GIAC GCFW the latest certification exam training materials

GIAC certification GCFW exams has a pivotal position in the IT industry, and I believe that a lot of IT professionals agree with it. Passing GIAC certification GCFW exam has much difficulty and needs to have perfect IT knowledge and experience. Because after all, GIAC certification GCFW exam is an authoritative test to inspect examinees' IT professional knowledge. If you have got a GIAC GCFW certification, your IT professional ability will be approved by a lot of IT company. ITCertKing also has a pivotal position in IT training industry. Many IT personnels who have passed GIAC certification GCFW exam used ITCertKing's help to pass the exam. This explains why ITCertKing's pertinence training program is very effective. If you use the training material we provide, you can 100% pass the exam.

What are you waiting for? Opportunity knocks but once. You can get GIAC GCFW complete as long as you enter ITCertKing website. You find the best GCFW exam training materials, with our exam questions and answers, you will pass the exam.

GIAC certification GCFW exam can give you a lot of change. Such as work, life would have greatly improve. Because, after all, GCFW is a very important certified exam of GIAC. But GCFW exam is not so simple.

ITCertKing website is fully equipped with resources and the questions of GIAC GCFW exam, it also includes the GIAC GCFW exam practice test. Which can help candidates prepare for the exam and pass the exam. You can download the part of the trial exam questions and answers as a try. ITCertKing provide true and comprehensive exam questions and answers. With our exclusive online GIAC GCFW exam training materials, you'll easily through GIAC GCFW exam. Our site ensure 100% pass rate.

Exam Code: GCFW
Exam Name: GIAC (GIAC Certified Firewall Analyst)
One year free update, No help, Full refund!
Total Q&A: 391 Questions and Answers
Last Update: 2013-11-12

ITCertKing is a professional website to specially provide training tools for IT certification exams and a good choice to help you pass GCFW exam,too. ITCertKing provide exam materials about GCFW certification exam for you to consolidate learning opportunities. ITCertKing will provide all the latest and accurate exam practice questions and answers for the staff to participate in GCFW certification exam.

If your budget is limited, but you need complete exam material. Then you can try the ITCertKing's GIAC GCFW exam training materials. ITCertKing can escort you to pass the IT exam. Training materials of ITCertKing are currently the most popular materials on the internet. GCFW Exam is a milestone in your career. In this competitive world, it is more important than ever. We guarantee that you can pass the exam easily. This certification exam can also help you tap into many new avenues and opportunities. This is really worth the price, the value it creates is far greater than the price.

GCFW Free Demo Download: http://www.itcertking.com/GCFW_exam.html

NO.1 Which of the following protocols does IPsec use to perform various security functions in the network?
Each correct answer represents a complete solution. Choose all that apply.
A. Skinny Client Control Protocol
B. Authentication Header
C. Encapsulating Security Payload
D. Internet Key Exchange
Answer: B,C,D

GIAC   GCFW   GCFW exam simulations   GCFW braindump

NO.2 Which of the following is an attack with IP fragments that cannot be reassembled?
A. Dictionary attack
B. Smurf attack
C. Teardrop attack
D. Password guessing attack
Answer: C

GIAC study guide   GCFW answers real questions   GCFW certification training   GCFW exam   GCFW

NO.3 WinDump, tcpdump, and Wireshark specify which fields of information libpcap should record.
Which of the following filters do they use in order to accomplish the task?
A. Berkeley Packet Filter
B. IM filter
C. Web filter
D. FIR filter
Answer: A

GIAC demo   GCFW   GCFW

NO.4 You work as a Security Manger for Tech Perfect Inc. The company has a Windows-based network.
You want to scroll real-time network traffic to a command console in a readable format. Which of the
following command line utilities will you use to accomplish the task?
A. WinPcap
B. WinDump
C. iptables
D. libpcap
Answer: B

GIAC   GCFW certification training   GCFW exam   GCFW test

NO.5 Which of the following limits the number of packets seen by tcpdump?
A. BPF-based filter
B. Recipient filtering
C. Sender filtering
D. IFilters
Answer: A

GIAC demo   GCFW test questions   GCFW study guide   GCFW   GCFW

NO.6 Which of the following ICMPv6 neighbor discovery messages is sent by hosts to request an immediate
router advertisement, instead of waiting for the next scheduled advertisement?
A. Router Advertisement
B. Neighbor Advertisement
C. Router Solicitation
D. Neighbor Solicitation
Answer: C

GIAC   GCFW test answers   GCFW certification   GCFW demo

NO.7 Which of the following intrusion detection systems (IDS) monitors network traffic and compares it
against an established baseline?
A. Network-based
B. File-based
C. Signature-based
D. Anomaly-based
Answer: D

GIAC pdf   GCFW braindump   GCFW pdf   GCFW exam dumps   GCFW

NO.8 Which of the following can be monitored by using the host intrusion detection system (HIDS)?
Each correct answer represents a complete solution. Choose two.
A. Computer performance
B. File system integrity
C. Storage space on computers
D. System files
Answer: B,D

GIAC   GCFW   GCFW   GCFW exam simulations

NO.9 Which of the following algorithms is used as a default algorithm for ESP extension header in IPv6?
A. Electronic Codebook (ECB) Mode
B. Cipher Block Chaining (CBC) Mode
C. Propagating Cipher Block Chaining (PCBC) Mode
D. Cipher Feedback (CFB) Mode
Answer: B

GIAC   GCFW practice test   GCFW   GCFW   GCFW

NO.10 You work as a Network Administrator for Net Perfect Inc. The company has a TCP/IP network. You have
been assigned a task to configure security mechanisms for the network of the company. You have
decided to configure a packet filtering firewall. Which of the following may be the reasons that made you
choose a packet filtering firewall as a security mechanism?
Each correct answer represents a complete solution. Choose all that apply.
A. It makes security transparent to end-users which provide easy use of the client application s.
B. It prevents application-layer attacks.
C. It is easy to install packet filtering firewalls in comparison to the other network security sol utions.
D. It easily matches most of the fields in Layer 3 packets and Layer 4 segment headers, and thus,
provides a lot of flexibility in implementing security policies.
Answer: A,C,D

GIAC   GCFW questions   GCFW study guide   GCFW   GCFW

NO.11 Choose the best explanation for the resulting error when entering the command below.
A. The command is attempting to create a standard access list with extended access list param eters.
B. The ACL commands should be entered from the (config-router) configuration mode.
C. The wildcard mask is not provided for the source and destination addresses.
D. The port number given does not correspond with the proper transport protocol.
Answer: A

GIAC exam   GCFW   GCFW test   GCFW test answers   GCFW answers real questions   GCFW

NO.12 Which of the following are the reasons that network administrators use Access Control Lists?
Each correct answer represents a complete solution. Choose two.
A. Encrypting data to be routed
B. Removing weak user password
C. Controlling VTY access into a router
D. Filtering traffic as it passes through a router
Answer: C,D

GIAC   GCFW questions   GCFW

NO.13 John works as a professional Ethical Hacker. He has been assigned a project for testing the security of
www.we-are-secure.com. He wants to corrupt an IDS signature database so that performing attacks on
the server is made easy and he can observe the flaws in the We-are-secure server. To perform his task,
he first of all sends a virus that continuously changes its signature to avoid detection from IDS. Since the
new signature of the virus does not match the old signature, which is entered in the IDS signature
database, IDS becomes unable to point out the malicious virus. Which of the following IDS evasion
attacks is John performing?
A. Session splicing attack
B. Evasion attack
C. Polymorphic shell code attack
D. Insertion attack
Answer: C

GIAC exam dumps   GCFW   GCFW   GCFW   GCFW exam dumps   GCFW

NO.14 A scenario involves a pool of users with private IP addresses who need to access the Internet;
however, the company has a limited number of IP addresses and needs to ensure users occupy only one
public IP address.
Which technology is used to allow a pool of users to share one global IP address for Internet access?
A. Port Address Translation
B. Per-user Address Translation
C. Pool Address Translation
D. Private Address Translation
Answer: A

GIAC certification   GCFW pdf   GCFW exam prep   GCFW exam

NO.15 Peter works as a Technical Representative in a CSIRT for SecureEnet Inc. His team is called to
investigate the computer of an employee, who is suspected for classified data theft. Suspect's computer
runs on Windows operating system. Peter wants to collect data and evidences for further analysis. He
knows that in Windows operating system, the data is searched in pre-defined steps for proper and
efficient analysis. Which of the following is the correct order for searching data on a Windows based
system?
A. Volatile data, file slack, internet traces, registry, memory dumps, system state backup, file system
B. Volatile data, file slack, registry, memory dumps, file system, system state backup, interne t traces
C. Volatile data, file slack, file system, registry, memory dumps, system state backup, interne t traces
D. Volatile data, file slack, registry, system state backup, internet traces, file system, memory dumps
Answer: C

GIAC exam prep   GCFW answers real questions   GCFW

NO.16 Which of the following number ranges is used for the IP Standard ACL?
A. 100-199
B. 1000-1099
C. 600-699
D. 1-99
Answer: D

GIAC pdf   GCFW   GCFW braindump   GCFW test answers

NO.17 A packet filtering firewall inspects each packet passing through the network and accepts or rejects it
based on user-defined rules. Based on which of the following information are these rules set to filter the
packets?
Each correct answer represents a complete solution. Choose all that apply.
A. Layer 4 protocol information
B. Actual data in the packet
C. Interface of sent or received traffic
D. Source and destination Layer 3 address
Answer: A,C,D

GIAC   GCFW   GCFW braindump   GCFW   GCFW

NO.18 Which of the following commands configures a router to encrypt all passwords entered after the
command has been executed, as well as all passwords already on the running configuration?
A. no service password-encryption
B. enable password-encryption
C. no enable password-encryption
D. service password-encryption
Answer: D

