Security Taboos

Review Questions

You can find the solutions to these questions in Appendix A, "Answers to Review Questions."

1.

When are critical hot fixes and patches to the Cisco IP Telephony Operating System posted on Cisco.com for download?

  1. 24 hours after the announcement from Microsoft
  2. Monthly in a consolidated security release
  3. With the next operating system upgrade
  4. These should be downloaded from Microsoft as soon as they appear.

2.

Which feature should not be enabled when using antivirus protection software?

  1. Full-scan
  2. Heuristic scan
  3. E-mail scan
  4. Pagefile scan

3.

Which Cisco-provided software tool protects Cisco CallManager against malicious applications?

  1. CDR
  2. CER
  3. CSA
  4. CRM

4.

Which parameter has to be set on all service accounts?

  1. Complex password requirement
  2. Minimum password length of six characters
  3. Password never expires
  4. Enforce password history

5.

What Microsoft service is most commonly attacked?

  1. DNS service
  2. DHCP service
  3. IIS service
  4. Active Directory service

   
6.

Which setting on the Cisco IP Telephony Operating System is supported on the CallManager platform but not recommended by Cisco?

  1. Delete the IUSER_Guest account
  2. Delete SQL service accounts
  3. Install third-party utilities
  4. Disable Dr. Watson

7.

What automated method does Cisco support for security updates and hot fixes to the CallManager server?

  1. Receiving e-mail updates from the Cisco CallManager Notification Tool
  2. Downloading updates directly from Microsoft using the Windows Update Services
  3. Using the CSA standalone automatic update feature
  4. Downloading updates directly from Cisco using the automated Cisco Update Services

8.

Which of the following files represent an automated security script that will add additional Cisco approved security to the CallManager server? (Choose two.)

  1. CCM-OS-OptionalSecurity.cmd
  2. CSA_SecurityScript.cmd
  3. IPSec-W2KSQL.cmd
  4. SecurityTemplace_CCM4xx.cmd

9.

Which of the following antivirus platforms is NOT supported by Cisco for installation on a Cisco CallManager platform?

  1. McAfee VirusScan Enterprise
  2. Symantec AntiVirus Corporate Edition
  3. Trend Micro ServerProtect
  4. WebX SecureServer

10.

Which of the following does the headless CSA protect against? (Choose two.)

  1. Operating system file integrity
  2. Restriction of network-aware, locally installed applications to local resources
  3. Protection against virus infection
  4. Protects against preconfigured inbound network connections to the CallManager server

Категории