GSEC GIAC Exam Questions and Free Practice Test

Question 37

Which of the following BEST describes the two job functions of Microsoft Baseline Security Analyzer (MBSA)?

A. Vulnerability scanner and auditing tool

B. Auditing tool and alerting system

C. Configuration management and alerting system

D. Security patching and vulnerability scanner

Correct Answer:D

Question 38

Which of the following statements would describe the term "incident" when used in the branch of security known as Incident Handling?

A. Any observable network event

B. Harm to systems

C. Significant threat of harm to systems

D. A and C

E. A, B, and C

F. B and C

G. A and B

Correct Answer:D

Question 39

The previous system administrator at your company used to rely heavily on email lists, such as vendor lists and Bug Traq to get information about updates and patches. While a useful means of acquiring data, this requires time and effort to read through. In an effort to speed things up, you decide to switch to completely automated updates and patching. You set up your systems to automatically patch your production servers using a cron job and a scripted apt-get upgrade command. Of the following reasons, which explains why you may want to avoid this plan?

A. The apt-get upgrade command doesn't work with the cron command because of incompatibility

B. Relying on vendor and 3rd party email lists enables updates via email, for even faster patching

C. Automated patching of production servers without prior testing may result in unexpected behavior or failures

D. The command apt-get upgrade is incorrect, you need to run the apt-get update command

Correct Answer:D

Question 40

An organization monitors the hard disks of its employees' computers from time to time. Which policy does this pertain to?

A. Privacy policy

B. Backup policy

C. User password policy

D. Network security policy

Correct Answer:A

Question 41

A Host-based Intrusion Prevention System (HIPS) software vendor records how the Firefox Web browser interacts with the operating system and other applications, and identifies all areas of Firefox functionality. After collecting all the data about how Firefox should work, a database is created with this information, and it is fed into the HIPS software. The HIPS then monitors Firefox whenever it's in use. What feature of HIPS is being described in this scenario?

A. Signature Matching

B. Application Behavior Monitoring

C. Host Based Sniffing

D. Application Action Modeling

Correct Answer:B

Question 42

In PKI, when someone wants to verify that the certificate is valid, what do they use to decrypt the signature?

A. Receiver's digital signature

B. X.509 certificate CA's private key

C. Secret passphrase

D. CA's public key

Correct Answer:D

START GSEC EXAM