312-50 Free Practice Test

- (Topic 15)
In an attempt to secure his wireless network, Bob turns off broadcasting of the SSID. He concludes that since his access points require the client computer to have the proper SSID, it would prevent others from connecting to the wireless network. Unfortunately unauthorized users are still able to connect to the wireless network.
Why do you think this is possible?

1. A. Bob forgot to turn off DHCP.
2. B. All access points are shipped with a default SSID.
3. C. The SSID is still sent inside both client and AP packets.
4. D. Bob’s solution only works in ad-hoc mode.

Correct Answer: B
All access points are shipped with a default SSID unique to that manufacturer, for example 3com uses the default ssid comcomcom.

- (Topic 7)
Steven is a senior security analyst for a state agency in Tulsa, Oklahoma. His agency is currently undergoing a mandated security audit by an outside consulting firm. The consulting firm is halfway through the audit and is preparing to perform the actual penetration testing against the agency’s network. The firm first sets up a sniffer on the agency’s wired network to capture a reasonable amount of traffic to analyze later. This takes approximately 2 hours to obtain 10 GB of data. The consulting firm then sets up a sniffer on the agency’s wireless network to capture the same amount of traffic. This capture only takes about 30 minutes to get 10 GB of data.
Why did capturing of traffic take much less time on the wireless network?

1. A. Because wireless access points act like hubs on a network
2. B. Because all traffic is clear text, even when encrypted
3. C. Because wireless traffic uses only UDP which is easier to sniff
4. D. Because wireless networks can’t enable encryption

Correct Answer: A
You can not have directed radio transfers over a WLAN. Every packet will be broadcasted as far as possible with no concerns about who might hear it.

- (Topic 4)
Exhibit:

What type of attack is shown in the above diagram?

1. A. SSL Spoofing Attack
2. B. Identity Stealing Attack
3. C. Session Hijacking Attack
4. D. Man-in-the-Middle (MiTM) Attack

Correct Answer: D
A man-in-the-middle attack (MITM) is an attack in which an attacker is able to read, insert and modify at will, messages between two parties without either party knowing that the link between them has been compromised.

- (Topic 23)
Which of the following is NOT a valid NetWare access level?

1. A. Not Logged in
2. B. Logged in
3. C. Console Access
4. D. Administrator

Correct Answer: D
Administrator is an account not a access level.

- (Topic 23)
Neil is a network administrator working in Istanbul. Neil wants to setup a protocol analyzer on his network that will receive a copy of every packet that passes through the main office switch. What type of port will Neil need to setup in order to accomplish this?

1. A. Neil will have to configure a Bridged port that will copy all packets to the protocol analyzer.
2. B. Neil will need to setup SPAN port that will copy all network traffic to the protocol analyzer.
3. C. He will have to setup an Ether channel port to get a copy of all network traffic to the analyzer.
4. D. He should setup a MODS port which will copy all network traffic.

Correct Answer: B