PC Security Study Guide

Name:

True/False
Indicate whether the statement is true or false.

The number of computers in a LAN can range from two to several hundred.

Software firewalls are usually located outside the network security perimeter as the first line of defense.

Port address translation is typically used on home networks that allow multiple users to share the same IP address.

A home WLAN cannot connect a laptop computer, desktop computer, and laser printer into a computer network without running cables between the devices.

Firewalls cannot filter outgoing traffic.

Multiple Choice
Identify the choice that best completes the statement or answers the question.

The purpose of a(n) ____ is to allow sharing.

a.	packet	c.	IP address
b.	computer network	d.	packet filter

A computer network that has computers located relatively close to each other is called a ____.

a.	local area network	c.	wireless network
b.	protocol	d.	wide area network

A ____ connects computers over a larger geographical area than a LAN.

a.	local area network	c.	wireless network
b.	protocol	d.	wide area network

The most common set of protocols used on networks is called the ____.

a.	PAT	c.	TCP/IP
b.	WEP	d.	IDS

10.

A(n) ____ uniquely identifies a computer from all other computers on the network.

a.	IP address	c.	virtual private network
b.	access point	d.	server

11.

The transmission of data through a computer network is accomplished by dividing the data to be sent into smaller units called ____.

a.	botnets	c.	tunnels
b.	hotspots	d.	packets

12.

The hardware that connects a computer to a wired network is called a(n) ____.

a.	packet filter	c.	NIC
b.	intrusion detection system	d.	DMZ

13.

A(n) ____ acts as the base station for a wireless network.

a.	IP address	c.	rule base
b.	access point	d.	router

14.

A(n) ____ directs packets towards their destination.

a.	protocol	c.	botnet
b.	intrusion detection system	d.	router

15.

A(n) ____ attack attempts to make a server or other network device unavailable by flooding it with requests.

a.	ping	c.	denial of service
b.	botnet	d.	access point

16.

Instead of using one computer, a(n) ____ may use hundreds or thousands of computers to flood a server with requests.

a.	SSID	c.	Wi-Fi
b.	DDoS	d.	botnet

17.

An attack that intercepts communication and then forges a response to the sender is known as a ____ attack.

a.	man in the middle	c.	tunnel
b.	DoS	d.	port

18.

____ is the act of pretending to be the legitimate recipient of a computer message.

a.	Routing	c.	Smurfing
b.	Sniffing	d.	Spoofing

19.

The ____ address is permanently recorded on the network interface card when it is manufactured.

a.	access point	c.	NIC
b.	MAC	d.	port

20.

Because network traffic is divided into smaller segments called packets, an attacker can capture packets as they travel through the network using a technique called ____.

a.	spoofing	c.	routing
b.	smurfing	d.	sniffing

21.

A(n) ____ is designed to prevent malicious packets from entering a computer network.

a.	IP address	c.	sniffer
b.	firewall	d.	botnet

22.

____ looks at each incoming packet and permits or denies it based strictly on the rule base.

a.	Stateless packet filtering	c.	Spoofing
b.	Hijacking	d.	Stateful packet filtering

23.

____ keeps a record of the state of a connection between an internal computer and an external server and then makes decisions based on the connection as well as the rule base.

a.	Stateless packet filtering	c.	Spoofing
b.	Hijacking	d.	Stateful packet filtering

24.

According to Microsoft, ____ percent of home computers in the U.S. do not use a firewall.

a.	20	c.	67
b.	55	d.	80

25.

A ____ device hides the IP addresses of network devices from attackers.

a.	botnet	c.	NAT
b.	DoS	d.	Wi-Fi

26.

Although not found on home or small business computer networks, a device that establishes and maintains network security for large organizations is a(n) ____.

a.	demilitarized zone	c.	VPN
b.	intrusion detection system	d.	hotspot

Completion
Complete each statement.

27.

The primary goal of a(n) ____________________ is to conceal the identity of the computers within a protected network.

28.

One way to securely transmit data through a public network is to use a(n) ____________________.

29.

The number of public ____________________, or locations where wireless data services are available, increases at a rate worldwide of almost 350 percent per year.

30.

Every wireless network has a unique network name known as the ____________________, which is broadcast from the access point to everyone by default.

31.

A firewall is sometimes called a(n) ____________________.

Matching

Match each item with a statement below.

a.	Server	f.	Rule base
b.	Wi-Fi	g.	Port address translation
c.	Protocols	h.	Intrusion detection system
d.	Client network adapter	i.	DMZ
e.	Proxy server

32.

Also known as a wireless local area network.

33.

Also known as a network interface card.

34.

The foundation of a firewall.

35.

A variation of NAT.

36.

Device that establishes and maintains network security for large organizations.

37.

Can inspect packets of data for viruses and other malicious content.

38.

Network that sits outside the secure network perimeter.

39.

Central computer.

40.

A set of rules for data transmission through a network.

Short Answer

41.

What is the difference between a local area network and a wide area network?

42.

Briefly describe a denial of service attack.

43.

What are the typical stages of a DDoS attack?

44.

What is the difference between a demilitarized zone and a virtual private network?

45.

What are the advantages of implementing a wireless LAN?

46.

What are some of features that make wireless LANs more vulnerable to attacks?

47.

Discuss the procedures that should be implemented in order to make WLANs more secure.

48.

What is the purpose of a proxy server?

49.

What is the difference between stateful packet filtering and stateless packet filtering?

50.

How often, and under what circumstances, should you test your network security?