IT Questions and Answers :)

Friday, August 31, 2018

What of the following names is a USB device that registers itself as a network adapter but is a covert systems administration and penetration testing tool?

What of the following names is a USB device that registers itself as a network adapter but is a covert systems administration and penetration testing tool?

  • NET Ninja
  • BeamGun
  • Rubber Ducky
  • LAN Turtle 

What of the following names is a USB device that registers itself as a network adapter but is a covert systems administration and penetration testing tool?

EXPLANATION

The LAN Turtle is a covert Systems Administration and Penetration Testing tool providing stealth remote access, network intelligence gathering, and man-in-the-middle monitoring capabilities.
Housed within a generic "USB Ethernet Adapter" case, the LAN Turtle’s covert appearance allows it to blend into many IT environments.
See: https://lanturtle.com/ for more information
Share:

Thursday, August 30, 2018

You only want to use on-premises servers to authenticate. You would like to allow access to cloud email accounts through a user's local credentials. Which solution should you use?

You only want to use on-premises servers to authenticate. You would like to allow access to cloud email accounts through a user's local credentials. Which solution should you use?

  • Implement SaaS
  • Recreate user accounts in the cloud
  • Replicate local user accounts to the cloud
  • Identity federation 

You only want to use on-premises servers to authenticate. You would like to allow access to cloud email accounts through a user's local credentials. Which solution should you use?

EXPLANATION

Identity federation uses a single identity provider to authorize user access to multiple software applications, including cloud email.
Replicating user accounts means you are NOT using the on-premises user identities as you require. SaaS provides end-user software services over the network and has nothing to do with authorization. Recreating user accounts in the cloud won't work because we need to use local user accounts for authentication.
Share:

Which of these is NOT a card bus type?

Which of these is NOT a card bus type?

  • SOX
  • ISA
  • AGP
  • PCI 

 
Which of these is NOT a card bus type?

EXPLANATION

CardBus is the trade name for an advanced PC Card specification. The technology is used primarily in notebook and portable computers and fits in a slot like a conventional PC card. ISA, AGP, and PCI are all card bus types.
SOX is a common abbreviation for the Sarbanes-Oxley Act, a US Federal law governing publicly traded companies.

 


Share:

Tuesday, August 28, 2018

Which function key is used to check for spelling in MS Office?

Which function key is used to check for spelling in MS Office?

  • Alt + F11
  • F5
  • Alt + F4
  • F7

Which function key is used to check for spelling in MS Office?

EXPLANATION




Function key assignments common to all Microsoft Office applications are: F7 to check spelling.



 In Microsoft PowerPoint, F5 starts the slide show.



 Alt+F11 calls the Visual Basic Editor



 Alt+F4 is used to quit the application.
 
Share:

Monday, August 27, 2018

Which of these is not a high level Linux package manager?

Which of these is not a high level Linux package manager?

  • aptitude
  • yum
  • zypper
  • linupdate

Which of these is not a high level Linux package manager?

EXPLANATION

linupdate is the false one here. The others are all legitimate Linux package managers. Even though these are package managers, they use lower level tools to actually install the packages, such as rpm or dpkg.
Overview: http://www.tecmint.com/linux-package-management/
RPM & DPKG reference: http://packman.linux.is/
 
Share:

Friday, August 24, 2018

Which provides a method for validating source of a message through cryptographic authentication ?

Which provides a method for validating source of a message through cryptographic authentication ?

  • DNS
  • SPF
  • DNSSEC
  • DKIM

Which provides a method for validating source of a message through cryptographic authentication ?

EXPLANATION

DKIM provides a method for validating a domain name identity that is associated with a message through cryptographic authentication.

SOURCE

http://www.dkim.org/
 
Share:

Thursday, August 23, 2018

Which of these commands could you use to view the status of the system's ports?

Which of these commands could you use to view the status of the system's ports?

  • netstat -o
  • netstat -a
  • netstat -y
  • netstat -p 

 
Which of these commands could you use to view the status of the system's ports?

EXPLANATION

You can use the netstat -a command to list the ports used by the system and whether they are open and listening.
Share:

You need to encrypt and compress your backups before replicating them off site. Which is best practice, compress then encrypt, or encrypt then compress?

You need to encrypt and compress your backups before replicating them off site. Which is best practice, compress then encrypt, or encrypt then compress?

  • Neither!
  • Doesn't matter!
  • Encrypt first!
  • Compress first! 

You need to encrypt and compress your backups before replicating them off site. Which is best practice, compress then encrypt, or encrypt then compress?

EXPLANATION

If you encrypt the data first, it will be randomized and unintelligible by your compression application which need to compress the data in a logical format.
Compressing then encrypting is the way to go.

SOURCE

https://stackoverflow.com/questions/4676095/when-compressing-and-encrypting-should-i-compress-first-or-encrypt-first
Share:

Tuesday, August 21, 2018

In Active Directory, what would a RSOP report tell you?

In Active Directory, what would a RSOP report tell you?