GIAC   GCFW   GCFW   GCFW

NO.19 Which of the following devices is used to identify out-of-date software versions, applicable patches,
system upgrades, etc?
A. Retinal scanner
B. Fingerprint reader
C. Smart card reader
D. Vulnerability scanner
Answer: D

GIAC certification training   GCFW   GCFW   GCFW   GCFW certification training

NO.20 Which of the following statements about the traceroute utility are true?
Each correct answer represents a complete solution. Choose all that apply.
A. It generates a buffer overflow exploit by transforming an attack shell code so that the new attack shell
code cannot be recognized by any Intrusion Detection Systems.
B. It uses ICMP echo packets to display the Fully Qualified Domain Name (FQDN) and the IP address of
each gateway along the route to the remote host.
C. It records the time taken for a round trip for each packet at each router.
D. It is an online tool that performs polymorphic shell code attacks.
Answer: B,C

GIAC study guide   GCFW   GCFW   GCFW exam dumps   GCFW test answers

NO.21 You work as a Network Architect for Tech Perfect Inc. The company has a corporate LAN network. You
will have to perform the following tasks:
l Limit events that occur from security threats such as viruses, worms, and spyware.
l Restrict access to the network based on identity or security posture.
Which of the following services will you deploy in the network to accomplish the tasks?
A. NetFlow
B. Protocol-Independent Multicast
C. Network Admission Control
D. Firewall Service Module
Answer: C

GIAC pdf   GCFW test answers   GCFW

NO.22 Which of the following is the default port for POP3?
A. 25
B. 21
C. 80
D. 110
Answer: B

GIAC exam simulations   GCFW test questions   GCFW   GCFW   GCFW test   GCFW

NO.23 Which of the following IDs is used to reassemble the fragments of a datagram at the destination point?
A. IP identification number
B. SSID
C. MAK ID
D. IP address
Answer: A

GIAC   GCFW   GCFW   GCFW answers real questions   GCFW

NO.24 Address Resolution Protocol (ARP) spoofing, also known as ARP poisoning or ARP Poison Routing
(APR), is a technique used to attack an Ethernet wired or wireless network. ARP spoofing may allow an
attacker to sniff data frames on a local area network (LAN), modify the traffic, or stop the traffic altogether.
The principle of ARP spoofing is to send fake ARP messages to an Ethernet LAN.
What steps can be used as a countermeasure of ARP spoofing?
Each correct answer represents a complete solution. Choose all that apply.
A. Using ARP Guard utility
B. Using smash guard utility
C. Using static ARP entries on servers, workstation and routers
D. Using ARP watch utility
E. Using IDS Sensors to check continually for large amount of ARP traffic on local subnets
Answer: A,C,D,E

GIAC exam simulations   GCFW   GCFW test   GCFW

NO.25 Adam works as a Security Administrator for Umbrella Inc. A project has been assigned to him to
secure access to the network of the company from all possible entry points. He segmented the network
into several subnets and installed firewalls all over the network. He has placed very stringent rules on all
the firewalls, blocking everything in and out except the ports that must be used. He does need to have
port 80 open since his company hosts a website that must be accessed from the Internet. Adam is still
worried about the programs like Hping2 that can get into a network through covert channels.
Which of the following is the most effective way to protect the network of the company from an attacker
using Hping2 to scan his internal network?
A. Block ICMP type 13 messages
B. Block ICMP type 3 messages
C. Block all outgoing traffic on port 21
D. Block all outgoing traffic on port 53
Answer: A

GIAC practice test   GCFW   GCFW   GCFW dumps

NO.26 Which of the following are the countermeasures against a man-in-the-middle attack?
Each correct answer represents a complete solution. Choose all that apply.
A. Using Secret keys for authentication.
B. Using public key infrastructure authentication.
C. Using Off-channel verification.
D. Using basic authentication.
Answer: A,B,C

GIAC pdf   GCFW   GCFW

NO.27 Which of the following statements are true about an IDP rule base notification?
A. It can be defined as reusable logical entities that the user can apply to the rules.
B. When an action is performed, a notification defines how to log information.
C. It is used to specify the type of network traffic that has to be monitored for attacks.
D. It directs an IDP to drop or close the connection.
Answer: B

GIAC test answers   GCFW   GCFW certification   GCFW

NO.28 Which of the following components are usually found in an Intrusion detection system (IDS).?
Each correct answer represents a complete solution. Choose two.
A. Firewall
B. Console
C. Gateway
D. Modem
E. Sensor
Answer: B,E

GIAC questions   GCFW test   GCFW answers real questions   GCFW

NO.29 Which of the following types of Intrusion Detection Systems consists of an agent on a host that identifies
intrusions by analyzing system calls, application logs, file-system modifications (binaries, password files,
capability/acl databases) and other host activities and state?
A. HIDS
B. NIDS
C. APIDS
D. PIDS
Answer: A

GIAC   GCFW   GCFW braindump

NO.30 Which of the following proxy servers is placed anonymously between the client and remote server and
handles all of the traffic from the client?
A. Web proxy server
B. Open proxy server
C. Forced proxy server
D. Caching proxy server
Answer: C

GIAC test answers   GCFW exam simulations   GCFW pdf   GCFW   GCFW

ITCertKing offer the latest DC0-260 exam material and high-quality C_THR12_66 pdf questions & answers. Our 000-224 VCE testing engine and 70-684 study guide can help you pass the real exam. High-quality MB7-700 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.

Article Link: http://www.itcertking.com/GCFW_exam.html

GIAC certification GSLC exam targeted exercises

Many people think that passing some difficult IT certification exams needs to be proficient in much of IT expertise and only these IT personnels who grasp the comprehensive IT knowledge would be able to enroll in the exam. In fact, there are many ways to help you make up for your lack of knowledge, and pass the IT certification exams in the same. Perhaps you would spend less time and effort than the people who grasp fairly comprehensive expertise. The saying goes, all roads lead to Rome.

Our ITCertKing have a huge IT elite team. They will accurately and quickly provide you with GIAC certification GSLC exam materials and timely update GIAC GSLC exam certification exam practice questions and answers and binding. Besides, ITCertKing also got a high reputation in many certification industry. The the probability of passing GIAC certification GSLC exam is very small, but the reliability of ITCertKing can guarantee you to pass the examination of this probability.

ITCertKing have a huge senior IT expert team. They use their professional IT knowledge and rich experience to develop a wide range of different training plans which can help you pass GIAC certification GSLC exam successfully. In ITCertKing you can always find out the most suitable training way for you to pass the exam easily. No matter you choose which kind of the training method, ITCertKing will provide you a free one-year update service. ITCertKing's information resources are very wide and also very accurate. When selecting ITCertKing, passing GIAC certification GSLC exam is much more simple for you.

ITCertKing is a very good website to provide a convenient service for the GIAC certification GSLC exam. ITCertKing's products can help people whose IT knowledge is not comprehensive pass the difficulty GIAC certification GSLC exam. If you add the GIAC certification GSLC exam product of ITCertKing to your cart, you will save a lot of time and effort. ITCertKing's product is developed by ITCertKing's experts' study of GIAC certification GSLC exam, and it is a high quality product.

GIAC GSLC exam certification is widely recognized IT certifications. People around the world prefer GSLC exam certification to make their careers more strengthened and successful. Speaking of GIAC GSLC exam, ITCertKing GIAC GSLC exam training materials have been ahead of other sites. Because ITCertKing has a strong IT elite team, they always follow the latest GIAC GSLC exam training materials, with their professional mind to focus on GIAC GSLC exam training materials.

Exam Code: GSLC
Exam Name: GIAC (GIAC Security Leadership Certification (GSLC))
One year free update, No help, Full refund!
Total Q&A: 567 Questions and Answers
Last Update: 2013-11-12

Are you one of them? Are you still worried and confused because of the the various exam materials and fancy training courses exam? ITCertKing is the right choice for you. Because we can provide you with a comprehensive exam, including questions and answers. All of these will help you to acquire a better knowledge, we are confident that you will through ITCertKing the GIAC GSLC certification exam. This is our guarantee to all customers.

GSLC Free Demo Download: http://www.itcertking.com/GSLC_exam.html

NO.1 Which system is designed to analyze, detect, and report on security-related events.?
A. HIPS
B. NIPS
C. NIDS
D. HIDS
Answer: B

GIAC exam dumps   GSLC dumps   GSLC   GSLC exam prep

NO.2 Mark works as a Network Administrator for Infonet Inc. The company has a Windows 2000 Active
Directory domain-based network. The domain contains one hundred Windows XP Professional client
computers. Mark is deploying an 802.11 wireless LAN on the network. The wireless LAN will use Wired
Equivalent Privacy (WEP) for all the connections. According to the company's security policy, the client
computers must be able to automatically connect to the wireless LAN. However, the unauthorized
computers must not be allowed to connect to the wireless LAN and view the wireless network. Mark wants
to configure all the wireless access points and client computers to act in accordance with the company's
security policy. What will he do to accomplish this?
Each correct answer represents a part of the solution. Choose three.
A. Configure the authentication type for the wireless LAN to Open system.
B. Install a firewall software on each wireless access point.
C. Configure the authentication type for the wireless LAN to Shared Key.
D. Disable SSID Broadcast and enable MAC address filtering on all wireless access points.
E. Broadcast SSID to connect to the access point (AP).
F. On each client computer, add the SSID for the wireless LAN as the preferred network.
Answer: C, D. F

NO.3 Drag and Drop the layers of TCP/IP model according to their level of data encapsulation.
A.
Answer: A

