相关试题
【单选题】
“三个代表”重要思想的本质是___
A. 立党为公、执政为民
B. 与时俱进
C. 解放思想、实事求是
D. 坚持党的先进性
【单选题】
中国共产党第16次全国代表大会的历史性贡献是___
A. 把“三个代表”思想确立为中国共产党必须长期坚持的指导思想
B. 提出全面建设小康社会的奋斗目标
C. 总结了建设中国特色社会主义必须坚持的十条基本经验
D. 提出了全面推进党的建设的新的伟大工程
【单选题】
贯彻“三个代表”思想,关键在___
A. 坚持与时俱进
B. 坚持党的先进性
C. 坚持执政为民
D. 坚持群众路线
【单选题】
学习贯彻“三个代表”思想的最好实践和最好检验是___
A. 全面建设小康社会
B. 实现社会主义现代化
C. 实现共同富裕
D. 实现社会和人的全面发展
【单选题】
始终做到“三个代表”,是我们党的立党之本、执政之基、力量之源。这里的“本”、“基”、“源”,是指___
A. 人民群众的支持和拥护
B. 不断解放和发展生产力
C. 增强国家的经济实力
D. 不断创新、与时俱进
【单选题】
胡锦涛在2003年“七一”讲话中指出,实现人民的愿望,满足人民的需要,维护人民的利益,是“三个代表”思想的___
A. 根本出发点和落脚点
B. 关键
C. 本质
D. 灵魂
【单选题】
十六大党章关于党的指导思想的表述是___
A. 中国共产党以马克思列宁主义、毛泽东思想、邓小平理论和“三个代表”重要思想作为自己的行动指南,“三个代表”重要思想是党必须长期坚持的指导思想
B. 马克思列宁主义为指导思想
C. 以马克思列宁主义与中国革命实践相统一的思想——毛泽东思想作为行动指南
D. 中国共产党以马克思列宁主义、毛泽东思想、邓小平理论作为自己的行动指南
【单选题】
“三个代表”重要思想是在 ___
A. 科学判断党的历史方位的基础上提出来的
B. 发展社会主义经济条件下提出来的
C. 中国共产党成为执政党的条件下提出来的
D. 是在开始全面建设小康社会的形势下提出来的
【单选题】
中国共产党坚持先进性增强创造力的决定性因素是___
A. 坚持发展作为党执政兴国的第一要务
B. 坚持党的基本路线不动摇
C. 坚持党的群众工作路线
D. 坚持党的思想路线,解放思想、实事求是、与时俱进
【单选题】
贯彻“三个代表”重要思想,必须使全党始终保持与时俱进的精神状态,与时俱进就是___
A. 党的全部理论和工作要体现时代性,把握规律性,富于创造性
B. 要看到我国社会主义建设发生的重大变化
C. 要看到广大党员干部和人民群众工作、生活条件和社会环境发生的重大变化
D. 要自觉地把思想认识从那些不合时宜的观念、做法和体制的束缚中解放出来
【单选题】
中国共产党能否始终做到与时俱进决定着___
A. 党始终保持与广大人民群众的血肉联系
B. 党能否始终保持党的先进性
C. 党和国家的前途命运
D. 我们国家经济能否上一个大台阶
【单选题】
十六大实现的我们党指导思想上的又一个与时俱进是___
A. 提出了全党必须坚持“两个务必”的工作作风
B. 将邓小平理论确立为党必须长期坚持的指导思想
C. 将发展作为党执政兴国的第一要务
D. 将“三个代表”重要思想确立为党必须长期坚持的指导思想
【单选题】
社会发展和变革的先导是 ___
A. 生产力的变革
B. 实践基础上的理论创新
C. 执政党的变化
D. 政权性质的变化
【单选题】
对我国来说,一个必须紧紧抓住并且可以大有作为的重要战略机遇期是___
A. 21世纪头10年
B. 21世纪头50年
C. 21世纪头20年
D. “十五”计划时期
【单选题】
坚持党的基本路线不动摇,关键是___
A. 坚持以经济建设为中心不动摇
B. 坚持改革开放不动摇
C. 坚持党的领导不动摇
D. 坚持社会主义道路不动摇
【单选题】
我们党的最大政治优势是___
A. 以马克思主义为指导
B. 讲大局、讲团结、讲稳定
C. 善于组织群众、宣传群众、联系群众
D. 从严治党
【单选题】
我国经济体制改革的中心环节是___
A. 调整经济结构
B. 走新型工业化道路
C. 实施可持续发展战略
D. 国有企业改革
【单选题】
我们党全部工作的出发点和落脚点就是___
A. “三个代表”重要思想
B. 全面建设小康社会
C. 坚持与时俱进
D. 不断实现好维护好发展好最广大人民的根本利益
【单选题】
要全面落实科学技术是第一生产力的思想,就是要___
A. 走新型工业化道路
B. 实施可持续发展战略
C. 大力实施科教兴国战略
D. 实现速度和结构、质量、效益的统一
【单选题】
提高经济运行的质量和效益,关键是 ___
A. 解决结构不合理的问题
B. 加快经济发展速度
C. 扩大内需
D. 可持续发展
【单选题】
当前我国发展的阶段性特征,是___在新世纪新阶段的具体表现。
A. 社会主义初级阶段基本路线
B. 社会主义初级阶段基本国情
C. 社会主义初级阶段基本纲领
D. 社会主义初级阶段基本形势
【单选题】
党的十七大,是我们党在___关键阶段召开的一次十分重要的代表大会。
A. 改革发展
B. 改革调整
C. 开放巩固
D. 改革开放
【单选题】
确定科学发展观的根本依据是___
A. 社会主义初级阶段的基本国情
B. 社会主义和谐社会的内在要求
C. 新世纪新阶段的阶段性特征
D. 全球化时代的国际环境
【单选题】
___伟大旗帜,是当代中国发展进步的旗帜,是全党全国各族人民团结奋斗的旗帜。
A. 中国特色社会主义
B. 有中国特色社会主义
C. 中国现代化
D. 社会主义
【单选题】
科学发展观的第一要义是___。
A. 科教兴国
B. 要用新的发展思路实现更快更好地发展
C. 发展
D. 发展战略
【单选题】
科学发展观的基本要求是___。
A. 发展
B. 全面协调可持续
C. 统筹兼顾
D. 以人为本
【单选题】
科学发展观的内涵极为丰富,其基本要求是___
A. 以人为本
B. 执政为民
C. 全面协调可持续
D. 统筹兼顾
【单选题】
以人为本,体现了马克思主义基本原理中的___。
A. 历史唯物论
B. 辩证唯物论
C. 实践论
D. 认识论
【单选题】
科学发展观的出发点和落脚点是___
A. 全面的发展
B. 协调的发展
C. 可持续的发展
D. 促进经济社会和人的全面发展
【单选题】
科学发展观的实质是___
A. 速度至关重要
B. 以人为本
C. 要实现经济社会又好又快的发展
D. 全面协调可持续
【单选题】
___是科学发展的受益者,也是科学发展的实践者和推动者。
A. 人民群众
B. 领导干部
C. 知识分子
D. 公务员
【单选题】
全面发展是科学发展观的基本要求之一,就是要以___为中心,全面推进经济、政治、文化建设,实现经济发展和社会全面进步。
A. 经济建设
B. 科学文化发展
C. 人民群众的素质
D. 改革开放的深度
【单选题】
必须坚持把___作为党执政兴国的第一要务。
A. 科教兴国
B. 科学发展
C. 执政兴国
D. 人民幸福
【单选题】
深入贯彻落实科学发展观,要始终坚持以___为中心,以发展为主题。
A. 政治建设
B. 文化建设
C. 经济建设
D. 社会建设
【单选题】
构建社会主义和谐社会的领导核心和依靠力量是___
A. 坚持以人为本
B. 坚持科学发展
C. 坚持正确处理改革发展稳定的关系
D. 坚持在党的领导下全社会共同建设
【单选题】
生态文明的核心是___
A. 正确处理人与自然的关系
B. 建设资源节约型社会
C. 建设环境友好型社会
D. 发展循环经济
【单选题】
树立和落实科学发展观,是我国改革开放实践经验的总结,是战胜___给我们的重要启示,也是推进全面建设小康社会的迫切要求。
A. 自然灾害
B. 非典疫情
C. 经济危机
D. 汶川地震
【单选题】
在人为本,就是以___为本。
A. 最广大人民的根本利益
B. 统治阶级的根本利益
C. 经济社会的快速发展
