Which of the following security features is designed to prevent DoS and reconnaissance attacks, which utilize the control plane of software-defined networks? A BPDU guard B COPP C DAI D Flood guard
Added by John T.
Close
Step 1
Step 1: The question asks which security feature is designed to prevent DoS and reconnaissance attacks that utilize the control plane of software-defined networks. Show more…
Show all steps
Your feedback will help us improve your experience
Madhur L and 76 other AP CS educators are ready to help you.
Ask a new question
Labs
Want to see this concept in action?
Explore this concept interactively to see how it behaves as you change inputs.
Key Concepts
Recommended Videos
Which of the following provide SSO capabilities for a system? a. RADIUS b. Diameter c. Kerberos d. TACACS+ 2. Which of the following concepts assumes all network traffic is potentially malicious until proven otherwise? a. noncompliance security model b. NICE model c. extended validation security model d. zero trust security model 3. Jeni works for a company that has seen rapid growth, beginning as a very small startup and expanding into a large company with what is forecasted to be thousands of employees by the end of its second year. She is trying to ensure that the fast-paced growth doesn't overburden administrators when onboarding new employees. Which of the following would require the least administrative effort in their day-to-day jobs of onboarding employees and managing permissions for these users, groups, and departments while maintaining the highest level of security? a. RBAC b. CAC c. AAC d. DAC 4. Dilan is a network administrator for a large company. On a couple of different occasions, he noticed that users were getting odd IP addresses when attempting to join the corporate network. He found that the development team had created virtual machines that were offering out IP addresses. Which of the following, if enabled, would have prevented this from happening? a. RBAC b. Mandatory Access Control (MAC) c. DHCP snooping d. ARP spoofing
Madhur L.
Which of these countermeasures might be helpful in preventing against a SYN flood attack? a. End systems perform egress screening of IP packets to ensure they are generated from valid sources. b. Routers perform ingress screening of IP packets to make sure that they are coming from valid sources. c. Prevent all further connections after the limit of connection requests is reached. d. Use an intrusion detection system (IDS) to monitor for rates of SYN requests greater than normal, and try to limit these.
Jennifer S.
Which of these ports would you be least likely to find open to a native service on a Linux host? a) 139 b) 53 c) 22 d) 443 2. What is the netmask of the network associated with host 128.227.224.196 having 8,190 hosts? a) 255.255.255.192 b) 255.255.192.0 c) 255.255.224.0 d) 255.255.255.0 3. Which of these precautions will not interfere with a traditional SSLStrip attack from working? a) Disallowing multiple MAC addresses for a single host in a network b) Always using https c) Using a separate process in each browser d) Navigating to a site whose HSTS super-cookie is loaded in your browser 4. Although nmap warns about -Pn slowing down a scan, proxychains nmap -Pn 10.70.184.1-254 -p 445 actually runs faster than the following nmap: proxychains nmap 10.70.184.1-254 -p 445. Why would that be? a) When -Pn isn't specified, both UDP and TCP ports are scanned. b) If ping fails, nmap will check an extra port (80) c) Because ICMP echo replies are always delivered as fast as port 445 replies. d) When -Pn isn't specified, the 10,000 most popular ports will be scanned. 5. What can Linux file access control lists do that normal file modes cannot do? a) They can provide special permission sets for individual users. b) They can set a file to run as the root user when executed, no matter who the owner of the file is. c) They can restrict permissions for a group of users in /etc/group d) They can set permissions on a link to a file. 6. Which of these ISO layer messages is likely to have the largest number of embedded protocol data units in it? a) Datalink. b) Session c) Network d) Application
Akash M.
Recommended Textbooks
Computer Science and Information Technology
Introduction to Programming Using Python
Computer Science - An Overview
Transcript
18,000,000+
Students on Numerade
Trusted by students at 8,000+ universities
Watch the video solution with this free unlock.
EMAIL
PASSWORD