GIAC exam dumps   GSLC exam prep   GSLC   GSLC

NO.4 Which of the following protocols is used as a transport protocol for Internet dial-up connections?
A. SMTP
B. SNMP
C. DHCP
D. PPP
Answer: D

GIAC   GSLC   GSLC   GSLC

NO.5 You work as a Network Administrator for Net World International. The company has a Windows Server
2008 network environment. The network is configured as a Windows Active Directory-based single
domain single forest network. The functional level of the forest is Windows Server 2008. All client
computers on the network run Windows Vista Ultimate.
You are configuring a public key interface (PKI) to support domain users and computers. All users will use
smart cards for logon. You have configured a global group named SCIssuer that will issue smart cards for
all domain users. A file server named SecServer is configured on the network. The certificate-based
IPSec encryption is required for all communications to and from the SecServer server. A VPN server is
configured on the network to enable sales managers to connect to the network remotely using their
laptops which run Windows Vista Ultimate. The L2TP connection is required for the VPN server. Place the
users, computers, and groups to the certificate templates that are required for implementing the PKI
infrastructure.
A.
Answer: A

GIAC demo   GSLC questions   GSLC   GSLC pdf   GSLC practice test

NO.6 You work as a Network Administrator for Net World International. The company has a Windows Server
2008 network environment. The network is configured as a Windows Active Directory-based single
domain single forest network. The functional level of the forest is Windows Server 2008. All client
computers on the network run Windows Vista Ultimate. You configure a public key infrastructure (PKI) on
the network. You configure a root CA and a subordinate CA on the network. For security reasons, you
want to take the root CA offline. You are required to configure the CA servers to support for certificate
revocation.
Choose the steps you will take to accomplish the task.
A.
Answer: A

GIAC dumps   GSLC   GSLC

NO.7 You work as a Network Administrator for Tech Perfect Inc. The company has a Windows Server 2008
Active Directory-based single domain single forest network. The functional level of the forest is Windows
Server 2008. The company's headquarters is located at Los Angeles. A branch office of the company is
located at Denver. You are about to send a message to Rick who is a Network Administrator at Denver.
You want to ensure that the message cannot be read by anyone but the recipient. Which of the following
keys will you use to encrypt the message?
A. Your public key
B. The recipient's private key
C. The recipient's public key
D. Your private key
Answer: C

GIAC   GSLC   GSLC answers real questions

NO.8 Drop the appropriate value to complete the formula.
A.
Answer: A

GIAC   GSLC questions   GSLC   GSLC questions   GSLC test

NO.9 Which of the following are the examples of administrative controls?
Each correct answer represents a complete solution. Choose all that apply.
A. Security policy
B. Auditing
C. Security awareness training
D. Data Backup
Answer: A, C

GIAC practice test   GSLC exam   GSLC   GSLC

NO.10 Which of the following is used to describe the type of FTP access in which a user does not have
permissions to list the contents of directories, but can access the contents if he knows the path and file
name?
A. Secure FTP
B. Blind FTP
C. Passive FTP
D. Hidden FTP
Answer: B

GIAC   GSLC study guide   GSLC

NO.11 John works as a Programmer for We-are-secure Inc. On one of his routine visits to the company, he
noted down the passwords of the employees while they were typing them on their computer screens.
Which of the following social engineering attacks did he just perform?
A. Shoulder surfing
B. Important user posing
C. Dumpster diving
D. Authorization by third party
Answer: A

GIAC exam simulations   GSLC braindump   GSLC study guide

NO.12 Janet is the project manager of the NHQ Project for her company. Janet is nearly done leading the
project and there have been no cost or schedule overruns in the development of the new software for her
company. The project team has been completing their work on time and there is still $75,000 left in the
project budget. Janet decides to have the project team implement some extra features to the project
scope to use all of the $75,000 in the budget even though the customer didn't specifically ask for the
added features. This scenario is an example of which one of the following?
A. Scope creep
B. Gold plating
C. Change management
D. Value added change
Answer: B

GIAC exam simulations   GSLC study guide   GSLC questions   GSLC exam dumps

NO.13 Which of the following viruses is designed to prevent antivirus researchers from examining its code by
using various methods that make tracing and disassembling difficult?
A. Armored virus
B. Stealth virus
C. Multipartite virus
D. Polymorphic virus
Answer: A

GIAC   GSLC certification training   GSLC

NO.14 The promiscuous mode is a configuration of a network card that makes the card pass all traffic it
receives to the central processing unit rather than just packets addressed to it. Which of the following
tools works by placing the host system network card into the promiscuous mode?
A. Sniffer
B. THC-Scan
C. NetStumbler
D. Snort
Answer: A

GIAC   GSLC exam   GSLC   GSLC practice test   GSLC exam simulations

NO.15 You work as a Network Administrator for Infonet Inc. The company has a Windows Server 2008
domain-based network. The network has three Windows Server 2008 member servers and 150 Windows
Vista client computers. According to the company's security policy, you want to apply a firewall profile to
the network.Choose the firewall profiles supported by Windows Server 2008 and Windows Vista.
A.
Answer: A

GIAC answers real questions   GSLC   GSLC   GSLC   GSLC study guide

NO.16 Rick, the Network Administrator of the Fimbry Hardware Inc., wants to design the initial test model for
Internet Access. He wants to fulfill the following goals:
No external traffic should be allowed into the network.
Administrators should be able to restrict the websites which can be accessed by the internal
users.
Which of the following technologies should he use to accomplish the above goals? (Click the Exhibit
button on the toolbar to see the case study.)
A. Internet Connection Sharing (ICS)
B. Network Address Translator (NAT)
C. Firewall
D. Proxy Server
E. Routing and Remote Access Service (RRAS)
Answer: D

GIAC exam simulations   GSLC   GSLC

NO.17 You work as a Network Administrator for Perfect Solutions Inc. The company has a Windows Active
Directory-based single domain single forest network. The company's network is connected to the Internet
through a T1 line. The firewall is configured on the network for securing the internal network from the
intruders on the Internet. The functional level of the forest is Windows Server 2003. You are designing a
public key infrastructure (PKI) for the network. The security policy of the company states that all users
should use smart cards for authentication. Select and place the type of certificate authority (CA) that is
required to be configured on the network to implement the security policy of the company.
A.
Answer: A

GIAC test answers   GSLC   GSLC   GSLC   GSLC study guide   GSLC test answers

NO.18 Which of the following options is an approach to restricting system access to authorized users?
A. MIC
B. MAC
C. RBAC
D. DAC
Answer: C

GIAC practice test   GSLC   GSLC braindump   GSLC test answers   GSLC exam dumps   GSLC

NO.19 Which of the following are the goals of risk management?
Each correct answer represents a complete solution. Choose three.
A. Identifying the risk
B. Finding an economic balance between the impact of the risk and the cost of the countermeasure
C. Identifying the accused
D. Assessing the impact of potential threats
Answer: A, B, D

GIAC   GSLC   GSLC

NO.20 You are the project manager for your organization and are trying to determine which vendor your
organization will use. You have determined that any vendor that would like to bid on your project work will
need to have a Microsoft Certified System Engineer on staff, have eight years of Cisco experience, and
have at least two references from similar projects. What have you created in this scenario?
A. Screening system for the vendors
B. Weighting system for the vendors
C. Preferred vendors list
D. Bidders conference
Answer: A

GIAC exam   GSLC   GSLC study guide

NO.21 Which of the following programs can collect various types of personal information, such as Internet
surfing habits, and Web sites that the user has visited?
A. Spyware
B. Honeypot
C. Worm
D. Malware
Answer: A

GIAC exam dumps   GSLC exam dumps   GSLC

NO.22 Fill in the blank with the appropriate word.
A_______ is a computer system on the Internet that is expressly set up to attract and trap people who
attempt to penetrate other people's computer systems.
A. honeypot
Answer: A

GIAC   GSLC test questions   GSLC exam dumps   GSLC test answers   GSLC test questions

NO.23 Which of the following encryption algorithms is applied in the PGP encryption system?
A. TDE
B. Triple DES
C. Blowfish
D. IDEA
Answer: D

GIAC pdf   GSLC   GSLC original questions   GSLC   GSLC exam

NO.24 Which of the following tools is based on Linux and used to carry out the Penetration Testing?
A. JPlag
B. BackTrack
C. Vedit
D. Ettercap
Answer: B

GIAC exam dumps   GSLC demo   GSLC exam dumps   GSLC dumps

NO.25 Which of the following applications would be considered a data warehousing application?
A. Golf score tracking
B. Badge reader
C. Fraud detection
D. eCommerce site
Answer: C

GIAC exam   GSLC pdf   GSLC demo

NO.26 Fill in the blank with the appropriate type of router.
A ______ router performs packet-filtering and is used as a firewall.
A. screening
Answer: A

GIAC certification   GSLC exam prep   GSLC braindump   GSLC test answers

NO.27 A wireless network uses multiple modulation schemes to make the signal strong so that it can travel far.
These modulation schemes work with a certain IEEE standard. Choose and drop the correct standards in
the right pane according to the modulation scheme.
A.
Answer: A

GIAC original questions   GSLC questions   GSLC certification training   GSLC

NO.28 Which of the following provides security by implementing authentication and encryption on Wireless
LAN (WLAN)?
A. WEP
B. WAP
C. L2TP
D. IPSec
Answer: A

GIAC test questions   GSLC   GSLC   GSLC   GSLC study guide   GSLC

NO.29 You are responsible for security at a company that uses a lot of Web applications. You are most
concerned about flaws in those applications allowing some attacker to get into your network. What
method would be best for finding such flaws?
A. Automated penetration testing
B. Code review
C. Manual penetration testing
D. Vulnerability scanning
Answer: D

GIAC   GSLC   GSLC   GSLC demo

NO.30 You work as a Network Administrator for Net Perfect Inc. The company has a Windows Server 2008
network environment. The network is configured as a Windows Active Directory-based single forest single
domain network. The domain functional level is set to Windows Server 2003. You have configured an
Active Directory-integrated DNS zone on the network. A new security policy dictates that each incoming
DNS query should be recorded. Which of the following steps will you take to implement the new security
policy?
A. Create a GPO.
Configure Audit Object Access.
Attach the GPO to the domain.
B. Do nothing, each incoming DNS queries is recorded by default in DNS.LOG file.
C. Enable debug logging on the DNS server.
D. Create a new OU.
Move the DNS server account to the OU.
Create a GPO.
Configure Audit Logon events.
Attach the GPO to the OU.
Answer: C

GIAC questions   GSLC exam simulations   GSLC questions   GSLC exam simulations   GSLC   GSLC

ITCertKing offer the latest C_TSCM62_65 exam material and high-quality LOT-442 pdf questions & answers. Our 70-489 VCE testing engine and 000-656 study guide can help you pass the real exam. High-quality 3107 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.

