Infrastructure Security: System Hardening • Chapter 8  521

                      B. SMTP

                      C. PGP
                      D. SSL

                  12. Your company has decided to outsource part of its DNS services. Since the
                      old DNS servers will no longer need to be replicated to those outside the
                      firewall, they would like you to lock down the potential hole.What port and
                      protocol should be blocked on the firewall?
                      A. UDP 53
                      B. TCP 79

                      C. TCP 110
                      D. 53 TCP

                  13. Monday morning has brought news that your company’s e-mail has been
                      blacklisted by many ISP’s. Somehow your e-mail servers were used to spread
                      spam.What most likely went wrong?
                      A. An insecure email account was hacked

                      B. Sendmail vulnerability
                      C. Open mail relay
                      D. Port 25 was left open

                  14. Management was rather upset to find out that someone has been hosting a
                      music file transfer site on one of your servers. Internal employees have been
                      ruled out as it appears it was an outsider.What most likely went wrong?

                      A. Anonymous access
                      B. No Web access control
                      C. No SSL
                      D. No bandwidth controls


                  15. Someone played a bad joke on your company.Visitors accessing the Web site
                      were redirected to your competitors Uniform Resource Locator (URL). Can
                      you describe what the attackers did?








                                                                              www.syngress.com