's pieces, even if such pieces are constrained from moving to the square occupied by the king because they would then leave or place their own king in check. 3.9.2 No piece can be moved that will either expose the king of the same colour to check or leave that king in check. 3.10 Legal and illegal moves; illegal positions: 3.10.1 A move is legal when all the relevant requirements of Articles 3.1 – 3.9 have been fulfilled. 3.10.2 A move is illegal when it fails to meet the relevant requirements of Articles 3.1 –3.9. 3.10.3 A position is illegal when it cannot have been reached by any series of legal moves. Article 4: The Act of Moving the Pieces 4.1 4.2 Each move must be played with one hand only. Adjusting the pieces or other physical contact with a piece: 4.2.1 Only the player having the move may adjust one or more pieces on their squares, provided that he/she first expresses his/her intention (for example by saying “j’adoube” or “I adjust”). 4.2.2 Any other physical contact with a piece, except for clearly accidental contact, shall be considered to be intent. 4.3 Except as provided in Article 4.2.1, if the player having the move touches on the chessboard, with the intention of moving or capturing: 4.3.1 one or more of his/her own pieces, he/she must move the first piece touched that can be moved. 4.3.2 one or more of his/her opponent’s pieces, he/she must capture the first piece touched that can be captured. 4.3.3 one or more pieces of each colour, he/she must capture the first touched opponent’s piece with his/her first touched piece or, if this is illegal, move or capture the first piece touched that can be moved or captured. If it is unclear whether the player’s own piece or his/her opponent’s was touched first, the player’s own piece shall be considered to have been touched before his/her opponent’s. 4.4 If a player having the move: 4.4.1 touches his/her king and a rook he/she must castle on that side if it is legal to do so 4.4.2 deliberately touches a rook and then his/her king he/she is not allowed to castle on that side on that move and the situation shall be governed by Article 4.3.1. 4.4.3 intending to castle, touches the king and then a rook, but castling with this rook is illegal, the player must make another legal move with his/her king (which may include castling with the other rook). If the king has no legal move, the player is free to make any legal move. 4.4.4 promotes a pawn, the choice of the piece is finalised when the piece has touched the square of promotion. 4.5 4.6 If none of the pieces touched in accordance with Article 4.3 or Article 4.4 can be moved or captured, the player may make any legal move. The act of promotion may be performed in various ways: 4.6.1 the pawn does not have to be placed on the square of arrival. 4.6.2 removing the pawn and putting the new piece on the square of promotion may occur in any order. 4.6.3 If an opponent’s piece stands on the square of promotion, it must be captured. 4.7 When, as a legal move or part of a legal move, a piece has been released on a square, it cannot be moved to another square on this move. The move is considered to have been made in the case of: 4.7.1 A capture, when the captured piece has been removed from the chessboard and the player, having placed his/her own piece on its new square, has released this capturing piece from his/her hand. 4.7.2 Castling, when the player's hand has released the rook on the square previously crossed by the king. When the player has released the king from his/her hand, the move is not yet made, but the player no longer has the right to make any move other than castling on that side, if this is legal. If castling on this side is illegal, the player must make another legal move with his/her king (which may include castling with the other rook). If the king has no legal move, the player is free to make any legal move. 4.7.3 Promotion, when the player's hand has released the new piece on the square of promotion and the pawn has been removed from the board. 4.8 4.9 A player forfeits his/her right to claim against his/her opponent’s violation of Articles 4.1 – 4.7 once the player touches a piece with the intention of moving or capturing it. 4.8. A player forfeits his/her right to claim against his/her opponent’s violation of Articles 4.1 – 4.7 .4.9. If a player is unable to move the pieces, an assistant, who shall be acceptable to the arbiter, may be provided by the player to perform this operation. Article 5: The Completion of the Game 5.1.1 The game is won by the player who has checkmated his/her opponent’s king. This immediately ends the game, provided that the move producing the checkmate position was in accordance with Article 3 and Articles 4.2 – 4.7. 5.1.2 The game is lost by the player who declares he/she resigns (this immediately ends the game), unless the position is such that the opponent cannot checkmate the player’s king by any possible series of legal moves. In this case the result of the game is a draw. 5.2.1 The game is drawn when the player to move has no legal move and his/her king is not in check. The game is said to end in ‘stalemate’. This immediately ends the game, provided that the move producing the stalemate position was in accordance with Article 3 and Articles 4.2 – 4.7. 5.2.2 The game is drawn when a position has arisen in which neither player can checkmate the opponent’s king with any series of legal moves. The game is said to end in a ‘dead position’. This immediately ends the game, provided that the move producing the position was in accordance with Article 3 and Articles 4.2 – 4.7. 