相关试题
【判断题】
一般事故隐患是指危害和整改难度较小,发现后能够立即整改排除的隐患
【判断题】
一个单位的不同类型的应急救援预案要形成统一整体救援力量要统一安排
【判断题】
一个风险点内存在多个危险源,危险源包含在风险点内
【判断题】
KT公司设计的裂解炉,当汽包液位超高时,锅炉给水供水电磁阀自动关闭,这属于紧急切断装置对裂解炉汽包的保护,防止汽包超压
【判断题】
装置内应设贯通式道路道路应有不少于3个出入口且出入口宜位于不同方位
【判断题】
迷宫密封的密封间隙越小密封齿越多其密封效果越好所以实际使用中密封齿越多密封间隙越小越好
【判断题】
所有炉管在安装前都需要逐根进行水压试验
【判断题】
装有催化剂的反应器、有填充物的大型压力容器全面检验每六年一次
【判断题】
进行有关化学液体的操作时应使用太阳镜保护面部
【判断题】
禁止将含有汞、镉、砷、铬、铅、氰化物、黄磷等的可溶性剧毒废渣向水体排放、倾倒可以直接埋入地下
【判断题】
一氧化碳在空气中的允许浓度为30mg/m
【判断题】
稀释蒸汽液面指示不准的危害为稀释蒸汽带液,夹带钠离子等杂质,破坏炉管
【判断题】
安全标志包括禁止标志、警告标志、指令标志和提示标志等
【判断题】
劳动防护用品是指由生产经营单位为从业人员配备的,使其在劳动过程中免遭或者减轻事故伤害及职业危害的个人防护装备
【判断题】
使用听诊棒时主要通过感受设备的振动从而来判断设备工况
【判断题】
裂解炉不烧焦的情况下降温炉管部分或全部堵塞的机会是很小的
【判断题】
企业要充分利用国家对安全生产专用设备所得税优惠、安全生产费用税前扣除等财税支持政策。在年度预算中必须保证应急救援装备、设施和演练、宣传、培训、教育等投入,提高救护队员的工资福利及其他相关待遇
【判断题】
进入受限空间作业时电焊机、变压器、气瓶应放置在受限空间内
【判断题】
使用中的原料罐氮封停用的危害为可燃气从呼吸阀外漏,达到爆炸极限,遇明火爆炸
【判断题】
为了有利于裂解气的分离裂解气压缩机出口压力越高越好
【判断题】
用人单位应当按照规定对从事使用高毒物品作业的劳动者进行岗位轮换
【判断题】
应急组织指挥体系或者职责已经调整的生产经营单位应急预案,可三年后修订
【判断题】
可燃气体与空气形成混合物遇到明火就爆炸
【判断题】
生产经营单位可以以货币或者其他物品替代应当按规定配备的劳动防护用品
【判断题】
佩戴空气呼吸器作业时,当空气呼吸器罐内压力低于5MPa.发出报警声时,必须撤离危险区
【判断题】
实行承包、租赁或者委托经营、管理时消防车通道、涉及公共消防安全的旒散设施和其他建筑消防设施应当由产权单位或者委托管理的单位统一管理
【判断题】
阻聚剂有毒对皮肤有刺激性。如接触皮肤,可用凊水、肥皂或洗涤剂冼净
【判断题】
乙炔加氢反应是吸热反应,因此裂解气进入反应器前需要用低压蒸汽加热
【判断题】
滤毒罐存放有效期为2年,超过期限要重新鉴定
【判断题】
压力容器运行操作时应保持平稳,禁止超负荷、骤然升降温度或压力
【判断题】
可燃烧气体或蒸汽的危险程度与它们的爆炸下限成正比
【判断题】
进入气体分析不合格的容器内作业应佩戴隔绝式呼吸保护装备
【判断题】
硫化氢是强烈的神经毒物,有臭鸡蛋气味,臭味的增强与浓度的升高成正比
【判断题】
如果误食了甲醛要立刻吐出来,在医生到达之前每隔15min喝一杯含有一茶匙小苏打的水
【判断题】
应急预案的编制可以应急准备代替应急保障措施,也能满足本地区、本部门、本单位的应急工作要求
【判断题】
除矿山、建筑施工单位和易燃易爆物品、危险化学品、放射性物品等危险物品的生产、经营、储存单位和中型规模以上的其他生产单位以外,其他生产经营单位应当对本单位编制的应急预案进行论证