Article Link: http://www.itcertking.com/GSLC_exam.html

GIAC certification GCIH the latest exam questions and answers

On ITCertKing website you can free download part of the exam questions and answers about GIAC certification GCIH exam to quiz our reliability. ITCertKing's products can 100% put you onto a success away, then the pinnacle of IT is a step closer to you.

Practice what you preach is the beginning of success. Since you have chosen to participate in the demanding IT certification exam. Then you have to pay your actions, and achieve excellent results. ITCertKing's GIAC GCIH exam training materials are the best training materials for this exam. With it you will have a key to success. ITCertKing's GIAC GCIH exam training materials are absolutely reliable materials. You should believe that you can pass the exam easily , too.

GCIH exam is a new turning point in the IT industry. Get this examination certification, you will become the IT industry's professional high-end person. With the spread and progress of information technology, you will see hundreds of online resources which provide GIAC GCIH questions and answers. While ITCertKing ahead. The reason people choose ITCertKing GIAC GCIH exam training materials is that it can really bring benefits to them, and to help you come true your dreams as soon as possible!

Someone asked, where is success? Then I tell you, success is in ITCertKing. Select ITCertKing is to choose success. ITCertKing's GIAC GCIH exam training materials can help all candidates to pass the IT certification exam. Through the use of a lot of candidates, ITCertKing's GIAC GCIH exam training materials is get a great response aroud candidates, and to establish a good reputation. This is turn out that select ITCertKing's GIAC GCIH exam training materials is to choose success.

In order to allow you to safely choose ITCertKing, part of the best GIAC certification GCIH exam materials provided online, you can try to free download to determine our reliability. We can not only help you pass the exam once for all, but also can help you save a lot of valuable time and effort. ITCertKing can provide you with the real GIAC certification GCIH exam practice questions and answers to ensure you 100% pass the exam. When having passed GIAC certification GCIH exam your status in the IT area will be greatly improved and your prospect will be good.

Exam Code: GCIH
Exam Name: GIAC (GIAC Certified Incident Handler)
One year free update, No help, Full refund!
Total Q&A: 335 Questions and Answers
Last Update: 2013-10-02

ITCertKing provide you with a clear and excellent choice and reduce your troubles. Do you want early success? Do you want to quickly get GIAC certification GCIH exam certificate? Hurry to add ITCertKing to your Shopping Cart. ITCertKing will give you a good guide to ensure you pass the exam. Using ITCertKing can quickly help you get the certificate you want.

GCIH Free Demo Download: http://www.itcertking.com/GCIH_exam.html

NO.1 Which of the following are the primary goals of the incident handling team?
Each correct answer represents a complete solution. Choose all that apply.
A. Freeze the scene.
B. Repair any damage caused by an incident.
C. Prevent any further damage.
D. Inform higher authorities.
Answer: A, B, C

GIAC   GCIH certification training   GCIH test questions   GCIH   GCIH   GCIH

NO.2 Adam, a malicious hacker, wants to perform a reliable scan against a remote target. He is not
concerned about being stealth at this point.
Which of the following type of scans would be most accurate and reliable?
A. UDP sacn
B. TCP Connect scan
C. ACK scan
D. Fin scan
Answer: B

GIAC   GCIH   GCIH   GCIH exam dumps

NO.3 Choose and reorder the steps of an incident handling process in their correct order.
A.
Answer: A

GIAC test   GCIH   GCIH exam prep   GCIH

NO.4 Which of the following statements are true about tcp wrappers?
Each correct answer represents a complete solution. Choose all that apply.
A. tcp wrapper provides access control, host address spoofing, client username lookups, etc.
B. When a user uses a TCP wrapper, the inetd daemon runs the wrapper program tcpd instead of running
the server program directly.
C. tcp wrapper allows host or subnetwork IP addresses, names and/or ident query replies, to be used as
tokens to filter for access control purposes.
D. tcp wrapper protects a Linux server from IP address spoofing.
Answer: A, B, C

GIAC questions   GCIH   GCIH

NO.5 In which of the following DoS attacks does an attacker send an ICMP packet larger than 65,536 bytes to
the target system?
A. Ping of death
B. Jolt
C. Fraggle
D. Teardrop
Answer: A

GIAC dumps   GCIH   GCIH   GCIH   GCIH

NO.6 Which of the following types of attacks is the result of vulnerabilities in a program due to poor
programming techniques?
A. Evasion attack
B. Denial-of-Service (DoS) attack
C. Ping of death attack
D. Buffer overflow attack
Answer: D

GIAC demo   GCIH   GCIH certification training

NO.7 Which of the following statements about buffer overflow is true?
A. It manages security credentials and public keys for message encryption.
B. It is a collection of files used by Microsoft for software updates released between major service pack
releases.
C. It is a condition in which an application receives more data than it is configured to accept.
D. It is a false warning about a virus.
Answer: C

GIAC   GCIH pdf   GCIH certification training

NO.8 Adam works as a Security Analyst for Umbrella Inc. Company has a Windows-based network. All
computers run on Windows XP. Manager of the Sales department complains Adam about the unusual
behavior of his computer. He told Adam that some pornographic contents are suddenly appeared on his
computer overnight. Adam suspects that some malicious software or Trojans have been installed on the
computer. He runs some diagnostics programs and Port scanners and found that the Port 12345, 12346,
and 20034 are open. Adam also noticed some tampering with the Windows registry, which causes one
application to run every time when Windows start.
Which of the following is the most likely reason behind this issue?
A. Cheops-ng is installed on the computer.
B. Elsave is installed on the computer.
C. NetBus is installed on the computer.
D. NetStumbler is installed on the computer.
Answer: C

GIAC   GCIH   GCIH   GCIH test questions

NO.9 Which of the following commands is used to access Windows resources from Linux workstation?
A. mutt
B. scp
C. rsync
D. smbclient
Answer: D

GIAC dumps   GCIH exam prep   GCIH   GCIH   GCIH questions

NO.10 You see the career section of a company's Web site and analyze the job profile requirements. You
conclude that the company wants professionals who have a sharp knowledge of Windows server 2003
and Windows active directory installation and placement. Which of the following steps are you using to
perform hacking?
A. Scanning
B. Covering tracks
C. Reconnaissance
D. Gaining access
Answer: C

GIAC   GCIH exam dumps   GCIH   GCIH   GCIH   GCIH

NO.11 Network mapping provides a security testing team with a blueprint of the organization. Which of the
following steps is NOT a part of manual network mapping?
A. Gathering private and public IP addresses
B. Collecting employees information
C. Banner grabbing
D. Performing Neotracerouting
Answer: D

GIAC original questions   GCIH   GCIH   GCIH   GCIH original questions   GCIH pdf

NO.12 Which of the following types of attack can guess a hashed password?
A. Brute force attack
B. Evasion attack
C. Denial of Service attack
D. Teardrop attack
Answer: A

GIAC practice test   GCIH test   GCIH   GCIH test

NO.13 John works as a Professional Penetration Tester. He has been assigned a project to test the Website
security of www.we-are-secure Inc. On the We-are-secure Website login page, he enters ='or''=' as a
username and successfully logs on to the user page of the Web site. Now, John asks the we-aresecure
Inc. to improve the login page PHP script. Which of the following suggestions can John give to improve
the security of the we-are-secure Website login page from the SQL injection attack?
A. Use the escapeshellarg() function
B. Use the session_regenerate_id() function
C. Use the mysql_real_escape_string() function for escaping input
D. Use the escapeshellcmd() function
Answer: C

GIAC original questions   GCIH   GCIH certification

NO.14 Buffer overflows are one of the major errors used for exploitation on the Internet today. A buffer
overflow occurs when a particular operation/function writes more data into a variable than the variable
was designed to hold.
Which of the following are the two popular types of buffer overflows?
Each correct answer represents a complete solution. Choose two.
A. Dynamic buffer overflows
B. Stack based buffer overflow
C. Heap based buffer overflow
D. Static buffer overflows
Answer: B, C

GIAC   GCIH   GCIH   GCIH certification

NO.15 Adam has installed and configured his wireless network. He has enabled numerous security features
such as changing the default SSID, enabling WPA encryption, and enabling MAC filtering on his wireless
router. Adam notices that when he uses his wireless connection, the speed is sometimes 16 Mbps and
sometimes it is only 8 Mbps or less. Adam connects to the management utility wireless router and finds
out that a machine with an unfamiliar name is connected through his wireless connection. Paul checks the
router's logs and notices that the unfamiliar machine has the same MAC address as his laptop.
Which of the following attacks has been occurred on the wireless network of Adam?
A. NAT spoofing
B. DNS cache poisoning
C. MAC spoofing
D. ARP spoofing
Answer: C

