【多选题】
choose five___
A. MD5————————inserure
B. DES————————insercure
C. SDES———————legacy
D. SHA-1———————legacy
E. HMAC-MD5—————legacy
查看试卷,进入试卷练习
微信扫一扫,开始刷题
答案
ABCDE
解析
暂无解析
相关试题
【多选题】
Which two characteristics of symmetric encryption are true?___
A. It uses digital certificates
B. It requires more resources than asymmetric ancryption
C. It uses the same key to enctypt and decrupt traffic
D. It uses a public key and a pricate key to encrypt and decrypt traffic.
E. It is faster than asymmetric encryption
【多选题】
which two characteristics of PVLAN are true?___
A. Promiscuous porta can communicate with PVLAN ports.
B. Isolated ports cannot communicate with other ports on the same VLAN
C. Community ports have to be a part of the trunk.
D. They require VTP to be enabled in server mode
E. PVLAN ports can be configured as Ether Channel ports
【多选题】
What are two options for running Cisco SDM?___
A. Running SDM from a mobile device
B. Running SDM from within CiscoWorks
C. Running SDM from a router's flash
D. Running SDM from the Cisco web porta
E. Running SDM from a PC
【多选题】
Which two options are the primary deployment modeles for mobile device management?___
A. multisite
B. cloud-based
C. on premises
D. hybrid cloud basedo
E. single site
【多选题】
Drag the recommendation on the left to the Cryptographic algorithms on the right, Options will be used more than once.___
A. Avoid——————————————DES,MD5
B. Legacy——————————————SDES,SHA1,HMAC-MD5
【多选题】
Which two are valid types of vLans using PVLANS ?___
A. Community VLAN
B. Backup VLAN
C. Secondary VLAN
D. Isolated VLAN
E. Isolated VLAN
【多选题】
Which two commands are used to implement Resilient lOS Configuration ___
A. Secure boot-config
B. copy running-config tftp
C. copy flash:ios bin tftp
D. copy running-config startup-config
E. secure boot-image
【多选题】
Which two types of firewalls work at layer 4 and above ?___
A. Stateful inspection
B. Network Address Translation
C. Circuit-Level gateway
D. Static packet filter
E. Application Level firewall
【多选题】
Which two default settings for port security are true ?___
A. Violation is Protect
B. Violation is Restrict
C. Violation is Shutdown
D. Maximum number of MAC addresses is 2
E. Maximum number of MAC addresses is 1
【多选题】
Which two are characteristics of RADIUS?___
A. Uses UDP ports 1812 /1813
B. Uses TCP port 49
C. Uses UDP port 49
D.
E. ncrypts only the password between user and server
【多选题】
When setting up a site-to-site VPN with PSK authentication on a Cisco router, which two elements must be configured under crypto map?___
A. pfs
B. nat
C. reverse route
D. peer
E. transform-set
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two options are available to add a new root certificate?___
A. Install from SFTP server
B. Usehttps
C. Install from a file
D. Use LDAP
E. Use SCEP
【多选题】
Which two SNMPv3 services support its capabilities as a secure networ k manage protocol? ___
A. access control
B. the shared secret key
C. authentication
D. authorization
E. accounting
【多选题】
Which two statements about routed firewall mode are true ?___
A. The firewall acts as a routed hop in the network
B. This mode conceals the presence of the firewall
C. The firewall requires a unique iP address for each interface
D. This mode allows the firewall to be added to an existing networ k with minimal additional configuration By default, this mode permits most traffic to pass throug