推荐试题
【单选题】
Which command do you enter to verify the phase I status of a VPN connection?___
A. sh crypto se ssion
B. debug crypto isakmp
C. sh crypto isakmp sa
D. sh crypto ipsec sa
【单选题】
Refer to the exhibit. what is the e ffect of the given configuration?___
A. It enables authentication,
B. It prevents keychain authentication.
C. The two routers receive normal updates from one another.
D. The two device s are able to pass the message digest to one another.
【单选题】
Which command can you enter to configure OSPF to use hashing to authenticate routing updates?___
A. ip ospf aut hentication message-digest
B. neighbor 192 168.0 112 cost md5
C. ip ospf priority 1
D. ip ospf aut hentication-key
【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
【单选题】
How is management traffic isolated on a Cisco ASR 1002?___
A. Traffic isolation is done on the vlan level
B. There is no management traffic isolation on a Cisco ASR 1002
C. Traffic is isolated based upon how you configure routing on the device
D. The management interface is configured in a special vRF that provides traffic isolation from the default routing table
【单选题】
Which statement about NaT table evaluation in the asa is true?___
A. After-auto NAT polices are appl d first
B. Manual NAT policies are applied first
C. the asa uses the most specific match
D. Auto NAT policies are applied first
【单选题】
Which information can you display by executing the show crypto ipsec sa command?___
A. ISAKMP SAs that are established between two peers
B. recent changes to the IP address of a peer router
C. proxy infor mation for the connection between two peers
D. IPsec SAs established between two peers
【单选题】
How can you prevent NAT rules from sending traffic to incorrect interfaces?___
A. Assign the output interface in the NAT statement
B. Add the no-proxy-arp command to the nat line.
C. Configure twice NAT instead o bject NAT. 5
D. Use packet-tracer rules to reroute misrouted NAT entries.
【单选题】
What term can be defined as the securing, control, and identification of digital data?___
A. cryptography
B. crypto key
C. cryptoanalysis
D. cryptology
【单选题】
Which feature in the dNS security module provide on and off network DNS protection?___
A. Data Loss Prevention
B. Umbrella
C. Real-time sandboxing
D. Layer-4 monitoring
【单选题】
Which a dverse consequence can occur on a network without BPDu guard ?___
A. The olde st switch can be elected as the root bridge
B. Unauthorized switches that are connected to the network can cause spanning-tree loops
C.
D. ouble tagging can cause the switches to experience CAM table overload.
【单选题】
What configuration is required for multitenancy ?___
A. shared infrastructure
B. multiple carriers
C. co-located resources
D. multiple separate zones
【单选题】
Why does ISE require its own certificate issued by a trusted CA?___
A. ISEs certificate allows guest devices to validate it as a trusted network device
B. It generates certificates for guest devices ba sed on its own certificate
C. It requests certificates for guest devices from the Ca server based on its own certificate.
D. ISE's certificate allows it to join the network security framework
【单选题】
which attack involves large numbers of ICMP packets with a spoofed source IP address?___
A. smurf attack
B. Teardrop attack
C. Nuke attack
D. SYN Flood attack
【单选题】
Which statement about interface and global access rules is true?___
A. Interface access rules are processed before global access rules.
B. Global access rules apply only to outbound traffic, but interface access rules can be applied in either direction
C. The implicit allow is proce ssed after both the global and interface access rules
D. If an interface access rule is applied, the global access rule is ignored
【单选题】
Which type of malicious software can create a back-door into a device or network?___
A. bot
B. worm
C. virus
D. Trojan
【单选题】
Which security term refers to the like lihood that a weakness will be exploited to cause damage to an asset?___
A. threat
B. risk
C. countermeasure
D. vulnerability
【单选题】
Which IPS detection method examines network traffic for preconfigured patterns?___
A. signature-based detection
B. honey-pot detection
C. anomaly-based detection
D. policy-based detection
【单选题】
What is an advantage of split tunneling ?___
A. It allows users with a VpN connection to a corporate network to access the internet with sending traffic across the cor porate network.
