多項(xiàng)選擇題Which three items are Cisco best-practice recommendations for securing a network?()

A.Routinely apply patches to operating systems and applications
B.Disable unneeded services and ports on hosts
C.Deploy HIPS software on all end-user workstations
D.Require strong passwords and enable password expiration


您可能感興趣的試卷

你可能感興趣的試題

1.單項(xiàng)選擇題Examine the following items, which one offers a variety of security solutions, including firewall, IPS, VPN,antispyware, antivirus, and antiphishing features?()

A.Cisco IOS router
B.Cisco PIX 500 series security appliance
C.Cisco 4200 series IPS appliance
D.Cisco ASA 5500 series security appliance

2.單項(xiàng)選擇題Before a Diffie-Hellman exchange may begin, the two parties involved must agree on what?()

A.Two secret keys
B.Two nonsecret keys
C.Two secret numbers
D.Two nonsecret numbers

3.單項(xiàng)選擇題

Based on the username global configuration mode command displayed in the exhibit. What does the optionsecret 5 indicate about the enable secret password?()

A.It is hashed using MD5
B.It is encrypted using a proprietary Cisco encryption algorithm
C.It is hashed using SHA
D.It is encrypted using DH group 5

5.單項(xiàng)選擇題The enable secret password appears as an MD5 hash in a router’s configuration file, whereas the enablepassword is not hashed (or encrypted, if the password-encryption service is not enabled). What is thereason that Cisco still support the use of both enable secret and enable passwords in a router’sconfiguration?()

A.The enable password is present for backward compatibility.
B.Because the enable secret password is a hash, it cannot be decrypted. Therefore, the enable password is used to match the password that was entered, and the enable secret is used to verify that the enablepassword has not been modified since the hash was generated.
C.The enable password is considered to be a router’s public key, whereas the enable secret password is considered to be a router’s private key.
D.The enable password is used for IKE Phase I, whereas the enable secret password is used for IKE Phase II.

最新試題

When configuring role-based CLI on a Cisco router,which action will be taken first ?()

題型:?jiǎn)雾?xiàng)選擇題

Refer to the exhibit. Based on the VPN connection shown, which statement is true?()

題型:?jiǎn)雾?xiàng)選擇題

If you click the Configure button along the top of Cisco SDM is graphical interface,which Tasks buttonpermits you to configure such features as SSH, NTP, SNMP, and syslog?()

題型:?jiǎn)雾?xiàng)選擇題

Refer to the exhibit. You are the network security administrator responsible for router security.Your networkuses internal IP addressing according to RFC 1918 specifications.From the default rules shown,whichaccess control list would prevent IP address spoofing of these internal networks?()

題型:?jiǎn)雾?xiàng)選擇題

For the following options, which feature is the foundation of Cisco Self-Defending Network technology?()

題型:?jiǎn)雾?xiàng)選擇題

Which one of the aaa accounting commands can be used to enable logging of both the start and stoprecords for user terminal sessions on the router?()

題型:?jiǎn)雾?xiàng)選擇題

Which option ensures that data is not modified in transit?()

題型:?jiǎn)雾?xiàng)選擇題

During role-based CLI configuration, what must be enabled before any user views can be created?()

題型:?jiǎn)雾?xiàng)選擇題

For the following items, which one acts as a VPN termination device and is located at a primary networklocation?()

題型:?jiǎn)雾?xiàng)選擇題

Which two primary port authentication protocols are used with VSANs?()

題型:多項(xiàng)選擇題