【单选题】
Which type of attack most commonly involves a direct attack on a network?___
A. :phishing
B. Trojan horse
C. denial of service
D. social engineering
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【单选题】
What information does the key length provide in an encryption algorithm?___
A. the cipher block size
B. the hash bloc k size
C. the number of permutations
D. the packet size
【单选题】
How do you verify TaCACS+ connectivity to a device?___
A. You successfully log in to the device by using the local credentials
B. You connect via console port and receive the login prompt.
C. You connect to the device using SSH and receive the login prompt.
D. You successfully log in to the device by using ACS credentials
【单选题】
Which term best describes the concept of preventing the modification of data in transit and in storage?___
A. availability
B. confidentially
C. fidelity
D. integrity
【单选题】
Which loS command is used to define the authentication key for ntp?___
A. switch(config )#ntp authentication-key 1 mds Clcs
B. switch(config )#ntp authenticate
C. switch(config)#ntp trusted-key 1
D. switch(config)#ntp source 192.168.0.1
【单选题】
What is true about the cisco lOS Resilient Configuration feature ?___
A. The feature can be disabled through a remote session
B. There is additional space required to secure the primary cisco lOS image file.
C. The feature automatically detects image or configuration version mismatch.
D. Remote storage is used for securing files
【单选题】
When is the default deny all policy an exception in zone-based firewalls?___
A. when traffic terminates on the router via the self zone
B. when traffic traverses two interfaces in different zones
C. when traffic traverses two interfaces in the same zone
D. when traffic sources from the router via the self zone
【单选题】
.If an access port is assigned as an isolated port in a PVLAN, which network ports can it communicate with?___
A. promiscuous ports in the same PLVAN
B. isolated ports in the same PVLAN
C. all ports in the same PAVLAN at ILAR
D. all ports in the adjacent PVLAN
【单选题】
Which IPSEC mode is used to encypt traffic directly between a client and a server VPN endpoint?___
A. quick mode
B. transport mode
C. aggressive mode
D. tunnel mode
【单选题】
Which command do you enter to verify that a vpn connection is established between two endpoints and that the connection is passing traffic? ___
A. Firewall#sh crypto session
B. Firewall#debug crypto isakmp
C. Firewall#tsh crypto ipsec sa
D. Firewall#sh crypto isakmp sa
【单选题】
which type of Pvlan port allows communication from all port types?___
A. isolated
B. in -line
C. community
D. promiscuous
【单选题】
Which command do you enter to configure your firewall to conceal internal addresses?___
A. no ip directed-broadcast
B. no ip logging facility
C. no proxy-arp
D. no ip inspect audit-trial
E. no ip inspect
F. route
【单选题】
Which feature defines a campus area network? ___
A. It has a limited number of segments.
B. It has limited or restricted Internet access
C. It lacks ex1ternal connectivity.
D. It has a single geographic location
【单选题】
What technology can you use to provide data confidentiality data integrity and data origin authentication on your network?___
A. IPSec
B. Certificate Authority
C. IKE
D. Data
E. ncryption Standards
【单选题】
which standard is a hybrid protocol that uses oakley and skerne ke y exchanges is an ISAKMP framework?___
【单选题】
What is the actual los privilege level of User Exec mode?___
【单选题】
What is the effect of the asa command crypto isakmp nat-traversal?___
A. It opens port 500 only on the out side interface
B. It opens port 500 only on the inside interface
C. It opens port 4500 on all interfaces that are IPSec enabled
D. It opens port 4500 only on the out side interfac
【单选题】
Which Fire POWER preproce ssor engine is used to prevent SYN attacks?___
A. Inline normalization
B. IP Defragmentation
C. Ports can
D. etection
【单选题】
Which NAT type allows objects or groups to reference an IP address ?___
A. identity NAt
B. static NAT
C. dynamic
D. dynamic NAT
【单选题】
Which Auto NAT policies are processed first?___
A. Dynamic NAT with longest prefix
B. Dynamic NAT with shortest prefix
C. static NAT with longest prefix
D. static NAT with shortest prefix
【单选题】
Which feature allows a dynamic Pat pool to se lect the next address in the pat pool instead of the next port of an existing address?___
A. next IP
B. round robin
C. dynamic rotation
