Scribd
Upload
84 views

MidTerm Quiz101

This document contains a series of true/false questions about topics related to networking, time servers, load balancing, and graphics file headers. Key points covered include: DNS can balance load across servers; HTTPS cannot be served by a transparent proxy; NTP uses a 64-bit representation; two stratum 3 time servers are ideally needed in an organization; GPS is a common stratum 0 time source; clients receive time from domain controllers; time servers peer with each other at stratum 2 or higher; SSL acceleration requires full proxying of the website; load balancers can mitigate single points of failure; clients reach the same server with persistence; forensics tools may not include GUI viewers; analyzing, identifying, and inspecting files

Uploaded by

Michael Angelo Laguna Dela Fuente
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
84 views

MidTerm Quiz101

This document contains a series of true/false questions about topics related to networking, time servers, load balancing, and graphics file headers. Key points covered include: DNS can balance load across servers; HTTPS cannot be served by a transparent proxy; NTP uses a 64-bit representation; two stratum 3 time servers are ideally needed in an organization; GPS is a common stratum 0 time source; clients receive time from domain controllers; time servers peer with each other at stratum 2 or higher; SSL acceleration requires full proxying of the website; load balancers can mitigate single points of failure; clients reach the same server with persistence; forensics tools may not include GUI viewers; analyzing, identifying, and inspecting files

Uploaded by

Michael Angelo Laguna Dela Fuente
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as DOCX, PDF, TXT or read online on Scribd
You are on page 1/ 3

MidTerm-Quiz101

DNS flagging effectively balances load across multiple web servers.


False

A transparent proxy server can readily serve both HTTP and HTTPS.
False (cannot serve HTTPS)

The HTTP protocol typically has multiple, concurrent open TCP connections for
each web page.
True

Each HTTPS enabled web site (DNS name) requires a separate IP address.
True

Quiz 4
Quiz 4

Virtual machines should always use NTP because their time tends to drift.
False (use VMware Tools)

Current versions of NTP use a 32 bit representation that is accurate to 0.233


nanoseconds.
False (64 bit)

Ideally there should be least one stratum 4 or better time servers with an
organization.
False (two stratum 3)

The most commonly used stratum 0 time source is __________.


GPS receiver

The SNTP protocol consistently checks time and uses a drift file to ensure accurate
time keeping.
False (NTP, SNTP asks only once)

The purpose of Marzullo's algorithm is to take into account the transmission


duration of the time information in NTP.
True

If you have no specific time server to reference you may use the public pools
available at #.pool.________________.
ntp.org

In a Windows domain, clients receive time information from the Primary Domain
Controller or PDC Emulator.
True
Time servers at stratum 2 or higher numbers peer with one another.
True

Quiz 5
Quiz 5

SSL Acceleration requires the ADC fully proxy the web site.
True

In full proxy load balancing there are two separate data flows.
True

The single point of failure created by an ADC makes their use limited as there is no
way to mitigate this risk.
False (multiple ways to mitigate)

Acceleration refers to offloading some of the server's functionality to the


application delivery controller.
True

Order the components of a web application delivery controller based system in


order beginning with the user.
browser, client, firewall, adc, webserver

Which of the following are capabilities of application delivery controllers?


load balancing, fail-over, ssl acceleration, monitoring

When managing data flows through an application delivery controller the return
traffic from the application server to the client must have a source address of the
___________.
ADC

When load balancing HTTP(S) you must ensure that each ________________ is
persistently reaching the same server.
client

Cloud computing relies heavily on virtualization technologies.


True

What makes graphic files different from each other?


Each graphic files have a unique header

What is the header of a JPEG?


Hexadecimal value FFD8 followed by the label JFIF for a standard jpeg or exif file at
offset 6
What are false positives?
False hits when attempting to extract possible jpeg files from unallocated space

What is necessary when finding files your tools do not recognize?


Analyzing the (graphic) file headers

When analyzing graphic file headers, what is the primary type of tool you will be
using?
A hexadecimal editor

What should you do after recovering a graphics file?


Try and use a image viewer to open and view it.

(You probably though the answer would be harder.)

True or False: No one viewer can read every format. So it is important to have a
few different types of graphic viewers.
True

True or False: Most forensics tools include image viewers that display common
image formats.
False: There are many forensics tools that do not have a GUI and thus no image
viewer.

To make this true, add the word GUI between Most and forensics

It is important to do these three things to every unknown file on a drive. What are
they?
analyze, identify and inspect.

What are the two forms of steganography?


Insertion and Substitution

What is insertion steganography?


Hidden data that is not displayed in the host file.

Ex. Appending text to an image file using the command line. The text will not
display but it will be available if you view the file as a text file.

You might also like