CertiGuide to Security+ - Getting Ready for Chapter 2

WARNING: This site is intended for online use only; mass-downloading of pages degrades the server and is prohibited.
If you attempt to use tools to mass-download the site, you may be blocked permanently by automated software.
If you want to read this CertiGuide offline, please use one of the links on the left to purchase a convenient PDF copy. Thank you.

Like this CertiGuide? Get it in PDF format!

Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Need more practice? 300 additional Security+ questions!

Get It Here!

CertiGuide to Security+
9 Chapter 2: Communication Security (Domain 2.0; 20%)

Getting Ready for Chapter 2 - Questions

2.0 Communication Security

Getting Ready for Chapter 2 - Answers

1. RADIUS is the protocol used for carrying authentication, authorization, and configuration information between a Network Access Server and a shared Authentication Server.

Explanation: RADIUS is a protocol for carrying authentication, authorization, and configuration information between a Network Access Server, which desires to authenticate its links and a shared Authentication Server. RADIUS uses a centralized database for simplified management. RADIUS is a standard published in RFC2138.

2. The PAP protocol transmits your logon credentials as cleat text.

Explanation: PAP is short for Password Authentication Protocol, the most basic form of authentication, in which a user's name and password are transmitted over a network and compared to a table of name-password pairs. Typically, the passwords stored in the table are encrypted. The Basic Authentication feature built into the HTTP protocol uses PAP. The main weakness of PAP is that both the username and password are transmitted "in clear text" -- that is, in an unencrypted form. Contrast this with CHAP, which uses challenges rather than cleartext password transmissions.

3. To protect an organizational directory from unauthorized changes you would select SSL or TLS .

Explanation: Directory changes need to be protected from unauthorized changes. Use SSL or TLS to make changes to any LDAP type directory.

4. A Blind FTP server does not reveal directory or content data .

Explanation: A blind FTP requires that a user know both the directory required and the filename(s). It can be set up in the UNIX environment with directory permissions set to 333 (write and execute for owner/group/world).

5. WEP can be compromised by Airsnort .

Explanation: "AirSnort¹³¹ is a wireless LAN (WLAN) tool which recovers encryption keys. AirSnort operates by passively monitoring transmissions, and computing the encryption key when enough packets have been gathered."

__________________

131. http://airsnort.shmoo.com/

Getting Ready for Chapter 2 - Questions

2.0 Communication Security

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!

Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.