GIAC answers real questions   GCIH exam simulations   GCIH   GCIH   GCIH answers real questions

NO.16 John works as a professional Ethical Hacker. He has been assigned a project to test the security of
www.we-are-secure.com. On the We-are-secure login page, he enters ='or''=' as a username and
successfully logs in to the user page of the Web site. The We-are-secure login page is vulnerable to a
__________.
A. Dictionary attack
B. SQL injection attack
C. Replay attack
D. Land attack
Answer: B

GIAC   GCIH   GCIH

NO.17 Adam works as an Incident Handler for Umbrella Inc. He has been sent to the California unit to train the
members of the incident response team. As a demo project he asked members of the incident response
team to perform the following actions:
Remove the network cable wires.
Isolate the system on a separate VLAN.
Use a firewall or access lists to prevent communication into or out of the system.
Change DNS entries to direct traffic away from compromised system.
Which of the following steps of the incident handling process includes the above actions?
A. Identification
B. Containment
C. Eradication
D. Recovery
Answer: B

GIAC demo   GCIH   GCIH   GCIH   GCIH test   GCIH

NO.18 Which of the following tools is used for vulnerability scanning and calls Hydra to launch a dictionary
attack?
A. Whishker
B. Nessus
C. SARA
D. Nmap
Answer: B

GIAC certification   GCIH   GCIH   GCIH braindump

NO.19 You have configured a virtualized Internet browser on your Windows XP professional computer. Using
the virtualized Internet browser, you can protect your operating system from which of the following?
A. Brute force attack
B. Mail bombing
C. Distributed denial of service (DDOS) attack
D. Malware installation from unknown Web sites
Answer: D

GIAC   GCIH   GCIH study guide

NO.20 Ryan, a malicious hacker submits Cross-Site Scripting (XSS) exploit code to the Website of Internet
forum for online discussion. When a user visits the infected Web page, code gets automatically executed
and Ryan can easily perform acts like account hijacking, history theft etc. Which of the following types of
Cross-Site Scripting attack Ryan intends to do?
A. Non persistent
B. Document Object Model (DOM)
C. SAX
D. Persistent
Answer: D

GIAC   GCIH braindump   GCIH   GCIH exam

NO.21 Which of the following is a technique of using a modem to automatically scan a list of telephone
numbers, usually dialing every number in a local area code to search for computers, Bulletin board
systems, and fax machines?
A. Demon dialing
B. Warkitting
C. War driving
D. Wardialing
Answer: D

GIAC   GCIH   GCIH study guide

NO.22 Which of the following statements about Denial-of-Service (DoS) attack are true?
Each correct answer represents a complete solution. Choose three.
A. It disrupts services to a specific computer.
B. It changes the configuration of the TCP/IP protocol.
C. It saturates network resources.
D. It disrupts connections between two computers, preventing communications between services.
Answer: A, C, D

GIAC test answers   GCIH   GCIH   GCIH

NO.23 Which of the following statements are true about worms?
Each correct answer represents a complete solution. Choose all that apply.
A. Worms cause harm to the network by consuming bandwidth, whereas viruses almost always corrupt or
modify files on a targeted computer.
B. Worms can exist inside files such as Word or Excel documents.
C. One feature of worms is keystroke logging.
D. Worms replicate themselves from one system to another without using a host file.
Answer: A, B, D

GIAC   GCIH test   GCIH braindump   GCIH demo

NO.24 John works as a professional Ethical Hacker. He has been assigned the project of testing the security
of www.we-are-secure.com. He finds that the We-are-secure server is vulnerable to attacks. As a
countermeasure, he suggests that the Network Administrator should remove the IPP printing capability
from the server. He is suggesting this as a countermeasure against __________.
A. IIS buffer overflow
B. NetBIOS NULL session
C. SNMP enumeration
D. DNS zone transfer
Answer: A

GIAC certification   GCIH   GCIH original questions   GCIH exam prep

NO.25 Which of the following applications is an example of a data-sending Trojan?
A. SubSeven
B. Senna Spy Generator
C. Firekiller 2000
D. eBlaster
Answer: D

GIAC test questions   GCIH   GCIH questions   GCIH

NO.26 Which of the following statements are true about a keylogger?
Each correct answer represents a complete solution. Choose all that apply.
A. It records all keystrokes on the victim's computer in a predefined log file.
B. It can be remotely installed on a computer system.
C. It is a software tool used to trace all or specific activities of a user on a computer.
D. It uses hidden code to destroy or scramble data on the hard disk.
Answer: A, B, C

GIAC   GCIH study guide   GCIH study guide

NO.27 Which of the following types of attacks is only intended to make a computer resource unavailable to its
users?
A. Denial of Service attack
B. Replay attack
C. Teardrop attack
D. Land attack
Answer: A

GIAC   GCIH questions   GCIH exam   GCIH

NO.28 Fill in the blank with the appropriate word.
StackGuard (as used by Immunix), ssp/ProPolice (as used by OpenBSD), and Microsoft's /GS option use
______ defense against buffer overflow attacks.
A. canary
Answer: A

GIAC   GCIH   GCIH   GCIH answers real questions

NO.29 John works as a professional Ethical Hacker. He has been assigned a project to test the security of
www.we-are-secure.com. He performs Web vulnerability scanning on the We-are-secure server. The
output of the scanning test is as follows:
C:\whisker.pl -h target_IP_address
-- whisker / v1.4.0 / rain forest puppy / www.wiretrip.net -- = - = - = - = - =
= Host: target_IP_address
= Server: Apache/1.3.12 (Win32) ApacheJServ/1.1
mod_ssl/2.6.4 OpenSSL/0.9.5a mod_perl/1.22
+ 200 OK: HEAD /cgi-bin/printenv
John recognizes /cgi-bin/printenv vulnerability ('Printenv' vulnerability) in the We_are_secure server.
Which of the following statements about 'Printenv' vulnerability are true?
Each correct answer represents a complete solution. Choose all that apply.
A. This vulnerability helps in a cross site scripting attack.
B. 'Printenv' vulnerability maintains a log file of user activities on the Website, which may be useful for the
attacker.
C. The countermeasure to 'printenv' vulnerability is to remove the CGI script.
D. With the help of 'printenv' vulnerability, an attacker can input specially crafted links and/or other
malicious scripts.
Answer: A, C, D

GIAC   GCIH   GCIH   GCIH certification training

NO.30 Adam, a novice computer user, works primarily from home as a medical professional. He just bought a
brand new Dual Core Pentium computer with over 3 GB of RAM. After about two months of working on his
new computer, he notices that it is not running nearly as fast as it used to. Adam uses antivirus software,
anti-spyware software, and keeps the computer up-to-date with Microsoft patches. After another month of
working on the computer, Adam finds that his computer is even more noticeably slow. He also notices a
window or two pop-up on his screen, but they quickly disappear. He has seen these windows show up,
even when he has not been on the Internet. Adam notices that his computer only has about 10 GB of free
space available. Since his hard drive is a 200 GB hard drive, Adam thinks this is very odd.
Which of the following is the mostly likely the cause of the problem.?
A. Computer is infected with the stealth kernel level rootkit.
B. Computer is infected with stealth virus.
C. Computer is infected with the Stealth Trojan Virus.
D. Computer is infected with the Self-Replication Worm.
Answer: A

GIAC   GCIH   GCIH certification   GCIH test answers   GCIH   GCIH

ITCertKing offer the latest NS0-155 exam material and high-quality C-TSCM62-65 pdf questions & answers. Our CAT-500 VCE testing engine and 200-101 study guide can help you pass the real exam. High-quality MSC-431 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.

Article Link: http://www.itcertking.com/GCIH_exam.html

GIAC certification G2700 exam training programs

GIAC certification G2700 exam is one of the many IT employees' most wanting to participate in the certification exams. Passing the exam needs rich knowledge and experience. While accumulating these abundant knowledge and experience needs a lot of time. Maybe you can choose some training courses or training tool and spending a certain amount of money to select a high quality training institution's training program is worthful. ITCertKing is a website which can meet the needs of many IT employees who participate in GIAC certification G2700 exam. ITCertKing's product is a targeted training program providing for GIAC certification G2700 exams, which can make you master a lot of IT professional knowledge in a short time and then let you have a good preparation for GIAC certification G2700 exam.

ITCertKing is website that can take you access to the road of success. ITCertKing can provide the quickly passing GIAC certification G2700 exam training materials for you, which enable you to grasp the knowledge of the certification exam within a short period of time, and pass GIAC certification G2700 exam for only one-time.

Are you still worrying about the high difficulty to pass GIAC certification G2700 exam? Are you still sleeplessly endeavoring to review the book in order to pass GIAC G2700 exam certification? Do you want to pass GIAC G2700 exam certification faster? Be quick to select our ITCertKing! Having it can quickly fulfill your dreams.

Exam Code: G2700
Exam Name: GIAC (GIAC Certified ISO-2700 Specialist Practice Test)
One year free update, No help, Full refund!
Total Q&A: 453 Questions and Answers
Last Update: 2013-10-02

There are many ways to help you prepare for your GIAC G2700 exam. ITCertKing provide a reliable training tools to help you prepare for your GIAC G2700 exam certification. The ITCertKing GIAC G2700 exam materials are including test questions and answers. Our materials are very good sofeware that through the practice test. Our materials will meet all of theIT certifications.

