A security breach has occurred in which a third party was able to obtain and misuse legitimate
authentication information. After investigation, you determined that the specific cause for the
breach was that end users have been placing their passwords underneath their keyboards. Which
step will best help you resolve this problem?

You have implemented a version of the Kerberos protocol for your network. What service does
Kerberos primarily offer?

Consider the following series of commands from a Linux system: iptables -A input -p icmp -s 0/0 -d
0/0 -j REJECT Which explanation best describes the impact of the resulting firewall ruleset?

A CGI application on the company’s Web server has a bug written into it. This particular bug
allows the application to write data into an area of memory that has not been properly allocated to
the application. An attacker has created an application that takes advantage of this bug to obtain
credit card information. Which of the following security threats is the attacker exploiting, and what
can be done to solve the problem?

A new server has been placed on the network. You have been assigned to protect this server
using a packet-filtering firewall. To comply with this request, you have enabled the following ruleset:

Which choice describes the next step to take now that this ruleset has been enabled?

The most popular types of proxy-oriented firewalls operate at which layer of the OSI/RM?

You are using a PKI solution that is based on Secure Sockets Layer (SSL). Which of the following
describes the function of the asymmetric-key-encryption algorithm used?

A security breach has occurred involving the company e-commerce server. Customer credit card
data has been released to unauthorized third parties. Which of the following lists the appropriate
parties to inform?

What is the primary drawback of using symmetric-key encryption?

Which of the following is a typical target of a trojan on a Linux system?