【多选题】
Which two statements describe DHCP spoofing attacks?___
A. They are used to perform man-in- the-middle attacks
B. They can access most network devices
C. They can modify the flow of traffic in transit. LNGKAIG
D. They protect the identity of ti attacker by masking the DHCP address
E. They can physically modify the network gateway
【多选题】
Which two types of VLANs using PVLANs are valid?___
A. isolated
B. promiscuous
C. backup
D. secondary
E. community
【多选题】
What are two limitations of the self-zone policies on a zone-based firewall?___
A. They are unable to block Https traffic
B. They restrict SNMP traffic.
C. They are unable to support Https traffic
D. They are unable to implement application inspection
E. They are unable to perform rate limiting
【多选题】
Which two descriptions of TACACS+ are true? ___
A. The TACACS+ header is unencrypted
B. It combines a uthentication and authorization
C. It uses TCP as its transport protocol
D. Only the password is encrypted.
E. It uses UDP as its transport protocol.
【多选题】
Which two actions does an IPS perform? ___
A. it spans the traffic
B. it reflects the traffic back to the sender
C. it encrypts the traffic
D. it terminates the user session or connection of the attacker
E. it reconfigures a device to block the traffic
【多选题】
In which form of fraud does an attacker try to learn information such as login credenti account information by ma squerading as a reputable entity or person in email, IM or communication channels ?___
A. phishing
B. Smurfit
C. Hacking
D. Identity Spoofing
【多选题】
Which two ESA services are available for incoming and outgoing mails ?___
A. anti-DoS
B. reputation filter
C. antispam
D. content filter
E. DLP
【多选题】
What are two reasons to recommend SNMPv 3 over SNMPv2?___
A. SNMPv3 is secure because you can configure authe ntication and privacy
B. SNMPv3 is insecure because it send in formation in clear text
C. SNMPv2 is insecure because it send information in clear text
D. SNMPv3 is a Cisco proprietary protocol
E. SNMPv2 is secure because you can configure authentication and privacy
【多选题】
Which two actions can a zone- based firewall apply to a packet as it transits a zone pair?___
A. drop
B. inspect
C. queue
D. quarantine
【单选题】
Which security principle has been violated if data is altered in an unauthorized manner?___
A. accountability
B. confidentiality
C. availability
D. integrity
【单选题】
Which IKE Phase 1 parameter can you use to require the site-to-site VPN to use a pre-shared ?___
A. encryption
B. authentication
C. group
【单选题】
Which command successfully creates an administrative user with a password of "cisco"on a Cisco router?___
A. username Operator privilege 7 password cisco
B. username Operator privilege 1 password cisco
C. username Operator privilege 15 password cisco
D. username Operator password cisco privilege 15
【单选题】
Which EAP method authenticates a client against Active Directory without the use of client-side 802.1X certificates?___
A. EAP-TLS
B. EAP-MSCHAPv2
C. EAP-PEAP
D.
E. AP-GTC
【单选题】
What is a limitation of network-based IPS?___
A. It must be in dividually configured to support every operating system on the network.
B. It is most effective at the in dividual host level
C. It is unable to monitor attacks across the entire netw ork
D. Large installations require numerous sensors to fully protect the network
【单选题】
When would you configure the ip dhcp snooping trust command on a sw itch?___
A. when the switch is connected to a DHCP server
B. when the switch is working in an edge capacit
C. when the switch is connected to a client system
D. when the switch is serving as an aggregator
【单选题】
How does the 802. 1x supplicant communicate with the authentication server?___
A. The supplicant creates EAP packets and sends them to the authenticator, which encapsulates them into RADIUS and forwards them to the authentication server.
B. The supplicant creates RADIUS packets and sends them to the authe nticator, which encapsulates the m into EAP and forwards them to the a uthentication server.
C. The supplicant creates RADIUS packets and sends them to the authenticator, which translates them into eap and forwards them to the a ut hentication server
D. The supplicant creates
E. AP packets and sends them to the authe nticator, which translates them into radius and forwards them to the authentication server.