All the IT professionals are familiar with the GIAC G2700 exam. And all of you dream of owning the most demanding certification. So that you can get the career you want, and can achieve your dreams. With ITCertKing's GIAC G2700 exam training materials, you can get what you want.

As long as you need the exam, we can update the GIAC certification G2700 exam training materials to meet your examination needs. ITCertKing's training materials contain many practice questions and answers about GIAC G2700 and they can 100% ensure you pass GIAC G2700 exam. With the training materials we provide, you can take a better preparation for the exam. And we will also provide you a year free update service.

IT certification candidates are mostly working people. Therefore, most of the candidates did not have so much time to prepare for the exam. But they need a lot of time to participate in the certification exam training courses. This will not only lead to a waste of training costs, more importantly, the candidates wasted valuable time. Here, I recommend a good learning materials website. Some of the test data on the site is free, but more importantly is that it provides a realistic simulation exercises that can help you to pass the GIAC G2700 exam. ITCertKing GIAC G2700 exammaterials can not only help you save a lot of time. but also allows you to pass the exam successfully. So you have no reason not to choose it.

G2700 Free Demo Download: http://www.itcertking.com/G2700_exam.html

NO.1 The disciplined and structured process, that integrates information security and risk management
activities into the System Development Life Cycle, is provided by the risk management framework.
Choose the appropriate RMF steps.
A.
Answer: A

GIAC test answers   G2700   G2700 pdf   G2700 test answers

NO.2 You work as the Human Resource Manager for uCertify Inc. You need to recruit some candidates for
the marketing department of the organization. Which of the following should be defined to the new
employees of the organization before they have joined?
Each correct answer represents a complete solution. Choose all that apply.
A. Marketing tips and tricks
B. Organization's network topology
C. Job roles
D. Organization's security policy
Answer: C,D

GIAC   G2700   G2700 test questions   G2700 questions

NO.3 Mark works as a Network Security Administrator for uCertify Inc. An employee of the organization
comes to Mark and tells him that a few months ago, the employee had filled an online bank form due to
some account related work. Today, when again visiting the site, the employee finds that some of his
personal information is still being displayed in the webpage. Which of the following types of cookies
should be disabled by Mark to resolve the issue?
A. Session
B. Temporary
C. Secure
D. Persistent
Answer: D

GIAC exam dumps   G2700 certification   G2700 braindump

NO.4 Which of the following controls are administrative in nature?
A. Directive controls
B. Recovery controls
C. Preventive controls
D. Detective controls
Answer: A

GIAC   G2700   G2700 practice test

NO.5 Which of the following is a Restrict Anonymous registry value that allows users with explicit
anonymous permissions?
A. 2
B. 3
C. 1
D. 0
Answer: A

GIAC   G2700 exam dumps   G2700 braindump   G2700 braindump

NO.6 A project plan includes the Work Breakdown Structure (WBS) and cost estimates. Which of the following
are the parts of a project plan?
Each correct answer represents a complete solution. Choose all that apply.
A. Risk identification
B. Security Threat
C. Project schedule
D. Team members list
E. Risk analysis
Answer: A,C,D,E

GIAC   G2700   G2700 braindump

NO.7 Qualitative risk analysis includes judgment, intuition, and experience. Which of the following methods
are used to perform qualitative risk analysis?
Each correct answer represents a complete solution. Choose all that apply.
A. Egress filtering
B. Checklists
C. Delphi technique
D. Brainstorming
Answer: B,C,D

GIAC test answers   G2700   G2700 study guide

NO.8 Which of the following statements are true about security risks?
Each correct answer represents a complete solution. Choose three.
A. These are considered as an indicator of threats coupled with vulnerability.
B. These can be removed completely by taking proper actions.
C. These can be mitigated by reviewing and taking responsible actions based on possible risks.
D. These can be analyzed and measured by the risk analysis process.
Answer: A,C,D

GIAC pdf   G2700   G2700 certification   G2700 demo

NO.9 You work as an Information Security Manager for uCertify Inc. You need to make the
documentation on change management. What are the advantages of change management?
Each correct answer represents a complete solution. Choose all that apply.
A. Improved productivity of users due to more stable and better IT services
B. Improved IT personnel productivity, since there is a reduced number of urgent changes and a back-out
of erroneous changes
C. Improved adverse impact of changes on the quality of IT services
D. Increased ability to absorb frequent changes without making an unstable IT environment
Answer: A,B,D

GIAC   G2700   G2700 answers real questions   G2700 exam prep

NO.10 You work as an Information Security Manager for uCertify Inc. You are working on the
documentation of control A.10.1.1. What is the purpose of control A.10.1.1.?
A. It is concerned with the documentation of the human resource security to make recruitments clear to
the organization.
B. It is concerned with the documentation of the supply chain management.
C. It is concerned with the documentation of operating procedures to ensure the correct and secure use of
information processing facilities.
D. It is concerned with the documentation of the disaster recovery management to ensure proper backup
technologies.
Answer: C

GIAC exam prep   G2700   G2700   G2700 study guide   G2700

NO.11 Which of the following are the uses of cryptography as defined in a policy document?
Each correct answer represents a complete solution. Choose all that apply.
A. Backup
B. Control of keys
C. Applications supporting cryptography
D. Recovery
Answer: A,B,C

GIAC exam dumps   G2700 pdf   G2700 exam prep   G2700 original questions

NO.12 Which of the following are the exceptions of the Data Protection Act?
Each correct answer represents a complete solution. Choose all that apply.
A. Section 36 - Domestic purposes
B. Section 28 - National security
C. Section 55 - Unlawful obtaining of personal data
D. Section 29 - Crime and taxation
Answer: A,B,D

GIAC original questions   G2700   G2700   G2700

NO.13 Which of the following phases of the PDCA model is the monitoring and controlling phase of the
Information Security Management System (ISMS)?
A. Check
B. Plan
C. Do
D. Act
Answer: A

GIAC certification   G2700   G2700   G2700

NO.14 Which of the following is a fast-emerging global sector that advises individuals and corporations on
how to apply the highest ethical standards to every aspect of their business?
A. Service Capacity Management (SCM)
B. Business Capacity Management (BCM)
C. Resource Capacity Management (RCM)
D. Integrity Management Consulting
Answer: D

GIAC   G2700 certification   G2700

NO.15 You work as a Network Administrator for uCertify Inc. The organization has constructed a cafeteria for
their employees and you are responsible to select the access control method for the cafeteria.
There are a few conditions for giving access to the employees, which are as follows:
1. Top level management can get access any time.
2. Staff members can get access during the specified hours.
3. Guests can get access only in working hours.
Which of the following access control methods is suitable to accomplish the task?
A. Discretionary access control
B. Lattice-based access control
C. Attribute-based access control
D. Rule-based access control
Answer: D

GIAC certification   G2700   G2700   G2700 study guide

NO.16 Which of the following is used for secure financial transactions over the Internet?
A. ATM
B. VPN
C. SSL
D. SET
Answer: D

GIAC dumps   G2700 practice test   G2700 answers real questions   G2700

NO.17 Single Loss Expectancy (SLE) represents an organization's loss from a single threat. Which of the
following formulas best describes the Single Loss Expectancy (SLE)?
A. SLE = Asset Value (AV) * Exposure Factor (EF)
B. SLE = Annualized Loss Expectancy (ALE) * Exposure Factor (EF)
C. SLE = Annualized Loss Expectancy (ALE) * Annualized Rate of Occurrence (ARO)
D. SLE = Asset Value (AV) * Annualized Rate of Occurrence (ARO)
Answer: A

GIAC exam simulations   G2700   G2700 test questions   G2700

NO.18 Which of the following should be considered while calculating the costs of the outage?
Each correct answer represents a complete solution. Choose all that apply.
A. Sales aspect of the business
B. Cost of low productivity
C. Innovations in electronic funds transfer
D. Cost of lost income from missed sales
Answer: B,D

GIAC   G2700   G2700   G2700

NO.19 Which of the following are the basics of Business Continuity Management?
Each correct answer represents a complete solution. Choose all that apply.
A. Implementation of a risk assessment technique to identify the causes and consequences of failures
B. Regular checking of business continuity plans
C. Identification of authentication techniques according to the requirements
D. Identification of human resources according to the requirements
Answer: A,B,D

GIAC braindump   G2700 exam simulations   G2700

NO.20 You work as an Information Security Manager for uCertify Inc. You are working on communication and
organization management. You need to create the documentation on change management.
Which of the following are the main objectives of change management?
Each correct answer represents a complete solution. Choose all that apply.
A. Minimal disruption of services
B. Reduction of inventory in accordance with revenue
C. Economic utilization of resources involved in the change
D. Reduction in back-out activities
Answer: A,C,D

GIAC braindump   G2700 dumps   G2700   G2700   G2700

NO.21 Mark works as a System Administrator for uCertify Inc. He is responsible for securing the network of
the organization. He is configuring some of the advanced features of the Windows firewall so that he can
block the client machine from responding to pings. Which of the following advanced setting types should
Mark change for accomplishing the task?
A. ICMP
B. SNMP
C. UDP
D. SMTP
Answer: A

GIAC   G2700 test answers   G2700 test answers   G2700 demo   G2700 dumps

NO.22 Which of the following is the designing phase of the ISMS?
A. Check
B. Plan
C. Act
D. Do
Answer: B

GIAC   G2700   G2700   G2700

NO.23 Which of the following administrative policy controls is usually associated with government
classifications of materials and the clearances of individuals to access those materials?
A. Separation of Duties
B. Due Care
C. Acceptable Use
D. Need to Know
Answer: D

GIAC certification training   G2700 study guide   G2700 original questions   G2700   G2700 dumps

