14.1 Security Best Practices, 14.1.5 Practice Questions
One of the Windows workstations you manage has three user accounts defined on it. Two of the users are Limited users, while the third (your account) is an Administrative user. Each Limited and Administrative user has been assigned a strong password. File and folder permissions have been assigned to prevent users from accessing each other's files. Which of the following would MOST likely increase this system's security?
1. Set a screen saver password. 2. Disable Autorun on the system.
Which of the following are examples of a strong password?
1. il0ve2EatIceCr3am! 2. I love the Linux P3ngu!n Tux
Which Windows feature can you use to encrypt a hard drive volume?
BitLocker
One of the Windows workstations you manage has four user accounts defined on it. Two of the users are Limited users, while the third (your account) is an Administrative user. The fourth account is the Guest user account, which has been enabled to allow management employees convenient workstation access. Each Limited and Administrative user has been assigned a strong password. File and folder permissions have been assigned to prevent users from accessing each other's files. Autorun has also been disabled on the system. Which of the following actions is MOST likely to increase this system's security?
Disable the Guest account.
You are establishing a new security policy for user authentication and want to implement multi-factor authentication. Which of the following would BEST accomplish this?
Fingerprint and one-time code text message
You are working at the local hospital in the IT department. You have just received a promotion to junior network technician. Part of your new role involves troubleshooting network communication issues. Which of the following user groups should your account be added to?
Network Configuration Operator
A technician assists Joe, an employee in the sales department who needs access to the client database, by granting him Administrator privileges. Later, Joe discovers that he has access to the salaries in the payroll database. Which of the following security practices was violated?
Principle of least privilege
During an airline flight, a laptop user makes last-minute changes to a presentation that contains sensitive company information. Which of the following would make it difficult for other passengers to view this information on the laptop display?
Privacy filter
You are assisting the security administrator and discover that a user was logged in to their workstation after hours. After further investigation, you discover that the user's account was compromised, and someone used the account to steal sensitive data. Which of the following could have BEST prevented this from happening?
Restrict the user's login times to work hours only.
Which database encryption method can you use to encrypt data at rest?
Transparent data encryption
