EC-COUNCIL 312-50v8 問題集

質問 1：
You are the Security Administrator of Xtrinity, Inc. You write security policies and conduct assessments to protect the company's network. During one of your periodic checks to see how well policy is being observed by the employees, you discover an employee has attached cell phone 3G modem to his telephone line and workstation. He has used this cell phone 3G modem to dial in to his workstation, thereby bypassing your firewall. A security breach has occurred as a direct result of this activity. The employee explains that he used the modem because he had to download software for a department project. How would you resolve this situation?
A. Conduct a needs analysis
B. Install a network-based IDS
C. Reconfigure the firewall
D. Enforce the corporate security policy
正解：D

質問 2：
Every company needs a formal written document which spells out to employees precisely what they are allowed to use the company's systems for, what is prohibited, and what will happen to them if they break the rules. Two printed copies of the policy should be given to every employee as soon as possible after they join the organization. The employee should be asked to sign one copy, which should be safely filed by the company. No one should be allowed to use the company's computer systems until they have signed the policy in acceptance of its terms. What is this document called?
A. Information Audit Policy (IAP)
B. Company Compliance Policy (CCP)
C. Information Security Policy (ISP)
D. Penetration Testing Policy (PTP)
正解：C

質問 3：
A pentester gains acess to a Windows application server and needs to determine the settings of the built-in Windows firewall. Which command would be used?
A. Net firewall show config
B. WMIC firewall show config
C. Ipconfig firewall show config
D. Netsh firewall show config
正解：D

質問 4：
Bob is doing a password assessment for one of his clients. Bob suspects that security policies are not in place. He also suspects that weak passwords are probably the norm throughout the company he is evaluating. Bob is familiar with password weaknesses and key loggers.
Which of the following options best represents the means that Bob can adopt to retrieve passwords from his clients hosts and servers?
A. Passwords are always best obtained using Hardware key loggers.
B. Software only,they are the most effective.
C. Hardware and Software Keyloggers.
D. Hardware,Software,and Sniffing.
正解：D
解説: (Topexam メンバーにのみ表示されます)

質問 5：
Bart is looking for a Windows NT/2000/XP command-line tool that can be used to assign, display, or modify ACL's (access control lists) to files or folders and also one that can be used within batch files.
Which of the following tools can be used for that purpose? (Choose the best answer)
A. CLACS.exe
B. CACLS.exe
C. NTPERM.exe
D. PERM.exe
正解：B
解説: (Topexam メンバーにのみ表示されます)

質問 6：
Which type of scan measures a person's external features through a digital video camera?
A. Facial recognition scan
B. Signature kinetics scan
C. Iris scan
D. Retinal scan
正解：A

質問 7：
What is the expected result of the following exploit?

A. Opens up a telnet listener that requires no username or password.
B. Create a FTP server with write permissions enabled.
C. Creates an account with a user name of Anonymous and a password of [email protected].
D. Creates a share called "sasfile" on the target system.
正解：A
解説: (Topexam メンバーにのみ表示されます)

質問 8：
Harold works for Jacobson Unlimited in the IT department as the security manager. Harold has created a security policy requiring all employees to use complex 14 character passwords. Unfortunately, the members of management do not want to have to use such long complicated passwords so they tell Harold's boss this new password policy should not apply to them. To comply with the management's wishes, the IT department creates another Windows domain and moves all the management users to that domain. This new domain has a password policy only requiring 8 characters.
Harold is concerned about having to accommodate the managers, but cannot do anything about it. Harold is also concerned about using LanManager security on his network instead of NTLM or NTLMv2, but the many legacy applications on the network prevent using the more secure NTLM and NTLMv2. Harold pulls the SAM files from the DC's on the original domain and the new domain using Pwdump6.
Harold uses the password cracking software John the Ripper to crack users' passwords to make sure they are strong enough. Harold expects that the users' passwords in the original domain will take much longer to crack than the management's passwords in the new domain. After running the software, Harold discovers that the 14 character passwords only took a short time longer to crack than the 8 character passwords.
Why did the 14 character passwords not take much longer to crack than the 8 character passwords?
A. Harold should have used Dumpsec instead of Pwdump6
B. Harold's dictionary file was not large enough
C. LanManger hashes are broken up into two 7 character fields
D. Harold should use LC4 instead of John the Ripper
正解：C