Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code = getmirror

Home
GIAC
Security Administration
GSEC
GIAC Security Essentials Questions and Answers

Pass the GIAC Security Administration GSEC Questions and answers with ExamsMirror

Practice at least 50% of the questions to maximize your chances of passing.

Exam GSEC Premium Access

View all detail and faqs for the GSEC exam

Go to Exam

746 Students Passed

89% Average Score

94% Same Questions

Viewing page 6 out of 12 pages

Viewing questions 51-60 out of questions

Questions # 51:

Which class of IDS events occur when the IDS fails to alert on malicious data?

Options:

True Negative

True Positive

False Positive

False Negative

Answer

Questions # 52:

When file integrity checking is enabled, what feature is used to determine if a monitored file has been modified?

Options:

file size

Last modified dale

File change notifications in the Application Event Log

One-way hash

Answer

Questions # 53:

The Linux command to make the /etc/shadow file, already owned by root, readable only by root is which of the following?

Options:

chmod 444/etc/shadow

chown root: root/etc/shadow

chmod 400/etc/shadow

chown 400 /etc/shadow

Answer

Questions # 54:

The previous system administrator at your company used to rely heavily on email lists, such as vendor lists and Bug Traq to get information about updates and patches. While a useful means of acquiring data, this requires time and effort to read through. In an effort to speed things up, you decide to switch to completely automated updates and patching. You set up your systems to automatically patch your production servers using a cron job and a scripted apt-get upgrade command. Of the following reasons, which explains why you may want to avoid this plan?

Options:

The apt-get upgrade command doesn't work with the cron command because of incompatibility

Relying on vendor and 3rd party email lists enables updates via email, for even faster patching

Automated patching of production servers without prior testing may result in unexpected behavior or failures

The command apt-get upgrade is incorrect, you need to run the apt-get update command

Answer

Questions # 55:

What protocol is a WAN technology?

Options:

802.11

802.3

Ethernet

Frame Relay

Answer

Questions # 56:

Which of the following is a benefit to utilizing Cygwin for Windows?

Options:

The ability to install a complete Red Hat operating system Install on Windows.

The ability to bring much more powerful scripting capabilities to Windows.

The ability to run a production Apache server.

The ability to install a complete Ubuntu operating system install on Windows.

Answer

Questions # 57:

Your organization is developing a network protection plan. No single aspect of your network seems more important than any other. You decide to avoid separating your network into segments or categorizing the systems on the network. Each device on the network is essentially protected in the same manner as all other devices.

This style of defense-in-depth protection is best described as which of the following?

Options:

Uniform protection

Threat-oriented

Information-centric

Protected enclaves

Answer

Questions # 58:

You have reason to believe someone with a domain user account has been accessing and modifying sensitive spreadsheets on one of your application servers. You decide to enable auditing for the files to see who is accessing and changing them. You enable the Audit Object Access policy on the files via Group Policy. Two weeks later, when you check on the audit logs, you see they are empty. What is the most likely reason this has happened?

Options:

You cannot enable auditing on files, just folders

You did not enable auditing on the files

The person modifying the files turned off auditing

You did not save the change to the policy

Answer

Questions # 59:

What is the name of the command-line tool for Windows that can be used to manage audit policies on remote systems?

Options:

SECEDTT.EXE

POLCLI.EXE

REMOTEAUDIT.EXE

AUDITPOL.EXE

Answer

Questions # 60:

What Amazon Web Services (AWS) term describes a grouping of at least one datacenter with redundant power, high speed connections to other data centres and the Internet?