B. It allows users with a vpn connection to a corporate network to access the internet by using the vPN for security.
C. It protects traffic on the private network from users on the public network
D. It enables the VPN server to filter traffic more efficiently
【单选题】
Which IDS/IPS state misidentifies acceptable behavior as an attack ?___
A. false negative
B. true positive NEKA G
C. true negative
D. false positive
【单选题】
What is the maximum num ber of methods that a single method list can contain?___
【单选题】
Which command enables authentication at the oSPFv2 routing process level?___
A. ip ospf authentication message-digest
B. area 0 authentication message-digest
C. ip ospf message-digest-key 1 mds Cisco
D. area 0 authentication ipsec spi 500 md5 1234567890ABCDEF1234567890ABCDEF
【单选题】
Which type of firewall monitors a nd protects a specific system?___
A. firewall
B. application firewall
C. stateless firewall wvp
D. personal firewall
【单选题】
On an ASA, which maps are used to identify traffic?___
A. Route maps
B. Policy maps
C. Class maps
D. Service maps
【单选题】
Which type of social engineering attack targets top executives?___
A. whaling
B. vishin
C. spear phishing ng
D. baiting
【单选题】
What is the minimum Cisco lOS version that supports zone-based firewalls?___
A. 12.1T
B. 15.1
C. 15.0
D. 124
【单选题】
In which type of attack does an attacker overwrite an entry in the CAM table to divert traffic destined to a legitimate host?___
A. DHCP spoofing
B. ARP spoofing
C. CAM table overflow
D. MAC spoofing
【多选题】
Which two attack types can be prevented with the impleme ntation of a Cisco IPS solution?___
A. DDos
B. man-in-the-middle
C. worms
D. ARP spoofing
E. VLAN hopping
【多选题】
choose four___
A. DHCP snooping ——————————blocks DHCP messages
B. Dynamic ARP inspection——————verifies IP-to-MAC traffic on untrusted ports
C. IP sources guard ——————————provides layer 2 interface security with ports ACLs
D. Port security————————————mitigates MAC-address spoofing at the access interface
【多选题】
choose four___
A. Step1————————run the system setup wizard
B. Step2————————add an authentication realm
C. Step3————————configure identity management
D. Step4————————configure directory group
【多选题】
What are two advanced features of the Cisco AMp solution for endpoints ___
A. contemplation
B. foresight
C. sandboxing
D. reputation
E. reflection
【多选题】
Which two characteristics of RADIUS are true?___
A. It encrypts only the password between user and server.
B. It uses TCP ports 1812/1813
C. It uses UDP ports 1812/1813.
D. It uses UDP port 49
E. It uses TCP port 49
【多选题】
What are two challenges of using a network-based IPS? ___
A. It is unable to determine whether a detected attack was successful
B. It requires additional storage and proce ssor capacity on syslog servers
C. As the network expands, it requires you to add more sensors.
D. It is unable to detect attacks across the entire network
E. It must support multiple operating systems.
【多选题】
What are two default be haviors of the traffic on a zone-based firewall?___
A. Traffic within the self -zone uses an im plicit deny all.
B. All traffic between zones is implicitly blocked
C. Communication is allowed between interfadAss that are members of the same zone
D. Communication is blocked between interfaces that are members of the same zone
E. The CBAC rules that are configured on router interfaces apply to zone interfaces
【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