D. 改革开放
【单选题】
深入贯彻落实科学发展观,要坚持把___同四项基本原则、改革开放这两个基本点统一于发展的伟大实践,任何时候都决不能动摇。
A. 以经济建设为中心
B. 改善民生
C. 以人的发展为中心
D. 以经济建设和人的全面发展为中心
【单选题】
办实事,做到___。
A. 权为民所用、心为民所系、利为民所享
B. 权为民所享、情为民所系、利为民所谋
C. 权为民所用、情为民所系、利为民所谋
D. 权为民所享、心为民所系、利为民所谋
推荐试题
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
【单选题】
Which statements about the native VLAN is true ?___
A. It is susceptible to VLAN hopping attacks.
B. It is the Cisco recommended VLAN for switch-management traffic
C. It is most secure when it is a ssigned to vLAn 1.
D. It is the cisco-recomme nded vlan for user traffic
【单选题】
There are two versions of IKE:IKEv1 and IKEv2. Both IKEv1 and IKEv2 protocols operate in phases IKEv1 operates in two phases. IKEv2 operates in how many phases?___
【单选题】
What does the dh group refer to?___
A. length of key for hashing C
B. length of key for encryption
C. tunnel lifetime key
D. length of key for key exchange
E. length of key for authentication
【单选题】
Which path do you follow to enable aaa through the SDM ?___
A. Configure Tasks > AAA
B. Configure > Addition Authentication > AAA
C. Configure > AAA
D. Configure > Additional Tasks > AAA
E. Configure Authentication > AAA
【单选题】
which technology cloud be used on top of an MPLS VPN to add confidentiality ?___
A. IPsec
B. 3DES
C. AES
D. SSL
【单选题】
Which term is most closely aligned with the basic purpose of a SIEM solution? ___
A. Non-Repudiation
B. Accountability
C. Causality
D. Repudiation
【单选题】
You have just deployed SNMPv3 in your environment, Your manager asks you to make sure that our SNMP agents can only talk to the SNMP Manager. What would you configure on your SNMI agents to satisfy this request?___
A. A SNMP View containing the SNMP managers
B. Routing Filter with the SNMP managers in it applied outbound
C. A standard ACL containing the SNMP managers applied to the SNMP configuration
D. A SNMP Group containing the SNMP managers
【单选题】
Which feature prevents loops by moving a nontrunking port into an errdisable state when a BPDU is received on that port?___
A. BPDU filte
B. DHCP snooping
C. BPDU guard
D. Port Fast
【单选题】
Which command enables port security to use sticky MAC addresses on a switch?___
A. switchport port-security violation restrict
B. switchport port-security mac-address sticky
C. switchport port-security violation protect
D. switchport port-security
【单选题】
When you edit an IPS subsignature, what is the effect on the parent signature and the family of subsignatures?___
A. The change applies to the parent signature and the entire family of subsignatures
B. The change applies to the parent signature and the subsignature that you edit
C. The change applies only to subsignatures that are numbered sequentially after the subsignature that you edit
D. Other signatures are unaffected, the change applies only to the subsignature that you dit
【单选题】
Which type of mechanism does Cisco FirePOWER de ploy to protect ag detected moving across other networks?___
A. antivirus scanning
B. policy-based
C. reputation-based
D. signature-based
【单选题】
What action must you take on the ise to blacklist a wired device?___
A. Locate the switch through which the device is connected and push an a cl restricting all access by the device
B. Issue a CoA request for the de vice's mac address to each access switch in the network
C. Revoke the device's certificate so it is unable to authenticate to the network
