Questions
Final Review
1. When a company-1 employee sends an email to the company-2 employee, which protocols are used in A, B, and C? Hint: The same protocol is used for A and B. (A: From the email sender to the company-1 email server, B: Between company-1 and company-2 email servers, C: From company-2 email server to the email receiver).
2. What type of DNS record specifies the mail server responsible for accepting email messages?
3. Understand firewall rules like
|
From (Host) |
From (Port) |
To (Host) |
To (Port) |
Rule |
FW interface |
|
Any |
Any |
Any |
25 |
Allow |
Internal |
|
|
|
|
|
|
|
4. How would you prevent DNS cache poisoning?
5. Assume that you are designing a network protocol to enable secure communications over an untrusted network.
6. write two malicious actions that might debilitate the confidentiality, integrity, or availability of the communication between the sender and the receiver.
7. security features that the company may expect from a cloud provider.
8. As a security administrator, prescribe a set of network and computer-based controls of applications.
9. convert metrics into Key Performance Indicators (KPIs) to help top-level managers make informed decisions.
10. incident response lifecycle is composed of four stages. These are (1) Recovery and resumption, (2) Review and improvement, (3) Incident detection, and (4) Response and containment.
11. Put these in the correct lifecycle stage (Just examples there are more on the test)(a) Contact ISP, (b) Contact vendors, (c) Create more restrictive firewall rules, (d) Disconnect the affected system from the network, (e) IDS – Intrusion Detection System,
12. physical security measure, explain the benefits of using smart devices (IoT devices).