NO.24 CORRECT TEXT
Fill in the blank with an appropriate phrase.
_________accord describes the minimum regulatory capital to be allocated by each bank based on its
risk profile of assets.
Answer: Basel ll

GIAC   G2700   G2700   G2700 dumps   G2700

NO.25 Mark works as an Office Assistant for uCertify Inc. He is responsible for managing office documents.
Today, after opening a word document, Mark noticed that the other opened documents are closed
suddenly. After reopening those documents, Mark found some modifications in the documents. He
contacted his Security Administrator and came to know that there is a virus program installed in the
operating system. Which of the following types of virus has attacked the operating system?
A. Data file
B. Macro
C. Polymorphic
D. Boot sector
Answer: A

GIAC certification   G2700 exam prep   G2700 demo

NO.26 Rick works as a Computer Forensic Investigator for BlueWells Inc. He has been informed that some
confidential information is being leaked out by an employee of the company. Rick suspects that someone
is sending the information through email. He checks the emails sent by some employees to other
networks. Rick finds out that Sam, an employee of the Sales department, is continuously sending text files
that contain special symbols, graphics, and signs. Rick suspects that Sam is using the Steganography
technique to send data in a disguised form. Which of the following techniques is Sam using?
Each correct answer represents a part of the solution. Choose all that apply.
A. Linguistic steganography
B. Text Semagrams
C. Technical steganography
D. Perceptual masking
Answer: A,B

GIAC study guide   G2700 braindump   G2700

NO.27 Mark works as a Network Security Administrator for uCertify Inc. He has been assigned the task of
installing a MySQL server. Mark wants to monitor only the data that is directed to or originating from the
server and he also wants to monitor running processes, file system access and integrity, and user logins
for identifying malicious activities. Which of the following intrusion detection techniques will Mark use to
accomplish the task?
A. Network-based IDS
B. Signature-based IDS
C. Anomaly-based IDS
D. Host-based IDS
Answer: D

GIAC test questions   G2700   G2700 answers real questions

NO.28 You work as an Information Security Officer for uCertify Inc. You need to create an asset management
plan differentiating fixed assets from inventory items. How will you differentiate assets from inventory
items?
A. Inventory items are sold.
B. Assets are temporary usually.
C. Inventory items are permanent.
D. Assets cannot be used.
Answer: A

GIAC   G2700 test   G2700 certification   G2700 certification training

NO.29 CORRECT TEXT
Fill in the blank with the appropriate term.
________ is a powerful and low-interaction open source honeypot.
Answer: Honeyd

GIAC   G2700 exam simulations   G2700 practice test   G2700 dumps

NO.30 You work as a Security Administrator for uCertify Inc. You have been assigned the task to verify the
identity of the employees recruited in your organization. Which of the following components of security
deals with an employee's verification in the organization?
A. Network Security
B. Physical security
C. Access security
D. Human resource security
Answer: D

GIAC   G2700   G2700 braindump   G2700 study guide

ITCertKing offer the latest C-TSCM62-65 exam material and high-quality 700-501 pdf questions & answers. Our 70-342 VCE testing engine and 70-583 study guide can help you pass the real exam. High-quality 70-417 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.

Article Link: http://www.itcertking.com/G2700_exam.html

ITCertKing provides to GIAC GCFA test materials

ITCertKing has a huge IT industry elite team. They all have high authority in the IT area. They use professional knowledge and experience to provide training materials for people ready to participate in different IT certification exams. The accuracy rate of exam practice questions and answers provided by ITCertKing is very high and they can 100% guarantee you pass the exam successfully for one time. Besides, we will provide you a free one-year update service.

GIAC certification GCFA exam can give you a lot of change. Such as work, life would have greatly improve. Because, after all, GCFA is a very important certified exam of GIAC. But GCFA exam is not so simple.

ITCertKing can provide you with a reliable and comprehensive solution to pass GIAC certification GCFA exam. Our solution can 100% guarantee you to pass the exam, and also provide you with a one-year free update service. You can also try to free download the GIAC certification GCFA exam testing software and some practice questions and answers to on ITCertKing website.

Exam Code: GCFA
Exam Name: GIAC (GIAC Certified Forensics Analyst)
One year free update, No help, Full refund!
Total Q&A: 316 Questions and Answers
Last Update: 2013-09-25

About GCFA exam, ITCertKing has a great sound quality, will be the most trusted sources. Feedback from the thousands of registration department, a large number of in-depth analysis, we are in a position to determine which supplier will provide you with the latest and the best GCFA practice questions. The ITCertKing GIAC GCFA training materials are constantly being updated and modified, has the highest GIAC GCFA training experience. If you want to pass the exam，please using our ITCertKing GIAC GCFA exam training materials. ITCertKing GIAC GCFA Add to your shopping cart, it will let you see unexpected results.

In ITCertKing's website you can free download study guide, some exercises and answers about GIAC certification GCFA exam as an attempt.

ITCertKing's products are developed by a lot of experienced IT specialists using their wealth of knowledge and experience to do research for IT certification exams. So if you participate in GIAC certification GCFA exam, please choose our ITCertKing's products, ITCertKing can not only provide you a wide coverage and good quality exam information to guarantee you to let you be ready to face this very professional exam but also help you pass GIAC certification GCFA exam to get the certification.

GCFA Free Demo Download: http://www.itcertking.com/GCFA_exam.html

NO.1 Which of the following file systems provides file-level security?
A. CDFS
B. FAT
C. FAT32
D. NTFS
Answer: D

GIAC   GCFA   GCFA   GCFA exam dumps

NO.2 John works as a professional Ethical Hacker. He has been assigned the project of testing the security of
www.we-are-secure.com. He receives the following e-mail:
The e-mail that John has received is an example of __________.
A. Virus hoaxes
B. Spambots
C. Social engineering attacks
D. Chain letters
Answer: D

GIAC original questions   GCFA pdf   GCFA   GCFA exam

NO.3 Which of the following is the first computer virus that was used to infect the boot sector of storage
media formatted with the DOS File Allocation Table (FAT) file system?
A. Melissa
B. Tequila
C. Brain
D. I love you
Answer: C

GIAC test   GCFA test answers   GCFA

NO.4 Adam works as an Incident Handler for Umbrella Inc. He is informed by the senior authorities that the
server of the marketing department has been affected by a malicious hacking attack. Supervisors are also
claiming that some sensitive data are also stolen. Adam immediately arrived to the server room of the
marketing department and identified the event as an incident. He isolated the infected network from the
remaining part of the network and started preparing to image the entire system. He captures volatile data,
such as running process, ram, and network connections.
Which of the following steps of the incident handling process is being performed by Adam?
A. Recovery
B. Eradication
C. Identification
D. Containment
Answer: D

GIAC   GCFA exam dumps   GCFA certification training   GCFA test answers

NO.5 Fill in the blank with the appropriate name.
_____is a list, which specifies the order of volatility of data in a Windows based system.
A. RFC 3227
Answer: A

GIAC   GCFA practice test   GCFA test

NO.6 Which of the following attacks saturates network resources and disrupts services to a specific
computer?
A. Teardrop attack
B. Polymorphic shell code attack
C. Denial-of-Service (DoS) attack
D. Replay attack
Answer: C

GIAC   GCFA   GCFA test

NO.7 Mark works as a security manager for SofTech Inc. He is using a technique for monitoring what the
employees are doing with corporate resources. Which of the following techniques is being used by Mark
to gather evidence of an ongoing computer crime if a member of the staff is e-mailing company's secrets
to an opponent?
A. Electronic surveillance
B. Civil investigation
C. Physical surveillance
D. Criminal investigation
Answer: A

GIAC   GCFA   GCFA exam dumps   GCFA braindump

NO.8 The MBR of a hard disk is a collection of boot records that contain disk information such as disk
architecture, cluster size, and so on. The main work of the MBR is to locate and run necessary operating
system files that are required to run a hard disk. In the context of the operating system,
MBR is also known as the boot loader. Which of the following viruses can infect the MBR of a hard disk?
Each correct answer represents a complete solution. Choose two.
A. Stealth
B. Boot sector
C. Multipartite
D. File
Answer: B,C

GIAC study guide   GCFA   GCFA exam prep   GCFA certification   GCFA   GCFA

NO.9 Peter works as a Technical Representative in a CSIRT for SecureEnet Inc. His team is called to
investigate the computer of an employee, who is suspected for classified data theft. Suspect's computer
runs on Windows operating system. Peter wants to collect data and evidences for further analysis. He
knows that in Windows operating system, the data is searched in pre-defined steps for proper and
efficient analysis. Which of the following is the correct order for searching data on a Windows based
system?
A. Volatile data, file slack, registry, memory dumps, file system, system state backup, internet traces
B. Volatile data, file slack, registry, system state backup, internet traces, file system, memory dumps
C. Volatile data, file slack, internet traces, registry, memory dumps, system state backup, file system
D. Volatile data, file slack, file system, registry, memory dumps, system state backup, internet traces
Answer: D

GIAC   GCFA exam dumps   GCFA exam prep   GCFA

NO.10 An executive in your company reports odd behavior on her PDA. After investigation you discover that a
trusted device is actually copying data off the PDA. The executive tells you that the behavior started
shortly after accepting an e-business card from an unknown person. What type of attack is this?
A. Session Hijacking
B. Bluesnarfing
C. PDA Hijacking
D. Privilege Escalation
Answer: B

GIAC   GCFA original questions   GCFA   GCFA exam prep

NO.11 Which of the following type of file systems is not supported by Linux kernel?
A. vFAT
B. NTFS
C. HFS
D. FAT32
Answer: D

GIAC study guide   GCFA   GCFA   GCFA   GCFA   GCFA

NO.12 Which of the following is the process of overwriting all addressable locations on a disk?
A. Drive wiping
B. Spoofing
C. Sanitization
D. Authentication
Answer: A

