GSEC Exam Dumps | Many IIS servers connect to Microsoft SQL databases. Which of the following statements about SQL server

<< Prev Question Next Question >>

Question 37/166

Many IIS servers connect to Microsoft SQL databases. Which of the following statements about SQL server security is TRUE?

A. It is good practice to not allow users to send raw SQL commands to the SQL Server.

B. SQL Server should be installed on the same box as your IIS web server when they communicate as part of the web application.

C. SQL Server patches are part of the operating system patches.

D. It is good practice to never use integrated Windows authentication for SQL Server.

Question List (166q): Question 1: What improvement could a company that is rated at a NIST Imp...; Question 2: Using PowerShell ISE running as an Administrator, navigate t...; Question 3: Training an organization on possible phishing attacks would ...; Question 4: SSL session keys are available in which of the following len...; Question 5: Validating which vulnerabilities in a network environment ar...; Question 6: Which of the following services resolves host name to IP Add...; Question 7: What does an attacker need to consider when attempting an IP...; Question 8: Which of the following are advantages of Network Intrusion D...; Question 9: If Linux server software is a requirement in your production...; Question 10: When no anomaly is present in an Intrusion Detection, but an...; Question 11: Which layer of the TCP/IP Protocol Stack Is responsible for ...; Question 12: What is a security feature available with Windows Vista and ...; Question 13: A folder D:\Files\Marketing has the following NTFS permissio...; Question 14: What is the name of the Windows XP/2003 tool that you can us...; Question 15: Fill in the blank with the correct answer to complete the st...; Question 16: The Linux command to make the /etc/shadow file, already owne...; Question 17: Which of the following are used to suppress gasoline and oil...; Question 18: Which access control mechanism requires a high amount of mai...; Question 19: Your system has been infected by malware. Upon investigation...; Question 20: You work as a Network Administrator for Rick International. ...; Question 21: Why would someone use port 80 for deployment of unauthorized...; Question 22: Which aspect of UNIX systems was process accounting original...; Question 23: Which of the following items are examples of preventive phys...; Question 24: The Windows 'tracert' begins by sending what type of packet ...; Question 25: When using Pretty Good Privacy (PGP) to digitally sign a mes...; Question 26: In PKI, when someone wants to verify that the certificate is...; Question 27: You are examining a packet capture session in Wire shark and...; Question 28: You have set up a local area network for your company. Your ...; Question 29: Which Authenticates Assurance Level requires a hardware-base...; Question 30: What is the command-line tool for Windows XP and later that ...; Question 31: Analyze the screenshot below. In what order should the vulne...; Question 32: Which of the following SIP INVITE lines indicates to the rem...; Question 33: Which of the following is an Implementation of PKI?...; Question 34: Which of the following attack vectors are addressed by Xinet...; Question 35: What would the following IP tables command do? IP tables -I ...; Question 36: Which of the following statements about Secure Sockets Layer...; Question 37: Many IIS servers connect to Microsoft SQL databases. Which o...; Question 38: Which of the following statements about Network Address Tran...; Question 39: You ask your system administrator to verify user compliance ...; Question 40: Based on the iptables output below, which type of endpoint s...; Question 41: Which of the following languages enable programmers to store...; Question 42: Which of the following protocols implements VPN using IPSec?...; Question 43: On an NTFS file system, what will happen when a conflict exi...; Question 44: Which AWS service integrates with the Amazon API Gateway to ...; Question 45: You work as a Network Administrator for Net Perfect Inc. The...; Question 46: Why are false positives such a problem with IPS technology?...; Question 47: You are the security director for an off-shore banking site....; Question 48: You work as a Network Administrator for Net World Inc. The c...; Question 49: How is a Distributed Denial of Service (DDOS) attack disting...; Question 50: Which of the following is a term that refers to unsolicited ...; Question 51: You work as a Network Administrator for NetTech Inc. To ensu...; Question 52: Use PowerShell ISE to examineC:\Windows\security\templates\W...; Question 53: Which of the following statements about IPSec are true? Each...; Question 54: An attacker gained physical access to an internal computer t...; Question 55: To update from a Windows Server Update Services (WSUS) serve...; Question 56: What is the function of the TTL (Time to Live) field in IPv4...; Question 57: A database is accessed through an application that users mus...; Question 58: Users at the Marketing department are receiving their new Wi...; Question 59: Which of the following radio frequencies is used by the IEEE...; Question 60: Which of the following statements best describes where a bor...; Question 61: What cryptographic technique does file Integrity monitoring ...; Question 62: What is the most secure way to address an unused Windows ser...; Question 63: Which of the following is required to be backed up on a doma...; Question 64: Which of the following correctly describes a stateless packe...; Question 65: You work as a Network Administrator for Net Perfect Inc. The...; Question 66: The process of enumerating all hosts on a network defines wh...; Question 67: Which of the following is a new Windows Server 2008 feature ...; Question 68: An employee attempting to use your wireless portal reports r...; Question 69: What type of attack can be performed against a wireless netw...; Question 70: What is log, pre-processing?; Question 71: Which of the following authentication methods are used by Wi...; Question 72: What is the fundamental problem with managing computers in s...; Question 73: You work as a Network Administrator for McRobert Inc. You wa...; Question 74: Which of the following is a backup strategy?...; Question 75: When designing wireless networks, one strategy to consider i...; Question 76: Which of the following statements about the authentication c...; Question 77: Who is responsible for deciding the appropriate classificati...; Question 78: Which of the following is a Layer 3 device that will typical...; Question 79: You work as an Administrator for McRoberts Inc. The company ...; Question 