D. NAT address rotation
【单选题】
Which IPS detection method can you use to detect attacks that are based on the attackers IP address?___
A. anomally-based
B. policy-based
C. signature-based
D. reputation-based
【单选题】
Which type of encryption technology has the broadest platform support?___
A. software
B. middleware
C. file-level
D. hardware
【单选题】
Which type of address translation supports the initiation of comm unications bidirectionally ?___
A. multi-session PAT
B. dynamic NAT
C. dynamic PAT
D. static NAT
【单选题】
Which label is given to a person who uses existing computer scripts to hack into computers while lacking the expertise to write the own?___
A. script kiddy
B. white hat hacker
C. hacktivist
D. phreaker
【单选题】
What is the primary purpose of a defined rule in an IPS?___
A. to configure an event action that takes place when a signature is triggered
B. to define a set of actions that occur when a specific user logs in to the system
C. to configure an event action that is pre-defined by the system administrator
D. to detect internal attacks
【单选题】
Which option is the default valuce for the Diffie- Hell man group when configuring a site-to-site VPn on an asa device ?___
A. Group 1
B. Group 2
C. Group 5
D. Group 7
【单选题】
Which feature filters CoPP packets?___
A. access control lists
B. class maps
C. policy maps
D. route maps
【单选题】
Which command is used in global configuration mode to enable AAA?___
A. configure-model aaa
B. configure aaa-modelA
C. aaa new-model
D. aaa
E. XEC
【单选题】
Which statement about the given configuration is true?___
A. The single-connection command causes the device to establish one connection for all TACACS
B. The single-connection command causes the device to process one TacAcs request and then move to the next server
C. The timeout com mand causes the device to move to the next server after 20 seconds of TACACS inactive
【多选题】
What are two well-known security terms?___
A. phishing//网络钓鱼
B. ransomware //勒索软件
C. BPDU guard
D. LACP
E. hair-pinning
【多选题】
Which two commands must you enter to securely archive the primary bootset of a device___
A. router(config )#secure boot-config
B. router(config)#auto secure
C. router(config)#secure boot-image
D. router(config)#service passw ord-encryption
【多选题】
Which two functions can SIEM provide ?___
A. correlation between logs and events from multiple systems
B. event aggregation that allows for reduced log storage requirements
C. proactive malware analysis to block malicious traffic
D. dual-factor authentication
E. centralized firewall management
【多选题】
Which two features of Cisco Web Reputation tracking can mitigate web-based threats?___
A. buffer overflow filterin dhsuowip
B. Bayesian filters
C. web reputation filters
D. outbreak filtering
E. exploit filtering
【多选题】
What are two challenges when deploying host- level IPS? ___
A. The deployment must support multiple operating systems.
B. It is unable to provide a complete networ k picture of an attack.
C. It is unable to determine the outcome of e very attack that it detects
D. It does not provide protection for offsite computers
E. It is unable to detect fragmentation attacks
【多选题】
Which technology can be used to rate data fidelity and to provide an authenticated hash for data?___
A. file reputation
B. file analysis
C. signature updates
D. network blocking
【多选题】
Which two statements about host-based iPS solutions are true?___
A. It uses only signature-based polices
B. It can be deployed at the perimeter.
C. It can be have more restrictive policies than network-based IPS
D. it works with deployed firewall
E. It can generate alerts based on be havior at the de sto
【多选题】
When two events would cause the state table of a stateful firewall to be updated? ___
A. when a packet is evaluated against the outbound access list and is denied
B. when a con nection is created
C. when rate-limiting is applied
D. when a connection s timer has expired within the state table.
E. when an outbound packet is forwarded to the outbound interface
【多选题】
Which two characteristics apply to an intrusion Prevention System(IPS)?___
A. Cannot drop the packet on its own
B. Cabled directly inline with the flow of the network traffic
C. Runs in promiscuous mode wat
D. Does not add delay to the original traffic
E. Can drop traffic based on a set of rules
【多选题】
crypto ipsec trans form-set myset esp-md5-hmac esp-aes-256,What are two effects of the given command?___