  • Remote System Operation Protocol
  • Random State Oscillation Period
  • Removal Strategy for Outside People
  • Resultant Set Of Policy 

In Active Directory, what would a RSOP report tell you?

EXPLANATION




 A Resultant Set of Policy (RSOP) is a report of all Group Policy settings within Active Directory that shows how those settings can affect a network, or how existing Group Policy Objects (GPOs) affect various combinations of users and computers when the local security policy is applied.
Share:

Which of the following is implemented exclusively as firmware?

Which of the following is implemented exclusively as firmware?

  • BIOS
  • Linux
  • Database
  • Wi-Fi 

 
Which of the following is implemented exclusively as firmware?

EXPLANATION

Firmware is software that is permanently programmed into a device's read-only memory. Basic Input/Output System (BIOS) is an example of firmware.
Share:

Friday, August 17, 2018

Which of the following RegEx character sets does the '\w' meta-character most closely represent in Perl-compatible Regular Expression implementations?

Which of the following RegEx character sets does the '\w' meta-character most closely represent in Perl-compatible Regular Expression implementations?

  • [a-zA-Z0-9_]
  • [a-zA-Z]
  • [a-zA-Z0-9]
  • [a-zA-Z_] 

 
Which of the following RegEx character sets does the '\w' meta-character most closely represent in Perl-compatible Regular Expression implementations?

EXPLANATION

The "word" meta-character \w in RegEx will match the full alpha-numeric range, basically the full alphabet as well as number characters, and includes underscores.

Note that it matches more alphabet characters than the standard a through z: pretty much any alphabet character, such as 'ñ', also match.

http://www.w3schools.com/jsref/jsref_regexp_wordchar.asp
Share:

Thursday, August 16, 2018

What is the primary difference between LED and an LCD monitor?

What is the primary difference between LED and an LCD monitor?

  • price
  • Backlighting source
  • Doesn't last as long as plasma displays
  • screen size 

 
What is the primary difference between LED and an LCD monitor?

EXPLANATION

LCD
LCD is the abbreviation of Liquid Crystal display. There are two layers of glass in this technology that are joined together with liquid crystals in between. These crystals help pass or block the light. However, crystals do not produce any light and it comes through fluorescent lamps (CCFL) situated at the back of the screen.
LED
The technology in LED TV’s is much the same with the difference being the source of light at the back of the screen. Whereas it is CCFL in the case of LCD, there is Light emitting Diodes (LED’s) in the case of LED TV’s.
http://www.differencebetween.com/difference-between-lcd-and-vs-led-monitor/
http://www.diffen.com/difference/LCD_TV_vs_LED_TV
Share:

Where does Cryptolocker execute from on a Windows OS?

Where does Cryptolocker execute from on a Windows OS?

  • Desktop
  • C:\Programfiles
  • C:\Windows\System32
  • C:\Users\*User*\AppData\Local 

Where does Cryptolocker execute from on a Windows OS?

EXPLANATION

Cryptolocker runs from App Data Local and starts locking each file from A to Z then works on mapped drives from A to Z.

SOURCE

https://malwaretips.com/blogs/remove-cryptolocker-virus/
Share:

Tuesday, August 14, 2018

What is the default port used by Postfix?

What is the default port used by Postfix?

  • 25
  • 45
  • 37
  • 20 

 
What is the default port used by Postfix?

EXPLANATION

Postfix is an open source mail transfer agent (MTA) that is used to route and deliver emails. Postfix is the alternate of widely
used Sendmail MTA. Postfix uses port number 25 (SMTP) by default.

Share:

Monday, August 13, 2018

What type of RAID is RAID 2?

What type of RAID is RAID 2?

  • Byte-level striping with dedicated parity.
  • A striped set from a series of mirrored drives.
  • Block-level striping with dedicated parity.
  • Bit-level striping with dedicated Hamming-code parity. 

EXPLANATION

RAID 2
RAID 2 consists of bit-level striping with dedicated Hamming-code parity. All disk spindle rotation is synchronized and data is striped such that each sequential bit is on a different drive. Hamming-code parity is calculated across corresponding bits and stored on at least one parity drive. This level is of historical significance only; although it was used on some early machines (for example, the Thinking Machines CM-2), as of 2014 it is not used by any commercially available system.
RAID 2

SOURCE

https://en.wikipedia.org/wiki/Standard_RAID_levels#RAID_2 
Share:

Friday, August 10, 2018

In Linux system, which command will print the output of log file in reverse ?

In Linux system, which command will print the output of log file in reverse ?

  • less
  • cat
  • tac
  • rcs 

 
In Linux system, which command will print the output of log file in reverse ?

EXPLANATION

Let's assume that we have a log file named "Letters" that contains: A B C D (in separate lines).
To view the content of the log file in Linux terminal, the command will be:
linux@machine:~$ sudo cat Letters
And we will get the output:
A
B
C
D

To view the content of the log file in reverse, the command will be:
linux@machine:~$ sudo tac Letters
And we will get the output:
D
C
B
A




SOURCE

https://www.tecmint.com/learn-linux-cat-command-and-tac-command/
Share:

Thursday, August 9, 2018

While working on an issue on a clients network you learn that you will be using the 1000BaseCX standard. What type of cable will you be using.

