• Home
  • Blogs
  • 1D0-671 PDF Dumps Real 2024 Recently Updated Questions [Q71-Q91]

1D0-671 PDF Dumps Real 2024 Recently Updated Questions [Q71-Q91]

Share

1D0-671 PDF Dumps Real 2024 Recently Updated Questions

Released CIW 1D0-671 Updated Questions PDF

NEW QUESTION # 71
Which tool is best suited for identifying applications and code on a Web server that can lead to a SQL injection attack?

  • A. A network switch
  • B. A packet sniffer
  • C. A vulnerability scanner
  • D. An intrusion-detection system

Answer: C


NEW QUESTION # 72
All servers assume that a valid IP address belongs to the computer that sent it. Because TCP/IP contains no built-in authentication, a hacker can assume the identity of another device.
If your security depends entirely upon the TCP/IP identity, which type of attack can allow a hacker to gain access to your system?

  • A. A denial-of-service attack
  • B. A spoofing attack
  • C. A brute-force attack
  • D. A social engineering attack

Answer: B


NEW QUESTION # 73
Which term is used to describe the activity of a hacker who enters a computer network and begins mapping the contents of the system?

  • A. Trojan
  • B. Virus planting
  • C. Spoofing
  • D. System snooping

Answer: D


NEW QUESTION # 74
Which of the following can effectively thwart VLAN hopping?

  • A. Enabling multiple firewalls on your broadcast domain
  • B. Enabling your network's autotrunking capability
  • C. Ensuring that each trunk port retains its default VLAN setting (VLAN1)
  • D. Removing the default VLAN setting (VLAN1) from any trunk port

Answer: D


NEW QUESTION # 75
Your firewall is configured to forbid all internal traffic from going out to the Internet. You want to allow internal clients to access all Web traffic.
At a minimum, what ports must you open in regards to the internal systems?

  • A. TCP Ports 80 and 443
  • B. TCP Ports 80 and 443, and all ports above 1023
  • C. TCP Port 80 and all ports above 1023
  • D. All TCP ports above 80 and below 1023

Answer: B


NEW QUESTION # 76
You have determined that the company Web server has several vulnerabilities, including a buffer overflow that has resulted in an attack. The Web server uses PHP and has direct connections to an Oracle database server. It also uses many CGI scripts.
Which of the following is the most effective way to respond to this attack?

  • A. Installing an intrusion detection service to monitor logins
  • B. Using the GET method instead of the POST method for a Web form
  • C. Installing software updates for the Web server daemon
  • D. Using the POST method instead of the GET method for a Web form

Answer: C


NEW QUESTION # 77
In relation to security, which of the following is the primary benefit of classifying systems?

  • A. Identification of highest-priority systems to protect
  • B. Ability to recover quickly from a natural or man-made disaster
  • C. Collection of information for properly configuring the firewall
  • D. Ability to identify common attacks

Answer: A


NEW QUESTION # 78
Which of the following security measures presents the most risk?

  • A. A firewall application
  • B. A login script
  • C. A tripwire
  • D. A jail

Answer: D


NEW QUESTION # 79
Which ICMP message type is used to synchronize time between two hosts?

  • A. Echo Request
  • B. Timestamp Request and Reply
  • C. Parameter Problem and Time Exceeded
  • D. Time Exceeded

Answer: B


NEW QUESTION # 80
Which of the following describes the practice of stateful multi-layer inspection?

  • A. Inspecting packets in all layers of the OSI/RM with a packet filter
  • B. Prioritizing voice and video data to reduce congestion
  • C. Using Quality of Service (QoS) on a proxy-oriented firewall
  • D. Using a VLAN on a firewall to enable masquerading of private IP addresses

Answer: A


NEW QUESTION # 81
Which ICMP message type is sent whenever the destination cannot handle the amount of traffic being received?

  • A. Source Quench
  • B. Echo Reply
  • C. Redirect Message
  • D. Source Quench

Answer: A


NEW QUESTION # 82
Which of the following is a common problem, yet commonly overlooked, in regards to physical security in server rooms?

  • A. Logic bombs
  • B. Firewalls that do not have a dedicated backup
  • C. False ceilings
  • D. Biometric malfunctions

Answer: C


NEW QUESTION # 83
At the beginning of an IPsec session, which activity occurs during the Internet Key Exchange (IKE)?

  • A. Negotiating the version of IP to be used
  • B. Negotiating the authentication method
  • C. Determining the number of security associations
  • D. Determining the network identification number

Answer: B


NEW QUESTION # 84
Why should you notify the hacker's ISP if you have successfully identified a hacker?

  • A. You can have the ISP reconfigure the hacker's routing tables.
  • B. You can have the ISP retaliate by altering the hacker's login script.
  • C. You can have the ISP retaliate by placing a trojan or virus on the hacker's system.
  • D. You can have the ISP terminate the connection so the attack can be stopped.

Answer: D


NEW QUESTION # 85
Jason is attempting to gain unauthorized access to a corporate server by running a program that enters passwords from a long list of possible passwords.
Which type of attack is this?

  • A. Botnet
  • B. Brute force
  • C. Denial of service
  • D. Buffer overflow

Answer: B


NEW QUESTION # 86
What is the most common attack method against TCP?

  • A. Illicit server
  • B. Trojan
  • C. SYN flood attack
  • D. IP address spoofing

Answer: C


NEW QUESTION # 87
You want to create a quick solution that allows you to obtain real-time login information for the administrative account on an LDAP server that you feel may become a target.
Which of the following will accomplish this goal?

  • A. Create a dummy administrator account on the system so that a potential hacker is distracted from the real login account.
  • B. Create a login script for the administrative account that records logins to a separate server.
  • C. Reinstall the LDAP service on the server so that it is updated and more secure.
  • D. Install an application that creates checksums of the contents on the hard disk.

Answer: B


NEW QUESTION # 88
A disgruntled employee has discovered that the company Web server is not protected against particular buffer overflow vulnerability.
The disgruntled employee has created an application to take advantage of this vulnerability and secretly obtain sensitive data from the Web server's hard disk. This application sends a set of packets to the Web server that causes it to present an unauthenticated terminal with root privileges.
What is the name for this particular type of attack?

  • A. Man-in-the-middle attack
  • B. Trojan
  • C. Zero-day attack
  • D. Denial of service

Answer: C


NEW QUESTION # 89
Consider the following image of a packet capture:
Which of the following best describes the protocol used, along with its primary benefit?

  • A. It is an extended passive FTP session, which is necessary to support IPv6.
  • B. It is an active FTP session, which is supported by all FTP clients.
  • C. It is a passive FTP session, which is easier for firewalls to process.
  • D. It is an active FTP session, which is necessary in order to support IPv6.

Answer: C


NEW QUESTION # 90
Consider the following image:
From the information in this image, what type of attack is occurring?

  • A. A spoofing attackD.A spoofing attack
  • B. A brute-force attack
  • C. A connection-hijacking attackC.A connection-hijacking attack
  • D. A man-in-the-middle attack

Answer: B


NEW QUESTION # 91
......

1D0-671 Dumps and Practice Test (126 Exam Questions): https://www.actual4cert.com/1D0-671-real-questions.html

Guide (New 2024) Actual CIW 1D0-671 Exam Questions: https://drive.google.com/open?id=1J7EJJMRnqzKa98GQtYTKJyzSkuymLBry

Related Blogs

more
CIW 1D0-671 Certification Practice Exam

Copyright © 2026 ACTUAL4CERT.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.