GIAC demo   GCFA   GCFA   GCFA

NO.13 Adam works as a Computer Hacking Forensic Investigator for a garment company in the United States.
A project has been assigned to him to investigate a case of a disloyal employee who is suspected of
stealing design of the garments, which belongs to the company and selling those garments of the same
design under different brand name. Adam investigated that the company does not have any policy related
to the copy of design of the garments. He also investigated that the trademark under which the employee
is selling the garments is almost identical to the original trademark of the company. On the grounds of
which of the following laws can the employee be prosecuted.?
A. Trademark law
B. Cyber law
C. Copyright law
D. Espionage law
Answer: A

GIAC dumps   GCFA   GCFA

NO.14 Adam, a malicious hacker has successfully gained unauthorized access to the Linux system of
Umbrella Inc. Web server of the company runs on Apache. He has downloaded sensitive documents and
database files from the computer. After performing these malicious tasks, Adam finally runs the following
command on the Linux command box before disconnecting. for (( i =
0;i<11;i++ )); do
dd if=/dev/random of=/dev/hda && dd if=/dev/zero of=/dev/hda done
Which of the following actions does Adam want to perform by the above command?
A. Making a bit stream copy of the entire hard disk for later download.
B. Deleting all log files present on the system.
C. Wiping the contents of the hard disk with zeros.
D. Infecting the hard disk with polymorphic virus strings.
Answer: C

GIAC   GCFA   GCFA exam dumps   GCFA certification

NO.15 You work as a professional Computer Hacking Forensic Investigator for DataEnet Inc. You want to
investigate e-mail information of an employee of the company. The suspected employee is using an
online e-mail system such as Hotmail or Yahoo. Which of the following folders on the local computer will
you review to accomplish the task?
Each correct answer represents a complete solution. Choose all that apply.
A. History folder
B. Temporary Internet Folder
C. Download folder
D. Cookies folder
Answer: A,B,D

GIAC   GCFA exam dumps   GCFA

NO.16 TCP FIN scanning is a type of stealth scanning through which the attacker sends a FIN packet to the
target port. If the port is closed, the victim assumes that this packet was sent mistakenly by the attacker
and sends the RST packet to the attacker. If the port is open, the FIN packet will be ignored and the port
will drop the packet. Which of the following operating systems can be easily identified with the help of TCP
FIN scanning?
A. Solaris
B. Red Hat
C. Knoppix
D. Windows
Answer: D

GIAC test answers   GCFA braindump   GCFA

NO.17 You want to upgrade a partition in your computer's hard disk drive from FAT to NTFS. Which of the
following DOS commands will you use to accomplish this?
A. FORMAT C: /s
B. CONVERT C: /fs:ntfs
C. SYS C:
D. FDISK /mbr
Answer: B

GIAC demo   GCFA   GCFA exam   GCFA   GCFA exam simulations

NO.18 You company suspects an employee of sending unauthorized emails to competitors. These emails are
alleged to contain confidential company data. Which of the following is the most important step for you to
take in preserving the chain of custody?
A. Preserve the email server including all logs.
B. Make copies of that employee's email.
C. Seize the employee's PC.
D. Place spyware on the employee's PC to confirm these activities.
Answer: A

GIAC questions   GCFA   GCFA answers real questions   GCFA

NO.19 Adam works as a Security Administrator for Umbrella Inc. He is responsible for securing all 15 servers
of the company. To successfully accomplish the task, he enables the hardware and software firewalls and
disables all unnecessary services on all the servers. Sales manager of the company asks Adam to run
emulation software on one of the servers that requires the telnet service to function properly. Adam is
concerned about the security of the server, as telnet can be a very large security risk in an organization.
Adam decides to perform some footprinting, scanning, and penetration testing on the server to checkon
the server to check the security. Adam telnets into the server and writes the following command:
HEAD / HTTP/1.0
After pressing enter twice, Adam gets the following results:
Which of the following tasks has Adam just accomplished?
A. Poisoned the local DNS cache of the server.
B. Submitted a remote command to crash the server.
C. Grabbed the banner.
D. Downloaded a file to his local computer.
Answer: C

GIAC   GCFA certification   GCFA certification   GCFA test

NO.20 Which of the following modules of OS X kernel (XNU) provides the primary system program interface?
A. BSD
B. LIBKERN
C. I/O Toolkit
D. Mach
Answer: A

GIAC test answers   GCFA study guide   GCFA   GCFA

NO.21 You work as a Web developer for ABC Inc. You want to investigate the Cross-Site Scripting attack on
your company's Web site. Which of the following methods of investigation can you use to accomplish the
task?
Each correct answer represents a complete solution. Choose all that apply.
A. Review the source of any HTML-formatted e-mail messages for embedded scripts or links in the URL
to the company's site.
B. Look at the Web server's logs and normal traffic logging.
C. Use Wireshark to capture traffic going to the server and then searching for the requests going to the
input page, which may give log of the malicious traffic and the IP address of the source.
D. Use a Web proxy to view the Web server transactions in real time and investigate any
communication with outside servers.
Answer: A,B,D

GIAC   GCFA study guide   GCFA   GCFA questions

NO.22 Which of the following is the correct order of loading system files into the main memory of the system,
when the computer is running on Microsoft's Windows XP operating system?
A. NTLDR, BOOT.ini, HAL.dll, NTDETECT.com, NTOSKRNL.exe
B. NTLDR, BOOT.ini, NTDETECT.com, HAL.dll, NTOSKRNL.exe
C. NTLDR, BOOT.ini, HAL.dll, NTDETECT.com, NTOSKRNL.exe
D. BOOT.ini, HAL.dll, NTDETECT.com, NTLDR, NTOSKRNL.exe
Answer: B

GIAC demo   GCFA   GCFA exam prep   GCFA study guide   GCFA questions   GCFA

NO.23 Which of the following tools can be used to perform tasks such as Windows password cracking,
Windows enumeration, and VoIP session sniffing?
A. John the Ripper
B. L0phtcrack
C. Obiwan
D. Cain
Answer: D

GIAC   GCFA certification training   GCFA   GCFA test   GCFA questions

NO.24 Which of the following methods is used by forensic investigators to acquire an image over the network
in a secure manner?
A. DOS boot disk
B. Linux Live CD
C. Secure Authentication for EnCase (SAFE)
D. EnCase with a hardware write blocker
Answer: C

GIAC exam prep   GCFA   GCFA   GCFA certification training   GCFA exam dumps

NO.25 You work as a Network Administrator for Perfect Solutions Inc. You install Windows 98 on a computer.
By default, which of the following folders does Windows 98 setup use to keep the registry tools?
A. $SYSTEMROOT$REGISTRY
B. $SYSTEMROOT$WINDOWS
C. $SYSTEMROOT$WINDOWSREGISTRY
D. $SYSTEMROOT$WINDOWSSYSTEM32
Answer: B

GIAC test questions   GCFA   GCFA   GCFA

NO.26 Which of the following Acts enacted in United States allows the FBI to issue National Security Letters
(NSLs) to Internet service providers (ISPs) ordering them to disclose records about their customers?
A. Wiretap Act
B. Computer Fraud and Abuse Act
C. Economic Espionage Act of 1996
D. Electronic Communications Privacy Act of 1986
Answer: D

GIAC   GCFA pdf   GCFA test questions

NO.27 Which of the following encryption methods uses AES technology?
A. Dynamic WEP
B. Static WEP
C. TKIP
D. CCMP
Answer: D

GIAC exam prep   GCFA   GCFA pdf   GCFA braindump   GCFA

NO.28 You work as a Network Administrator for Net Perfect Inc. The company has a Windows Server 2008
network environment. The network is configured as a Windows Active Directory-based single forest single
domain network. The network is configured on IP version 6 protocol. All the computers on the network are
connected to a switch device. One day, users complain that they are unable to connect to a file server.
You try to ping the client computers from the server, but the pinging fails. You try to ping the server's own
loopback address, but it fails to ping. You restart the server, but the problem persists.
What is the most likely cause?
A. The cable that connects the server to the switch is broken.
B. Automatic IP addressing is not working.
C. The switch device is not working.
D. The server is configured with unspecified IP address.
E. The server's NIC is not working.
Answer: E

GIAC   GCFA   GCFA pdf   GCFA   GCFA exam simulations

NO.29 You work as a Network Administrator for Blue Bell Inc. You want to install Windows XP
Professional on your computer, which already has Windows Me installed. You want to configure your
computer to dual boot between Windows Me and Windows XP Professional. You have a single 40GB
hard disk.
Which of the following file systems will you choose to dual-boot between the two operating
systems?
A. NTFS
B. FAT32
C. CDFS
D. FAT
Answer: B

GIAC certification training   GCFA test   GCFA   GCFA dumps

NO.30 A firewall is a combination of hardware and software, used to provide security to a network. It is used
to protect an internal network or intranet against unauthorized access from the Internet or other outside
networks. It restricts inbound and outbound access and can analyze all traffic between an internal
network and the Internet. Users can configure a firewall to pass or block packets from specific IP
addresses and ports. Which of the following tools works as a firewall for the Linux 2.4 kernel?
A. OpenSSH
B. IPTables
C. IPChains
D. Stunnel
Answer: B

GIAC   GCFA   GCFA   GCFA original questions   GCFA exam simulations

ITCertKing offer the latest 000-156 exam material and high-quality HP2-E56 pdf questions & answers. Our 000-123 VCE testing engine and HP2-B102 study guide can help you pass the real exam. High-quality CAT-500 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.

Article Link: http://www.itcertking.com/GCFA_exam.html