【单选题】
Which command do you enter to verify the phase I status of a VPN connection?___
A. sh crypto se ssion
B. debug crypto isakmp
C. sh crypto isakmp sa
D. sh crypto ipsec sa
【单选题】
Refer to the exhibit. what is the e ffect of the given configuration?___
A. It enables authentication,
B. It prevents keychain authentication.
C. The two routers receive normal updates from one another.
D. The two device s are able to pass the message digest to one another.
【单选题】
Which command can you enter to configure OSPF to use hashing to authenticate routing updates?___
A. ip ospf aut hentication message-digest
B. neighbor 192 168.0 112 cost md5
C. ip ospf priority 1
D. ip ospf aut hentication-key
【单选题】
Which command can you enter to verify the status of Cisco lOS Resilient Configuration on a Cisco router?___
A. show secure bootset
B. secure boot-image
C. show binary file
D. ure boot-config
【单选题】
A user on your network inadvertently activates a botnet program that was received as an emai attachment. Which type of mechanism does Cisco Firepower use to detect and block only the botnet attack?___
A. network-based access control rule
B. reputation-based
C. user-ba sed access control rule
D. botnet traffic filter
【单选题】
What does the policy map do in CoPP?___
A. defines service parameters
B. defines packet selection parameters
C. defines the packet filter
D. define s the action to be performed
【单选题】
How is management traffic isolated on a Cisco ASR 1002?___
A. Traffic isolation is done on the vlan level
B. There is no management traffic isolation on a Cisco ASR 1002
C. Traffic is isolated based upon how you configure routing on the device
D. The management interface is configured in a special vRF that provides traffic isolation from the default routing table
【单选题】
Which statement about NaT table evaluation in the asa is true?___
A. After-auto NAT polices are appl d first
B. Manual NAT policies are applied first
C. the asa uses the most specific match
D. Auto NAT policies are applied first
【单选题】