A. It configures authentication use AES 256.
B. It configures authentication to use MD5 HMAC
C. It configures authentication use AES 256.
D. It configures encryption to ase MD5 HMAC.
E. It configures encryption to use AES 256
【多选题】
your security team has discovered a malicious program that has been harvesting the CEos email messages and the com pany 's user database for the last 6 months. What are two possible types of attacks your team discovered?___
A. social activism
B. EPolymorphic Virus
C. advanced persistent threat
D. drive-by spyware
E. targeted malware
推荐试题
【单选题】
在列车运行速度超过 ___ 的双线区段,应采用速差式自动闭塞,列车紧急制动距离由两个及以上闭塞分区长度保证。
A. 110km/h
B. 115km/h
C. 120km/h
D. 125km/h
【单选题】
___ 设备,在控制台 或操纵、表示分列式的表示盘及监视器. 上应能监督线路与道岔区间是否占用、进路开通及锁闭,复示有关信号机的显示。
A. 集中联锁
B. 非集中联锁
C. 联锁
D. 色灯电锁器联锁
【单选题】
编组站、区段站和电源可靠的其他车站,均应采用 ___ 。
A. 集中联锁
B. 非集中联锁
C. 发车集中联锁
D. 调车区集中联锁
【单选题】
联锁设备分为集中联锁和非集中联锁,其中集中联锁分为 ___ 。
A. 继电联锁和计算机联锁
B. 继电联锁和臂板电锁器联锁
C. 计算机联锁和色灯电锁器联锁
D. 臂板电锁器联锁和色灯电锁器联锁
【单选题】
列车调度指挥系统是铁路运输调度指挥的基础设施,是铁路运输生产的重要技术设备,由 ___ 三级构成。
A. 铁路局、电务段、车间
B. 电务段、车间、工区
C. 铁道部、铁路局、电务段
D. 铁道部、铁路局、车站
【单选题】
信号工岗位职业道德规范,是指“___、文明作业;遵章守纪、尽职尽责;主动协作、共保安全。”
A. 堵塞浪费
B. 令行禁止
C. 勇于吃苦
D. 热情服务
【单选题】
信号微机监测系统滚动数据存储时间大站不少于 ___ 。
A. 16h
B. 24h
C. 36h
D. 48h
【单选题】
在信号微机监测系统人工测试___ 项目时必须在天窗点内进行。
A. 漏流
B. 绝缘
C. 灯丝电压
D. 电源相序
【单选题】
在信号微机监测系统中,道岔缺口属于 ___ 。
A. 不报警
B. 一级报警
C. 二级报警
D. 三级报警
【单选题】
信号微机监测系统2DQJ光电探头黄灯灭绿灯亮表示道岔在 ___ 。
A. 定位
B. 反位
C. 四开
D. 采集故障
【单选题】
在信号微机监测系统中,破封按钮动作记录属于 ___ 。
A. 不报警
B. 一级报警
C. 二级报警
D. 三级报警
【单选题】
在信号微机监测系统中,主副电源切换属于 ___ 。
A. 不报警
B. 一级报警
C. 二级报警
D. 三级报警
【单选题】
设在辅助所的 ___ 与有关站的闭塞设备应联锁。
A. 信号设备
B. 道岔
C. 信号机
D. 闭塞设备
【单选题】
双向运行的自动闭塞区段,当区间被占用或轨道电路失效时,经两站工作人员确认后 ___ 。
A. 可通过规定的手续改变运行方向
B. 立刻命令列车停车
C. 不可通过规定的手续改变运行方向
D. 可改变闭塞方式
【单选题】
双向运行的自动闭塞区段,当发生设备故障或受外电干扰时,___ 。
