Page 817 - StudyBook.pdf
P. 817
Self Test Appendix • Appendix 801
D.Telnet passes usernames and passwords in cleartext.Typical DMZ services like the Web
should be run on bastion hosts. Each service or open port offers another potential vulnerability.
Answers A, B, and C are incorrect because port 23 is not used by Subseven, it is not open by
default, and finding it open on a Web server would indicate that the Telnet server is open.
10. You have been given the scan below and asked to review it.
Interesting ports on (18.2.1.88):
(The 1263 ports scanned but not shown below are in state: filtered)
Port State Service
22/tcp open ssh
53/udp open dns
80/tcp open http
110/tcp open pop3
111/tcp open sun rpc
Your coworker believes it is a Linux computer.What open port led to that assumption?
A. Port 53
B. Port 80
C. Port 110
D. Port 111
B.While newer versions of Windows use both port 135 and 445, NT uses only the previous.
Answers A and C are incorrect because these systems would both have ports 445 present.
Answer D is incorrect because no Linux-type ports were found.
11. While your company has yet to develop a Web site, they consider the privacy of e-mail as very
important because they are developing a new, highly profitable prescription drug.Which of the
following will help them meet this goal?
A. IPSec
B. SMTP
C. PGP
D. SSL
www.syngress.com
