HNS Exam: Managing Network Security

1. What is the nominal duration of the module "Managing Network Security"?

A. 30 Hours B. 40 Hours C. 45 Hours D. 50 Hours

2. What is the definition of "network security"?

A. The process of managing network cables and hardware. B. The process of protecting network resources from unauthorized access, attacks, and misuse. C. The process of configuring routers and switches. D. The process of creating new user accounts.

3. What is a foundational element of any network security plan?

A. Using free antivirus software. B. Connecting all devices to a single network switch. C. Implementing a security policy tailored to the business\'s specific needs. D. Allowing all network traffic to pass through without restrictions.

4. What is the purpose of an access control list (ACL)?

A. To grant or deny traffic based on criteria such as the source or destination IP address. B. To monitor network traffic in real-time. C. To provide a list of all network users. D. To manage the physical location of network devices.

5. What is a network security system that grants or denies network access to traffic based on a set of rules?

A. A router B. A switch C. A hub D. A firewall

6. How are network security threats classified?

A. Physical and logical B. External and internal C. Hardware and software D. Active and passive

7. Where do "external threats" to network security originate from?

A. Outside the organization, from sources like hackers and cybercriminals. B. Inside the organization, from sources like disgruntled employees. C. From faulty network hardware. D. From human error only.

8. What is an example of an "internal threat" to network security?

A. A DDoS attack from another country. B. A virus from an external website. C. Unauthorized access by a disgruntled employee or human error. D. A power outage in the city.

9. What is a Distributed Denial of Service (DDoS) attack?

A. An attack that steals a user\'s personal information. B. An attack that uses multiple compromised systems to flood a network with traffic, making it unavailable. C. An attack that installs a virus on a single computer. D. An attack that reroutes a user to a fake website.

10. Which social engineering technique involves an attacker sending a fraudulent message disguised as a legitimate source?

A. Pharming B. Spoofing C. Malware D. Phishing

11. What is a "security policy"?

A. A document that lists all network devices. B. A software program that automatically blocks all traffic. C. A set of rules and guidelines an organization uses to manage and protect its information and network assets. D. A tool used to monitor network performance.

12. What does the "principle of least privilege" state?

A. A user should only have the minimum privileges necessary to perform their job functions. B. All users should have administrative privileges. C. Privileges should be granted based on the user\'s seniority. D. All privileges should be periodically revoked.

13. In a Windows environment, where can file and folder permissions be managed?

A. The "Advanced" tab in the file properties. B. The "Security" tab in the file or folder properties. C. The "General" tab in the file properties. D. The Command Prompt only.

14. Which command in Linux is used to change file and directory permissions?

A. `chown` B. `ls` C. `chmod` D. `cat`

15. What is the purpose of the `chown` command in Linux?

A. To change the ownership of a file. B. To change the file permissions. C. To display the file contents. D. To move a file to a different directory.

16. What is the function of a router?

A. To provide power to network devices. B. To connect all devices on a single network segment. C. To broadcast network signals to all connected devices. D. To forward data packets between computer networks.

17. What is a networking device that connects devices on a network by using packet switching?

A. A switch B. A modem C. An access point D. A firewall

18. What is a malicious software program that can replicate itself and spread to other computers?

A. Worm B. Trojan horse C. Virus D. Adware

19. What is a type of malicious software designed to collect and transmit a user\'s personal information without their knowledge?

A. A virus B. Spyware C. A worm D. A firewall

20. What is the process of converting data into a code to prevent unauthorized access?

A. Encryption B. Decryption C. Encoding D. Phishing

21. What are Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) used for?

A. To manage user accounts. B. To install new software. C. To monitor network performance. D. To detect and prevent malicious activity on a network.

22. What is the process of verifying the identity of a user or device?

A. Authorization B. Authentication C. Validation D. Encryption

23. Which of the following is a key practice for maintaining network security?

A. Sharing passwords with all employees. B. Using simple passwords for all accounts. C. Performing regular software updates and implementing firewalls and antivirus software. D. Allowing all users to have administrator rights.

24. What should a strong password policy mandate?

A. A minimum length, a mix of character types, and periodic password changes. B. A simple password that is easy to remember. C. The use of a single password for all accounts. D. The use of the same password for all employees.

25. What is the purpose of the `nslookup` command?

A. To display a host\'s IP address and subnet mask. B. To test network connectivity with a host. C. To change file permissions. D. To query the Domain Name System (DNS) to obtain domain name or IP address mapping.

HNS Exam: Managing Network Security

Exam Results