5.2.3 The game is drawn upon agreement between the two players during the game, provided both players have made at least one move. This immediately ends the game. COMPETITIVE RULES OF PLAY Article 6: The Chessclock 6.1 ‘Chessclock’ means a clock with two time displays, connected to each other in such a way that only one of them can run at a time. ‘Clock’ in the Laws of Chess means one of the two time displays. Each time display has a ‘flag’. ‘Flag-fall’ means the expiration of the allotted time for a player. 6.2 Handling the chessclock: 6.2.1 During the game each player, having made his/her move on the chessboard, shall pause his/her own clock and start his/her opponent’s clock (that is to say, he/she shall press his/her clock). This “completes” the move. A move is also completed if: 6.2.1.1 6.2.1.2 the move ends the game (see Articles 5.1.1, 5.2.1, 5.2.2, 9.2.1, 9.6.1 and 9.6.2), or the player has made his/her next move, when his/her previous move was not completed. 6.2.2 A player must be allowed to pause his/her clock after making his/her move, even after the opponent has made his/her next move. The time between making the move on the chessboard and pressing the clock is regarded as part of the time allotted to the player. 6.2.3 A player must press his/her clock with the same hand with which he/she made his/her move. It is forbidden for a player to keep his/her finger on the clock or to ‘hover’ over it. 6.2.4 The players must handle the chessclock properly. It is forbidden to press it forcibly, to pick it up, to press the clock before moving or to knock it over. Improper clock handling shall be penalised in accordance with Article 12.9. 6.2.5 6.2.6 Only the player whose clock is running is allowed to adjust the pieces. If a player is unable to use the clock, an assistant, who must be acceptable to the arbiter, may be provided by the player to perform this operation. His/Her clock shall be adjusted by the arbiter in an equitable way. This adjustment of the clock shall not apply to the clock of a player with a disability. 6.3 Allotted time: 6.3.1 When using a chessclock, each player must complete a minimum number of moves or all moves in an allotted period of time including any additional amount of time added with each move. All these must be specified in advance. 6.3.2 The time saved by a player during one period is added to his/her time available for the next period, where applicable. In the time-delay mode both players receive an allotted ‘main thinking time’. Each player also receives a ‘fixed extra time’ with every move. The countdown of the main thinking time only commences after the fixed extra time has expired. Provided the player presses his/her clock before the expiration of the fixed extra time, the main thinking time does not change, irrespective of the proportion of the fixed extra time used. 6.4 Immediately after a flag falls, the requirements of Article 6.3.1 must be checked. 6.5 Before the start of the game the arbiter shall decide where the chessclock is placed. 6.6 At the time determined for the start of the game White’s clock is started.6.7. Default time: 6.7.1 The regulations of an event shall specify a default time in advance. If the default time is not specified, then it is zero. Any player who arrives at the chessboard after the default time shall lose the game unless the arbiter decides otherwise. 6.7.2 If the regulations of an event specify that the default time is not zero and if neither player is present initially, White shall lose all the time that elapses until he/she arrives, unless the regulations of an event specify, or the arbiter decides otherwise. 6.8 A flag is considered to have fallen when the arbiter observes the fact or when either player has made a valid claim to that effect. 6.9 Except where one of Articles 5.1.1, 5.1.2, 5.2.1, 5.2.2, 5.2.3 applies, if a player does not complete the prescribed number of moves in the allotted time, the game is lost by that player. However, the game is drawn if the position is such that the opponent cannot checkmate the player’s king by any possible series of legal moves. 6.10 Chessclock setting: 6.10.1 Every indication given by the chessclock is considered to be conclusive in the absence of any evident defect. A chessclock with an evident defect shall be replaced by the arbiter, who shall use his/her best judgement when determining the times to be shown on the replacement chessclock. 6.10.2 If during a game it is found that the setting of either or both clocks is incorrect, either player or the arbiter shall pause the chessclock immediately. The arbiter shall install the correct setting and adjust the times and move-counter, if necessary he/she shall use his/her best judgement when determining the clock settings. 6.11.1 If the game needs to be interrupted, the arbiter shall pause the chessclock. 6.11.2 A player may pause the chessclock only in order to seek the arbiter’s assistance, for example when promotion has taken place and the piece required is not available. 6.11.3 The arbiter shall decide when the game restarts. 6.11.4 If a player pauses the chessclock in order to seek the arbiter’s assistance, the arbiter shall determine whether the player had any valid reason for doing so. If the player has no valid reason for pausing the chessclock, the player shall be penalised in accordance with Article 12.9. 6.12.1 Screens, monitors, or demonstration boards showing the current position on the chessboard, the moves and the number of moves made/completed, and clocks which also show the number of moves, are allowed in the playing hall. 6.12.2 The player may not make a claim relying only on information shown in this manner.click 3Click 3 Unit 3click 3 4th gradeClick 3 unit 1click 3 p.17click 3 p 17