EC-COUNCIL EC0-350 問題集

質問 1：
Neil is closely monitoring his firewall rules and logs on a regular basis. Some of the users have complained to Neil that there are a few employees who are visiting offensive web site during work hours, without any consideration for others. Neil knows that he has an up-to-date content filtering system and such access should not be authorized. What type of technique might be used by these offenders to access the Internet without restriction?
A. They are using HTTP tunneling software that allows them to communicate with protocols in a way it was not intended
B. They are using UDP that is always authorized at the firewall
C. They have been able to compromise the firewall, modify the rules, and give themselves proper access
D. They are using an older version of Internet Explorer that allow them to bypass the proxy server
正解：A

質問 2：
Which of the following is optimized for confidential communications, such as bidirectional voice and video?
A. RC5
B. RC4
C. MD5
D. MD4
正解：B

質問 3：
If you come across a sheepdip machaine at your client site, what would you infer?
A. A sheepdip computer defers a denial of service attack.
B. A sheepdip computer is another name for honeypop.
C. A sheepdip computer is used only for virus checking.
D. A sheepdip coordinates several honeypots.
正解：C
解説: (Topexam メンバーにのみ表示されます)

質問 4：
What do you call a system where users need to remember only one username and password, and be authenticated for multiple services?
A. Unique Sign-on
B. Single Sign-on
C. Simple Sign-on
D. Digital Certificate
正解：B
解説: (Topexam メンバーにのみ表示されます)

質問 5：
A network admin contacts you. He is concerned that ARP spoofing or poisoning might occur on his network. What are some things he can do to prevent it?
Select the best answers.
A. Use port security on his switches.
B. Use only static IP addresses on all PC's.
C. Use a tool like ARPwatch to monitor for strange ARP activity.
D. If you have a small network, use static ARP entries.
E. Use a firewall between all LAN segments.
正解：A,C,D
解説: (Topexam メンバーにのみ表示されます)

質問 6：
Which of the following is a common Service Oriented Architecture (SOA) vulnerability?
A. VPath injection
B. XML denial of service issues
C. SQL injection
D. Cross-site scripting
正解：B

質問 7：
What makes web application vulnerabilities so aggravating? (Choose two)
A. A firewall will not stop them.
B. They exist only on the Linux platform.
C. They are detectable by most leading antivirus software.
D. They can be launched through an authorized port.
正解：A,D
解説: (Topexam メンバーにのみ表示されます)

質問 8：
Fred is the network administrator for his company. Fred is testing an internal switch. From an external IP address, Fred wants to try and trick this switch into thinking it already has established a session with his computer. How can Fred accomplish this?
A. Fred can send an IP packet with the ACK bit set to zero and the source address of the switch.
B. Fred can accomplish this by sending an IP packet with the RST/SIN bit and the source address of his computer.
C. He can send an IP packet with the SYN bit and the source address of his computer.
D. Fred can send an IP packet to the switch with the ACK bit and the source address of his machine.
正解：D

質問 9：
The Open Web Application Security Project (OWASP) testing methodology addresses the need to secure web applications by providing which one of the following services?
A. An extensible security framework named COBIT
B. Web application patches
C. A security certification for hardened web applications
D. A list of flaws and how to fix them
正解：D