1. Customers receive emails with links to malicious software. These e-mails are undermining spam filters. The e-mail reads: Delivered-To: customer@example.com Received: by 10.14.120.205 Mon, November 1, 2010 11:15:24 -0700 (PDT) Received: 10.231.31.193 on Mon, November 1, 2010 11 : 15: 23 -0700 (PDT) Return-Path: received: from 127.0.0.1 for; Mon, November 1, 2010 13:15:14 - 0500 (envelope from) Received: by smtpex.example.com (SMTP READY) with ESMTP (AIO); Mon, November 1, 2010 13:15:14 -0500 Received: from 172.18.45.122 through 192.168.2.55; Mon, November 1, 2010 13:15:14 -0500 From: Company To: 'customer@example.com' Date: Mon, November 1, 2010 13:15:11 -0500 Subject: New Insurance Application Thread-Topic: New Insurance Application download and install the software from the site below to maintain full access to your account. www.examplesite.com Additional information: authorized mail server IP addresses 192.168.2.10 and 192.168.2.11. The networkà ¬ ys subnet 192.168.2.0/25. Which of the following are the most appropriate courses of action to take a security administrator to exclude this risk? (Choose two).(Select 2answers)

A) Identify the origination of malicious activity on unauthorized mail server.
B) STARTTLS Turn on the spam filter.
C) Disable the SMTP service on the unauthorized mail server.
D) Block port 25 on the firewall for all unauthorized mail servers
E) Disable open relay functionality


2. Three companies to allow their employees to seamlessly connect to each enterprise wireless networks while consistent wireless client configuration. Every company wants to maintain its own authentication infrastructure and wants to ensure that a worker who will visit the other two companies verified by the home office when connecting to other companies wireless network. All three companies have agreed to standardize on 802.1x EAP PEAPMSCHAPv2 client configuration. Which of the following would implement the three companies?

A) The three companies must implement federated authentication via Shibboleth connected to an LDAP backend and agree on a single SSID.
B) None
C) All three companies have to use the same wireless provider to facilitate the use of a shared cloud-based wireless controller.
D) The three companies should perform a central portal-based single sign-on and will use the same agreement with CA to issue client certificates.
E) The three companies have to agree on a single SSID and configure a hierarchical system that implements RADIUS confidence delegation.


3. Two separate companies are in the process of integrating their authentication infrastructure in a unified single sign-on system. Currently, both companies use an AD backend and two-factor authentication using TOTP. The administrators have trust configured between the backend authentication to ensure proper process flow. What workers need to request access to shared resources for authentication integration is complete?

A) They must use the username format: first.lastname@company.com along with a password and their six-digit code.
B) They should log into the system with the user name concatenated with the 6-digit code and their original password.
C) They must use the username format: LAN First.Lastname with their original password and the following six-digit code displayed when the token button is pressed.
D) None
E) They should log into the system using the new global assigned username: First.Lastname #### where #### is the second factor code.


4. Which of the following technology prevents unauthorized viewing of HBA iSCSI target information?

A) storage multipaths
B) data snapshots
C) deduplication
D) LUN masking
E) None


5. A penetration tester examines a mobile banking application. Man-in-the-middle interception attempts via SSL failure error HTTP proxy. Which of the following controls has probably done by the developers?

A) None
B) SSL certificate is revoked
C) SSL certificate pinning
D) Extended Validation Certificates
E) Mobile device detection root kit