[Free] 2017(Sep) EnsurePass Dumpsleader GIAC GSLC Dumps with VCE and PDF 101-110

Ensurepass.com : Ensure you pass the IT Exams
2017 Sep GIAC Official New Released GSLC
100% Free Download! 100% Pass Guaranteed!

GIAC Security Leadership Certification (GSLC)

Question No: 101 – (Topic 1)

Which of the following are countermeasures to prevent unauthorized database access attacks?

Each correct answer represents a complete solution. Choose all that apply.

  1. Session encryption

  2. Removing all stored procedures

  3. Input sanitization

  4. Applying strong firewall rules

Answer: A,B,C,D

Question No: 102 – (Topic 1)

Which of the following contract types is described in the statement below?

quot;This contract type provides no incentive for the contractor to control costs and hence is rarely utilized.quot;

  1. Cost Plus Fixed Fee

  2. Cost Plus Award Fee

  3. Cost Plus Incentive Fee

  4. Cost Plus Percentage of Cost

Answer: D

Question No: 103 – (Topic 1)

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He wants to use Kismet as a wireless sniffer to sniff the We-are-secure network. Which of the following IEEE-based traffic can be sniffed with Kismet?

Each correct answer represents a complete solution. Choose all that apply.

A. 802.11g B. 802.11a C. 802.11b D. 802.11n

Answer: A,B,C,D

Question No: 104 – (Topic 1)

Which of the following password authentication schemes enables a user with a domain account to log on to a network once, using a password or smart card, and to gain access to multiple computers in the domain without being prompted to log in again?

  1. Single Sign-On

  2. Dynamic

  3. One-time password

  4. Kerberos

Answer: A

Question No: 105 – (Topic 1)

Which of the following encryption algorithms is applied in the PGP encryption system?

  1. TDE

  2. Triple DES

  3. Blowfish

  4. IDEA

Answer: D

Question No: 106 – (Topic 1)

In which of the following attacks does an attacker create the IP packets with a forged (spoofed) source IP address with the purpose of concealing the identity of the sender or impersonating another computing system?

  1. Polymorphic shell code attack

  2. IP address spoofing

  3. Cross-site request forgery

  4. Rainbow attack

Answer: B

Question No: 107 – (Topic 1)

Tomas is the project manager of the QWS Project and is worried that the project stakeholders will want to change the project scope frequently. His fear is based on the many open issues in the project and how the resolution of the issues may lead to additional project changes. On what document are Tomas and the stakeholders working in this scenario?

  1. Change management plan

  2. Communications management plan

  3. Issue log

  4. Risk management plan

Answer: A

Question No: 108 – (Topic 1)

Which of the following tools works both as an encryption-cracking tool and as a keylogger?

  1. Magic Lantern

  2. KeyGhost Keylogger

  3. Alchemy Remote Executor

  4. SocketShield

Answer: A

Question No: 109 – (Topic 1)

Which of the following statements about Encapsulating Security Payload (ESP) are true? Each correct answer represents a complete solution. Choose two.

  1. It is an IPSec protocol.

  2. It is a text-based communication protocol.

  3. It uses TCP port 22 as the default port and operates at the application layer.

  4. It can also be nested with the Layer Two Tunneling Protocol (L2TP).

Answer: A,D

Question No: 110 – (Topic 1)

Which of the following statements about IPSec are true?

Each correct answer represents a complete solution. Choose two.

  1. It uses Internet Protocol (IP) for data integrity.

  2. It uses Authentication Header (AH) for data integrity.

  3. It uses Password Authentication Protocol (PAP) for user authentication.

  4. It uses Encapsulating Security Payload (ESP) for data confidentiality.

Answer: B,D

100% Ensurepass Free Download!
Download Free Demo:GSLC Demo PDF
100% Ensurepass Free Guaranteed!
Download 2017 EnsurePass GSLC Dumps

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

2017 EnsurePass IT Certification PDF and VCE

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.