While working on an issue on a clients network you learn that you will be using the 1000BaseCX standard. What type of cable will you be using.

  • CoreXtended Fiber
  • Single-mode fiber
  • Multimode fiber
  • STP

While working on an issue on a clients network you learn that you will be using the 1000BaseCX standard. What type of cable will you be using.

EXPLANATION

The 1000BaseCX standard specifies Gigabit Ethernet over STP cabling.
  1. Multi-mode Fiber is incorrect because 1000BaseSX and 1000BaseLX specify Gigabit Ethernet over two types of Multi-mode fiber.
  2. Single-mode fiber is used with 100BaseFX standard.
  3. As far as CoreXtended Fiber, there anin't no such animal.

SOURCE

http://www.thenetworkencyclopedia.com/entry/1000basecx/
Share:

Which of the following retains the information it's storing when the system power is turned off?

Which of the following retains the information it's storing when the system power is turned off?

  • ROM
  • RAM
  • GPU
  • CPU 

 
Which of the following retains the information it's storing when the system power is turned off?

EXPLANATION

Read only memory (ROM) is nonvolatile, meaning that turning off the computer doesn't erase it. 

Read-only memory (ROM) is a type of non-volatile memory used in computers and other electronic devices. Data stored in ROM can only be modified slowly, with difficulty, or not at all, so it is mainly used to store firmware (software that is closely tied to specific hardware, and unlikely to need frequent updates) or application software in plug-in cartridges.
Strictly, read-only memory refers to memory that is hard-wired, such as diode matrix and the later mask ROM (MROM), which cannot be changed after manufacture. Although discrete circuits can be altered in principle, integrated circuits (ICs) cannot, and are useless if the data is bad or requires an update. That such memory can never be changed is a disadvantage in many applications, as bugs and security issues cannot be fixed, and new features cannot be added.
More recently, ROM has come to include memory that is read-only in normal operation, but can still be reprogrammed in some way. Erasable programmable read-only memory (EPROM) and electrically erasable programmable read-only memory (EEPROM) can be erased and re-programmed, but usually this can only be done at relatively slow speeds, may require special equipment to achieve, and is typically only possible a certain number of times

Share:

Friday, August 3, 2018

In Windows Active Directory, what is the default time interval that the Knowledge Consistency Checker (KCC) uses for incremental syncs to review and update the Active Directory replication topology?

In Windows Active Directory, what is the default time interval that the Knowledge Consistency Checker (KCC) uses for incremental syncs to review and update the Active Directory replication topology?

  • 48 hours
  • 15 minutes
  • 60 minutes
  • 5 minutes 

 

EXPLANATION




By default, the knowledge consistency checker (KCC) reviews and makes modifications to the Active Directory replication topology every 15 minutes. The KCC ensures propagation of data, either directly or transitively, by creating and deleting connection objects as needed. The KCC recognizes changes that occur in the environment and ensures that domain controllers are not orphaned in the replication topology.

For more information on the KCC, see: https://technet.microsoft.com/en-us/library/cc961781.aspx
Share:

Thursday, August 2, 2018

Which of the following types of attacks do hackers use to gain information from you without the use of a computer program?

Which of the following types of attacks do hackers use to gain information from you without the use of a computer program?

  • Social Engineering
  • Cross Site Scripting
  • ARP Poisoning
  • SQL Injection 

 
Which of the following types of attacks do hackers use to gain information from you without the use of a computer program?

EXPLANATION

Social engineering, in the context of information security, refers to psychological manipulation of people into performing actions or divulging confidential information. A type of confidence trick for the purpose of information gathering, fraud, or system access, it differs from a traditional "con" in that it is often one of many steps in a more complex fraud scheme.
The term "social engineering" as an act of psychological manipulation of a human, is also associated with the social sciences, but its usage has caught-on among computer and information security professionals.

SOURCE

https://en.wikipedia.org/wiki/Social_engineering_(security)
Share:

What can be used to protect you from receiving email messages with a forged sender address?

What can be used to protect you from receiving email messages with a forged sender address?

  • Digital ID
  • IMAP
  • Secure SMTP
  • SPF

What can be used to protect you from receiving email messages with a forged sender address?

EXPLANATION

Sender Policy Framework (SPF) is a simple email-validation system designed to detect email spoofing by providing a mechanism to allow receiving mail exchangers to check that incoming mail from a domain comes from a host authorized by that domain's administrators.[1] The list of authorized sending hosts for a domain is published in the Domain Name System (DNS) records for that domain in the form of a specially formatted TXT record. Email spam and phishing often use forged "from" addresses, so publishing and checking SPF records can be considered anti-spam techniques.
IETF publication RFC 7208 dated April 2014 defines Sender Policy Framework as "proposed standard".

SOURCE

https://en.wikipedia.org/wiki/Sender_Policy_Framework 
Share:

Popular Posts