• Home
  • Articles
  • Use Real CIW Achieve the 1D0-671 Dumps - 100% Exam Passing Guarantee [Q31-Q51]

Use Real CIW Achieve the 1D0-671 Dumps - 100% Exam Passing Guarantee [Q31-Q51]

Share

Use Real CIW Achieve the 1D0-671 Dumps - 100% Exam Passing Guarantee

Verified 1D0-671 Q&As - Pass Guarantee 1D0-671 Exam Dumps

NEW QUESTION # 31
What is the first tool needed to create a secure networking environment?

  • A. Auditing
  • B. User authentication
  • C. Security policy
  • D. Confidentiality

Answer: C


NEW QUESTION # 32
Your firewall is configured to forbid all internal traffic from going out to the Internet. You want to allow internal clients to access all Web traffic.
At a minimum, what ports must you open in regards to the internal systems?

  • A. All TCP ports above 80 and below 1023
  • B. TCP Ports 80 and 443
  • C. TCP Ports 80 and 443, and all ports above 1023
  • D. TCP Port 80 and all ports above 1023

Answer: C


NEW QUESTION # 33
Which term describes a firewall topology element that consists of a subnet of computers?

  • A. Firewall box
  • B. Security strategy
  • C. Zone
  • D. Demilitarized zone (DMZ)

Answer: D


NEW QUESTION # 34
What would be the result if you were the recipient of a SYN flood or malformed packet?

  • A. You would be unable to access a legitimate service, such as establishing a network connection.
  • B. A virus would be unleashed on your system at the time the SYN flood or malformed packet was received.
  • C. You would be misdirected to a fraudulent Web site without your knowledge or consent.
  • D. The files on your boot sector would be replaced with infected code.

Answer: A


NEW QUESTION # 35
Which of the following accurately describes an aspect of an access control list (ACL)?

  • A. The ACL cannot determine whether a user has access to an object, but can define exactly what the user can do with that object.
  • B. The ACL lists entities that can access a database server, but does not provide access levels.
  • C. The ACL defines users that have access to a resource on a database server.
  • D. The ACL defines the database roles that users have on a database server.

Answer: D


NEW QUESTION # 36
Which of the following can help you authoritatively trace a network flooding attack?

  • A. Firewall logs
  • B. Router logs
  • C. Your ISP
  • D. Ping

Answer: C


NEW QUESTION # 37
Consider the following diagram involving two firewall-protected networks:
Which of the following is necessary for each of the firewalls to allow private IP addresses to be passed on to the Internet?

  • A. Masquerading
  • B. Stateful multi-layer inspection
  • C. Chargeback
  • D. DMZ creation

Answer: A


NEW QUESTION # 38
Which of the following is the simplest, most common firewall design?

  • A. A dual-homed bastion host
  • B. A screened subnet
  • C. A single-homed bastion host
  • D. A screening router

Answer: D


NEW QUESTION # 39
Consider the following diagram:
Which type of attack is occurring?

  • A. Denial-of-service attack
  • B. Polymorphic virus-based attack
  • C. Man-in-the-middle attack using a packet sniffer
  • D. Distributed denial-of-service attack

Answer: D


NEW QUESTION # 40
Which of the following is the device used to authenticate and encrypt packets in IPsec?

  • A. Encryption tunnel
  • B. Internet Key Exchange (IKE)
  • C. Authentication Header (AH)
  • D. Encapsulating Security Payload (ESP)

Answer: D


NEW QUESTION # 41
Which of the following is a security principle that allows you to protect your network resources?

  • A. Deploy security enforcement only in the largest departments.
  • B. Avoid being suspicious of legitimate activity.
  • C. Provide training for end users and IT workers.
  • D. Realize that some high-end systems should stand alone.

Answer: C


NEW QUESTION # 42
Which protocol uses cleartext communication by default?

  • A. HTTP
  • B. SSL
  • C. POP3
  • D. IPSEC

Answer: A


NEW QUESTION # 43
What is the purpose of a revocation certificate?

  • A. It allows you to quickly publish the fact that the key pair is no longer valid because it has been compromised.
  • B. It logs remote user activity on a VPN.
  • C. It allows the user who creates asymmetric code to freely disseminate the code at his or her discretion.
  • D. It prevents a man-in-the-middle attack on your network.

Answer: A


NEW QUESTION # 44
To implement a successful security system, you should:

  • A. use as many security principles and techniques as you can to protect each resource.
  • B. place your firewall and network in a public area so that authorized users have easy access to them to solve problems as they occur.
  • C. find a product that can offer full protection against all threats.
  • D. implement beta software and operating systems that hold the promise of enhanced security measures.

Answer: A


NEW QUESTION # 45
The vast majority of hackers are which type of attacker?

  • A. Spy
  • B. Casual attacker
  • C. Determined attacker
  • D. Disgruntled employee

Answer: B


NEW QUESTION # 46
Which of the following will best help you ensure a database server can withstand a recently discovered vulnerability?

  • A. Updating the company vulnerability scanner and conducting a new scan
  • B. Adding a buffer overflow rule to the intrusion detection system
  • C. Reconfiguring the firewall
  • D. Installing a system update

Answer: D


NEW QUESTION # 47
You have implemented a version of the Kerberos protocol for your network.
What service does Kerberos primarily offer?

  • A. Data integrity
  • B. Authentication
  • C. Non-repudiation
  • D. Encryption

Answer: B


NEW QUESTION # 48
Which term is used to describe the activity of a hacker who enters a computer network and begins mapping the contents of the system?

  • A. Virus planting
  • B. System snooping
  • C. Trojan
  • D. Spoofing

Answer: B


NEW QUESTION # 49
You have determined that the company Web server has several vulnerabilities, including a buffer overflow that has resulted in an attack. The Web server uses PHP and has direct connections to an Oracle database server. It also uses many CGI scripts.
Which of the following is the most effective way to respond to this attack?

  • A. Installing software updates for the Web server daemon
  • B. Using the GET method instead of the POST method for a Web form
  • C. Installing an intrusion detection service to monitor logins
  • D. Using the POST method instead of the GET method for a Web form

Answer: A


NEW QUESTION # 50
A CGI application on the company's Web server has a bug written into it. This particular bug allows the application to write data into an area of memory that has not been properly allocated to the application. An attacker has created an application that takes advantage of this bug to obtain credit card information.
Which of the following security threats is the attacker exploiting, and what can be done to solve the problem?

  • A. - Man-in-the-middle attack
    - Contact the company auditor
  • B. - Denial of service
    - Contact the organization that wrote the code for the Web server
  • C. - SQL injection
    - Work with a database administrator to solve the problem
  • D. - Buffer overflow
    - Work with the Web developer to solve the problem

Answer: D


NEW QUESTION # 51
......

Check the Free demo of our 1D0-671 Exam Dumps with 126 Questions: https://examcollection.actualcollection.com/1D0-671-exam-questions.html

Related Articles

more
CIW 1D0-671 Certification Practice Exam

Copyright © 2026 ActualCollection NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy