• 0

Terms Related to Security+ Cert.


Go to solution Solved by Matt,

Question

netsurfer802

 

 I've taken a pre-test for the Security+ certification and was wondering if the following terms could be explained...since I've tried to look them up online and haven't come across a clear explanation:

RBLS

health policies

Due Care

Text in which RBLS appears:

Which of the following mail servers is vulnerable to abuse as an open relay?

Select one:

a. POP3

b. SMTP 

c. RBLS

d. IMAP

Text in which health policies appears:

When planning a network access control system, which of the following elements are important (choose THREE)?

Select one or more:

a. Installing TPMs in all user hardware

b. Devising remediation options 

c. Devising health policies

d. Creating a segmented network using VLANs 

e. Deploying the system as quickly as possible

Text in which Due Care appears:

What type of operational policy would forbid system administrators from abusing their privileges to snoop on user data files?

Select one:

a. Due Care

b. Need To Know

c. Acceptable Use

d. Code of Ethics

Thanks in advanced for any helpful explanation/s.

 

Link to post
Share on other sites

2 answers to this question

Recommended Posts

  • 0
Matt

This is all explained in a glossary.  When I was studying for my SSCP, all of these terms were clearly defined.

 

Real time blackhole list is a database of IPs of known spammers.  People that subscribe to these lists want to protect their email network from spammers.

 

Due care is a process, which is not limited to security, that simple proves that all was done to a best effort to prevent an incident.  If an organization shows that due care was taken, the chances of them being accused of negligence is decreased.

 

I am not familiar with health policies but this can easily be looked up.

Link to post
Share on other sites
  • 0
gohpep

Health policies are the policies you set to configure in NAC for endpoint checks to see if the computer is 'healthy'. You are defining what it means for a computer to be healthy, so it will be accepted into the network.

 

At least that's what I know. I would do some further research, but that's the general idea.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    No registered users viewing this page.

  • Similar Content

    • By Hum
      Yes, this is from March, but apparently not posted before.
       
      On paper, Roy Sun seemed an exemplary student. During his senior year at Purdue University, he made As in every class, despite rarely attending any of them.

      But in reality, he was failing. Instead of studying, he spent his time stealing professors? passwords so he could hack into the computer system and change his grades from Fs to As.

      ?It became so much easier to change my grades than going to class and working real hard,? Sun said in an Indiana courtroom last week, when he was sentenced to three months in jail.

      Sun joins a growing list of college students who have chosen hacking over studying to boost grades. The students have exposed lax computer security on campuses increasingly under attack from outside hackers trying to steal intellectual property developed by professors.

      In December, two students and a graduate of Florida International University were allegedly caught hacking into a professor?s computer, obtaining upcoming tests, and selling the answers for $150.

      Last March, two Miami University students allegedly hacked into their professors? computers and changed grades for themselves and 50 other students.

      In almost every case, the students stole professors' passwords using a keystroke logger. The device, widely available online and installed inside keyboards, allowed them to capture login information as it was typed.

      more
    • By netsurfer802
      I'm studying for Security+ and am wanting to know what others have done to successfully pass the Security+ exam the first time. 
       
      I have bought Security+ book by Michael Meyers and also make flash cards for questions I don't get right. 
       
      Is there any thing else I can do that another has done to successfully pass this certification the first time?
       
      Thanks in advanced for any helpful response.
    • By netsurfer802
      I'm studying for the Security+ certification and don't really understand an answer to the question (see below). I've tried searching online and can't seem to find a clear answer on what a certificate CN is and what an A record is...can somebody please explain?...
      Which of the following is true when Sara, a user, browsing to an HTTPS site receives the
      message: 'Site name mismatch'?
      A. The certificate CN is different from the site DNS A record.
      B. The CA DNS name is different from the root certificate CN.
      C. The certificate was issued by the intermediate CA and not by the root CA.
      D. The certificate file name is different from the certificate CN.
      Answer: A
    • By netsurfer802
      I'm studying for the Security+ exam and in my study material noticed that one of the questions and answers I have says:
      In which of the following locations would a forensic analyst look to find a hooked process?
      A. BIOS
      B. Slack space
      C. RAM
      D. Rootkit
      Answer: A
      Yet when I tried to look information about a hooked process I came up with the follow--see link below--so which is right?
      http://wiki.answers.com/Q/Were_would_a_forensic_analyst_look_for_a_hooked_process
    • By netsurfer802
      I'm currently studying for the Security+ certification and have went over a lot of questions, yet some I still haven't gone over. I was wondering if anybody knew what the number of questions are in general there are? For example Network+ was something like 100 questions pulled from a "pool" of about 900 possible questions.
      Also, I was wondering if anybody knew the next time they might revise the test.
      I'm trying to gauge when about I should take the test.
      Thanks in advanced for any helpful response.