80: Your organization is developing a network protection plan. N...; Question 81: Which of the following access control principles helps preve...; Question 82: Which port category does the port 110 fall into?...; Question 83: In the directory C:\lmages\steer there Is an Image file lmag...; Question 84: A security analyst has entered the following rule to detect ...; Question 85: Which type of risk assessment results are typically categori...; Question 86: Which of the following activities would take place during th...; Question 87: Which of the following is referred to as Electromagnetic Int...; Question 88: Your CIO has found out that it is possible for an attacker t...; Question 89: Which of the following monitors program activities and modif...; Question 90: Which command would allow an administrator to determine if a...; Question 91: Which of the following ports is the default port for Layer 2...; Question 92: Which of the following protocols provides maintenance and er...; Question 93: An attacker is able to trick an IDS into ignoring malicious ...; Question 94: What is it called when an OSI layer adds a new header to a p...; Question 95: You work as a Network Administrator for Perfect Solutions In...; Question 96: Which of the following should be implemented to protect an o...; Question 97: Which of the following proxy servers provides administrative...; Question 98: Your customer wants to make sure that only computers he has ...; Question 99: How can an adversary utilize a stolen database of unsalted p...; Question 100: Your software developer comes to you with an application tha...; Question 101: Which of the following consists of the security identifier n...; Question 102: Which of the following processes Is used to prove a user Is ...; Question 103: Where could you go in Windows XP/2003 to configure Automatic...; Question 104: What is the term for a game in which for every win there mus...; Question 105: In order to capture traffic for analysis, Network Intrusion ...; Question 106: Which services will have listening ports on a hardened Linux...; Question 107: The following three steps belong to the chain of custody for...; Question 108: Which of the following Linux commands can change both the us...; Question 109: Which of the following statements about the integrity concep...; Question 110: The Return on Investment (ROI) measurement used in Informati...; Question 111: What is the motivation behind SYN/FIN scanning?...; Question 112: What requirement must an administrator remember when utilizi...; Question 113: Which of the following are the types of intrusion detection ...; Question 114: What is a characteristic of iOS security?...; Question 115: What does Authentication Header (AH) add to the packet in or...; Question 116: Analyze the screenshot below. What is the purpose of this me...; Question 117: Which of the following is a signature-based intrusion detect...; Question 118: You work as a Network Administrator for McNeil Inc. The comp...; Question 119: You are responsible for technical support at a company. One ...; Question 120: Which of the following systems acts as a NAT device when uti...; Question 121: Which of the following resources is a knowledge base of real...; Question 122: IPS devices that are classified as "In-line NIDS" devices us...; Question 123: Which of the following is Azure's version of a superuser?...; Question 124: What is the main problem with relying solely on firewalls to...; Question 125: When trace route fails to get a timely response for a packet...; Question 126: A Host-based Intrusion Prevention System (HIPS) software ven...; Question 127: You work as a Network Administrator for Net World Inc. The c...; Question 128: Which of the following is generally practiced by the police ...; Question 129: Which Windows event log would you look in if you wanted info...; Question 130: What Windows log should be checked to troubleshoot a Windows...; Question 131: Which of the following is the reason of using Faraday cage?...; Question 132: What is the discipline of establishing a known baseline and ...; Question 133: Which of the following tools is used to query the DNS server...; Question 134: Which of the following processes is known as sanitization?...; Question 135: Which of the following SIP methods is used to setup a new se...; Question 136: Which of the following terms is used for the process of secu...; Question 137: What is the purpose of notifying stakeholders prior to a sch...; Question 138: Which of the following are the types of access controls? Eac...; Question 139: Where are user accounts and passwords stored in a decentrali...; Question 140: In an Active Directory domain, which is the preferred method...; Question 141: Which of the following heights of fence deters only casual t...; Question 142: At what point in the Incident Handling process should an org...; Question 143: Where is the source address located in an IPv4 header?...; Question 144: What Amazon Web Services (AWS) term describes a grouping of ...; Question 145: Which of the following is NOT a recommended best practice fo...; Question 146: What type of formal document would include the following sta...; Question 147: During a scheduled evacuation training session the following...; Question 148: A new data center is being built where customer credit infor...; Question 149: What protocol is a WAN technology?...; Question 150: With regard to defense-in-depth, which of the following stat...; Question 151: Use Hashcat to crack a local shadow file. What Is the passwo...; Question 152: If a DNS client wants to look up the IP address for good.new...; Question 153: Which of the following would be a valid reason to use a Wind...; Question 154: What is the purpose of a TTL value?...; Question 155: Analyze the following screenshot. What conclusion can be dra...; Question 156: When a packet leaving the network undergoes Network Address ...; Question 157: Which of the following protocols is used to send e-mails on ...; Question 158: On which of the following OSI model layers does IPSec operat...; Question 159: What dots Office 365 use natively for authentication?...; Question 160: What technique makes it difficult for attackers to predict t...; Question 161: While building multiple virtual machines on a single host op...; Question 162: Against policy, employees have installed Peer-to-Peer applic...; Question 163: What is the first thing that should be done during the conta...; Question 164: To be considered a strong algorithm, an encryption algorithm...; Question 165: When a host on a remote network performs a DNS lookup of www...; Question 166: Use Wireshark to analyze Desktop;PCAP FILES/charile.pcap Wha...

Question 37/166

LEAVE A REPLY

Download PDF File