Which information can you display by executing the show crypto ipsec sa command?___
A. ISAKMP SAs that are established between two peers
B. recent changes to the IP address of a peer router
C. proxy infor mation for the connection between two peers
D. IPsec SAs established between two peers
【单选题】
How can you prevent NAT rules from sending traffic to incorrect interfaces?___
A. Assign the output interface in the NAT statement
B. Add the no-proxy-arp command to the nat line.
C. Configure twice NAT instead o bject NAT. 5
D. Use packet-tracer rules to reroute misrouted NAT entries.
推荐试题
【单选题】
《生产安全事故应急演练指南》(AQ/T9007—2011)规定了生产安全事故应急演练(以下简称应急演练)的目的、原则、类型、内容和___。
A. 综合应急演练的组织
B. 综合应急演练的组织与实施
C. 专项应急演练的组织与实施
【单选题】
《安全生产法》规定,生产经营单位对___应当登记建档,进行定期检测、评估、监控,并制定应急预案,告知从业人员和相关人员在紧急情况下应当采取的应急措施。
A. 设备
B. 重大危险源
C. 危险化学品
【单选题】
《安全生产法》规定,生产经营单位对___未登记建档,或者未进行评估、监控,或者未制定应急预案的,责令限期改正,可以处十万元以下的罚款;逾期未改正的,责令停产停业整顿,并处十万元以上二十万元以下的罚款,对其直接负责人的主管人员和其他直接责任人员处二万元以上五万元以下的罚款;构成犯罪的,依照刑法有关规定追究刑事责任。
A. 危险化学品
B. 储存设备
C. 重大危险源
【单选题】
《危险化学品安全管理条例》规定,危险化学品单位应当制定本单位危险化学品事故应急预案,配备应急救援人员和必要的应急救援器材、设备,并定期组织应急救援___。
A. 演练
B. 学习
C. 讲解
【单选题】
危险化学品的___的单位,应当在危险化学品的包装内附有与危险化学品完全一致的化学品安全技术说明书,并在包装(包括外包装件)上加贴或者拴挂与包装内危险化学品完全一致的化学品安全标签。
A. 经营
B. 生产
C. 储存
【单选题】
申请剧毒化学品和其他危险化学品经营许可证的企业和单位,___具有资质的安全评价机构对本单位的经营条件进行安全评价。
A. 由安全监督部门指定的
B. 自主选择
C. 由公安部门定点的
【单选题】
企业应对工厂的___负责,在对重大危险源进行辨识和评价后,应对每一个重大危险源制定出一套严格的管理制度,采取技术措施和组织措施对重大危险源进行严格的控制和管理。
A. 职工
B. 安全生产
C. 财产
【单选题】
应急救援指挥领导小组负责本单位预案的制订、修订,组建___,组织预案的实施和演练,检查督促做好重大危险源事故的预防措施和应急救援的各项准备工作。
A. 应急救援队伍
B. 基干民兵队伍
C. 生产骨干队伍
【单选题】
《中国人民共和国消防法》规定,进行电焊、气焊等具有火灾危险的作业人员和自动消防系统的操作人员,必须___,并严格遵守消防安全操作规程。
A. 持证上岗
B. 经过培训
C. 服从领导
【单选题】
某市一公司利用存放干杂仓库改造成危险化学品仓库,库房之间防火间距不符合标准。并将过硫酸铵(氧化剂)与硫化碱(还原剂)在同一个库房混存。8月5日因包装破漏,过硫酸铵与硫化碱接触发生化学反应,起火燃烧,13点26分爆炸引起大火,1小时后离着火区很近的仓库内存放的低闪点易燃液体又发生第二次强烈爆炸,造成更大范围的破坏和火灾。至8月6日凌晨5时,扑灭了这场大火。这起事故造成15人死亡,200多人受伤,其中重伤25人,直接经济损失2.5亿元。根据上述情况,该仓库贮存过硫酸铵与硫化碱的方式是___。
A. 分区
B. 分类
C. 分库
【单选题】
