Page 816 - StudyBook.pdf
P. 816
800 Appendix • Self Test Appendix
7. You have been given the scan below and asked to review it.
Interesting ports on (12.16.3.199):
(The 1594 ports scanned but not shown below are in state: filtered)
Port State Service
22/tcp open ssh
69/udp open tftp
80/tcp open http
135/tcp open netbios ssn
3306/tcp open mysql
Based on an analysis, can you determine the OS of the scanned network system?
A. Windows XP
B. Windows NT
C. Windows Vista
D. Linux
B.While newer versions of Windows use both port 135 and 445, NT uses only the previous
versions.
Answers A and C are incorrect because these systems would both have ports 445 present.
Answer D is incorrect because no Linux type ports were found.
8. You have been tasked with securing the network.While reviewing an Nmap scan of your net-
work, one device had the following ports open.Which one will you choose?
A. 22
B. 110
C. 161
D. 31337
D. 31337 is the port normally used for Back Orifice. Back Orifice is a well-known backdoor
program that is used by hackers to control systems.
Answer A is incorrect because port 22 is SSH.Answer B is incorrect because port 110 is
POP3.Answer C is incorrect because port 161 is SNMP.
9. Justin is reviewing open ports on his Web server and has noticed that port 23 is open. He has
asked you what the port is and if it presents a problem.What should you tell him?
A. Port 23 is no problem because it is just the Telnet client
B. Port 23 is a problem because it is used by the Subseven Trojan
C. Port 23 is open by default and is for system processes
D. Port 23 is a concern because it is a Telnet server and is active
www.syngress.com