D. Add the device's MAc address to a list of black listed devices
【单选题】
Which type of firewall can perform deep packet inspection?___
A. packet-filtering firewall
B. stateless firewall
C. application firewall
D. personal firewall
【单选题】
What is the main purpose of Control Plane Policing?___
A. to prevent exhaustion of route-proce ssor resources
B. to organize the egress packet queues
C. to define traffic classes
D. to maintain the policy map
【单选题】
Which attack can be prevented by OSPF authentication?___
A. smurf attack
B. IP spoofing attack
C. denial of service attack
D. buffer overflow attack
【单选题】
What is the best definition of hairpinning?___
A. ingress traffic that traverses the outbound interface on a device
B. traffic that enters one interface on a device and that exits through another interface
C. traffic that enters and exits a device through the same interface
D. traffic that tunnels through a device interface
【单选题】
Which SNMPv3 security level provides authentication using HMAC with MD5, but does not use encryption?___
A. authPriv
B. authNo Priv
C. noAuthNoPriv
D. NoauthPriv
【单选题】
You have implemented a dynamic blacklist, using security intelligence to block illicit network activity. However, the blacklist contains several approved connections that users must access for usiness pur poses. Which action can you take to retain the blacklist while allowing users to access the approve d sites?___
A. Create a whitelist and manually add the approved addresses.
B. Disable the dynamic blacklist and deny the specif ic address on a whitelist while permitting the others
C. Edit the dynamic blacklist to remove the approved addresses
D. Disable the dynamic blacklist and create a static blacklist in its place
【单选题】
When connecting to an external resource,you must change a source IP address to use one IP address from a range of 207.165.201.1 to 207.165.1.30. Which option do you implement ?___
A. dynamic source NAT that uses an IP ad dress as a mapped source
B. static destination NAT that uses a subnet as a real de stination
C. dynamic source NAT that uses a range as a mapped source
D. static destination NAT that uses a subnet as a real source
【单选题】
Refer to the exhibit. 【nat(ins,any)dynamic interface】Which ty pe of NaT is configured on a Cisco ASA?___
A. dynamic NAT
B. source identity NAT
C. dynamic PAT
D. identity twice NAT
【单选题】
Which mitigation technology for web-based threats prevents the removal of confidential data from the network?___
A. CTA
B. DCA
C. AMP
D. DLP
【单选题】
Refer to the exhibit. What is the effect of the given configuration?___
A. It establishes the preshared key for the switch
B. It establishes the preshared key for the firewall.
C. It establishes the preshared key for the Cisco ISE appliance
D. It establishes the preshared key for the router.
【多选题】
What are two major considerations when choosing between a SPAN and a TAP when plementing IPS?___
A. the type of analysis the iS will perform
B. the amount of bandwidth available
C. whether RX and TX signals will use separate ports
D. the way in which media errors will be handled
E. the way in which dropped packets will be handled
【多选题】
What are two direct-to-tower methods for redirecting web traffic to Cisco Cloud Web Security?___
A. third-party proxies
B. Cisco Catalyst platforms
C. Cisco NAC Agent
D. hosted PAC files
E. CiSco ISE