2005年6月某职业病防治所接到报告,某电器公司员工杨某由于三氯乙烯中毒导致死亡。卫生监督人员现场检查发现该电器公司清洗工序设有一台超声波清洗机,使用三氯乙烯作为清洗剂。该公司已向卫生部门申报存在三氯乙烯职业危害,清洗工序未设立警示标志和中文警示说明。该单位工人进公司时检查过肝功能,但没有进行在岗期间、离岗时的职业健康检查,公司没能提供工作场所职业病危害因素监测及评价资料,订立劳动合同时没有告知劳动者职业病危害真实情况,经检测清洗房中的三氯乙烯浓度最高为243mg/?。根据以上描述,对从事接触职业病危害的作业的劳动者,用人单位应当按照国务院安全生产监督管理部门、卫生行政部门的规定组织上岗前、在岗期间和离岗时的职业健康检查,并将检查结果___告知劳动者。
A. 电话
B. 书面
C. 书面或电话均可
【单选题】
某地一化工建材公司主要经营丙烯酸、稀释剂、二甲苯、铁红等化工原料。2006年6月19日,店内储存的二甲苯溶剂泄漏,形成的爆炸混合气体与员工取暖使用煤炉处的明火接触,发生爆燃引发火灾。过火面积60㎡。根据上述情况,该单位的___是本单位的消防安全责任人。
A. 主要负责人
B. 负责人
C. 安全管理人员
【单选题】
2005年6月某职业病防治所接到报告,某电器公司员工杨某由于三氯乙烯中毒导致死亡。卫生监督人员现场检查发现该电器公司清洗工序设有一台超声波清洗机,使用三氯乙烯作为清洗剂。该公司已向安监部门申报存在三氯乙烯职业危害,清洗工序未设立警示标志和中文警示说明。该单位工人进公司时检查过肝功能,但没有进行在岗期间、离岗时的职业健康检查,公司没能提供工作场所职业病危害因素监测及评价资料,订立劳动合同时没有告知劳动者职业病危害真实情况,经检测清洗房中的三氯乙烯浓度最高为243mg/m3。根据上述事实,三氯乙烯可能导致的职业病有___。
A. 职业性哮喘
B. 肝血管瘤
C. 白血病
【单选题】
某煤气公司液化石油气储罐区发生液化石油气泄漏燃爆事故。事发当天16时38分,接班巡线职工检查发现,白茫茫的雾状液化气带着呼啸声从罐区容积400?的11号球罐底部喷出。虽经单位职工及当地消防队员奋力抢险,最终还是在18时50分发生第一次爆炸,造成参加现场抢险人员中的12人当场死亡,31人受伤。19时25分,11号球罐再次发生爆炸,20时,12号球罐也发生爆炸,引发邻近3台100?卧罐安全阀排放、着火燃烧。此次燃爆事故烧毁400?球罐2台,100?卧罐4台,燃损槽车7辆,炸毁配电室、水泵房等建筑物,直接经济损失477万元。根据上述情况,依据《生产安全事故报告和调查处理条例》本事故属于___事故。
A. 特别重大
B. 重大
C. 较大
【单选题】
某化学品经营企业从化工厂购进一批(10t)氢氧化钠(固碱),个别包装存在破损泄漏情况,将其存放在一座年久失修的不符合储存条件的库房中。一天晚上,大雨倾盆而下库房进水,将部分氢氧化钠泡在水中,致使氢氧化钠渗入水中并顺水流入附近河流。仓库保管员发现后,及时报告了单位主管领导,主管领导立即进行了应急处理,嘱咐手下人员不得向外界泄漏任何消息。根据上述情况,请指出以下()方面符合危险化学品安全管理要求.___
A. 氢氧化钠的包装不够严密,存在泄漏,造成水侵入,不符合危险货物包装的有关要求
B. 危险化学品必须储存经审查批准的危险品仓库中,未经批准不得随意设置危险化学品储存仓库
C. 单位主管领导接到报告后立即进行了应急处理
【单选题】
某建材商店地下涂料仓库内,存放大量不合格的“三无”产品聚氨酯涂料(涂料是苯系物)。地下仓库内虽有预留通风口,但通风差,无动力排风设施。某日,进入库房作业时1名工人昏倒在地,一同作业的另2名工人,在救助时也昏倒在地。经救援人员将中毒的3名工人送往医院,其中两人经抢救无效死亡。事后,又有2名在地下仓库作业的工人,发现有中毒症状,被送到医院住院治疗。根据上述事实,该涂料仓库内存放的“三无”产品聚氨酯涂料挥发出的苯蒸气的毒性属于___。
A. 低毒
B. 中毒
C. 高毒
【单选题】
某化学品经营企业从化工厂购进一批(10t)氢氧化钠(固碱),个别包装存在破损泄漏情况,将其存放在一座年久失修的不符合储存条件的库房中。一天晚上,大雨倾盆而下库房进水,将部分氢氧化钠泡在水中,致使氢氧化钠渗入水中并顺水流入附近河流。仓库保管员发现后,及时报告了单位主管领导,主管领导立即进行了应急处理,嘱咐手下人员不得向外界泄漏任何消息。根据上述情况,依据《危险化学品经营企业开业条件和技术要求》,分析危险化学品仓库按其使用性质和经营规模分为___种类型。
A. 三
B. 二
C. 四
【单选题】
某车库发生了严重的火灾,事后经调查得知,该车库平时用于堆放油料和纸箱之类的杂物,存放大约有2t左右的汽油、柴油等油品,当晚20时左右,车库老板在库内把车库反锁后,在开车库灯的时候发生爆炸,车库门被炸开,里面火光冲天,大火使整个车库几乎化为废墟。根据上述情况,化学危险品必须贮存在经___部门批准设置的专门的化学危险品仓库中,经销部门自管仓库贮存化学危险品及贮存数量必须经公安部门批准。
A. 公安
B. 环保
C. 质检