A. 不得出现敌对发车状态
B. 可以出现敌对发车状态
C. 不能发车
D. 不能接车
【单选题】
闭塞设备中,当任一元件、部件发生故障或钢轨绝缘破损时,___ 。
A. 可以出现信号的升级显示
B. 均不得出现信号的升级显示
C. 信号显示不变
D. 信号灭灯
【单选题】
和谐铁路建设目标是“运能充足、装备先进、___、内部和谐”。
A. 运输安全、管理科学、节能环保、服务优质
B. 安全可靠、队伍稳定、节能环保、服务优质
C. 安全可靠、管理科学、节能环保、增运增收
D. 安全可靠、管理科学、节能环保、服务优质
【单选题】
铁路运输应为旅客、货主提供 ___ 三种层次的服务。
A. 标准服务、延深服务、超值服务
B. 一般性服务、人性化服务、超值服务
C. 标准服务、人性化服务、超值服务
D. 标准服务、人性化服务、特定服务
【单选题】
只有具备 ___ ,才能对自己的职业有一种责任感和使命感。
A. 道德精神
B. 服务精神
C. 敬业精神
D. 好学精神
【单选题】
尊客爱货,指的是铁路职工对自身服务对象的 ___ 和道德情感。
【单选题】
热情周到,指的是铁路运输服务的___ 及所要达到的效果。
A. 优质程度
B. 运输过程
C. 礼貌待客
D. 关心程度
【单选题】
尊重旅客货主主要表现在对旅客货主人格的尊重,对旅客货主乘车运货过程中 ___ 的满足。
A. 正当要求
B. 个人需求
C. 所有要求
D. 部分要求
【单选题】
仪表端庄实质上是一个人的思想情操、道德品质、文化修养和___ 的综合反映。
A. 衣帽整齐
B. 衣着洁净
C. 人格气质
D. 衣着时尚
【单选题】
在发展生产中,协作不仅提高个人生产力,而且创造了新的___ 。
A. 生产关系
B. 生产秩序
C. 生产力
D. 生产模式
【单选题】
铁路运输生产既要职工按照分工和要求,尽职尽责地做好本职工作,又要在___ ,互相帮助,主动配合,密切配合。
A. 单位领导下
B. 统一领导下
C. 部门领导下
D. 系统领导下
【单选题】
铁路职工职业技能的提高,是推广新技术、使用 ___ 的必要条件。
A. 新设备
B. 新技术
C. 新思路
D. 新场地
【单选题】
信誉是企业生存与发展的根本,信誉的关键在一个“ ___ ”字。
【单选题】
在社会主义初级阶段,艰苦奋斗、勇于奉献既是培养“四有”职工队伍的内在要求,又是社会主义 ___ 建设的重要内容。
A. 精神文明
B. 物质文明
C. 社会文化
D. 和谐社会
【单选题】
铁路职工爱护铁路一切设施,不仅包含爱护公共财物的含义,而且是自身___ 应该遵循的准则。
A. 利益关系
B. 职业道德
C. 职业习惯
D. 职业行为
【单选题】
一个铁路职工为了承担起自己的 ___ ,必须进行经常性的职业道德修养。
A. 岗位责任
B. 行为责任
C. 历史责任
D. 职业责任
【单选题】
铁路作为国民经济的大动脉,半军事化的 ___ 尤为突出。
A. 企业属性
B. 行业属性
C. 组织结构
D. 管理要求
【单选题】
铁路运输的联动和半军事化的特性,决定了铁路从业人员必须具有更加严密的 ___ 。
A. 职业纪律
B. 组织纪律
C. 技能素质
D. 思维方式
【单选题】
职业道德修养是一种通过自我教育、自我锻炼来提高自己的职业道德品质的 ___ 活动。
【单选题】
“慎独”重在___ ,是一种崇高的思想道德境界。
【单选题】
从 ___ 最能看出一个人的品质,从最细微的小处最能显示人的灵魂。
A. 工作场合
B. 言谈举止
C. 大众场合
D. 最隐蔽处
【单选题】
列车调度指挥系统应能满足 ___ 的要求,建立维护管理体制,保证设备不间断使用。
A. 高安全
B. 高实时性
C. 高可靠
D. 高安全、高可靠、高实时性
【单选题】
道德是人们用来评价别人和自己言行的标准与___。
【单选题】
道德是 ___人们之间关系的行为规范。
【单选题】
道德具有 ___等特点。
A. 规范性、多层次性、稳定性和社会性
B. 前瞻性、多层次性、稳定性和社会性
C. 规范性、多层次性、强制性和社会性
D. 规范性、普遍性、稳定性和社会性