Need2Know Flashcards

Question

Standard Operating Environments

Answer 1

- a set of tested and approved hardware/software systems - often a standalone OS image

Answer 2

- password management utility on macOS - encrypted

Answer 3

- General Data Protection Regulation (only in Europe) - European union regulation - data protection and privacy for individuals in the EU - gives users control of their personal data - right of erasure

Answer 4

- macOS management of disks and images - has file system utilities

Answer 5

Linux's version of the Mac OS App Store

Answer 6

iOS - CAN be configured to erase everything after 10 failed attempts Android - lock the device and CAN require Google credentials or else the device is wiped

Answer 7

- no internet link required - data is immediately available - generally cheaper than off site backups

Answer 8

- runs when you perform a Windows upgrade - run manually from the Windows setup screen - called the Windows 10 Upgrade Checker or the PC Health Checker for Windows 11

Answer 9

-Apple OS for iPhone -Cloud sourced -Unix based

Answer 10

- users, guests - remote management users - event log readers

Answer 11

- might be linked to bad hardware, bad drivers, or a bad application - use last known good, system restore, or rollback drivers to troubleshoot a possible software problem - or try safe mode - if potentially hardware related, remove or reseat the hardware - run hardware diagnostics

Answer 12

1. verify malware symptoms 2. quarantine infected 3. disable system restore 4. remediate : update anti-virus 5. remediate : scan and remove 6. schedule scans and run updates 7. enable system protection 8. educate the end user

Answer 13

- r (read) - w (write) - x (execute)

Answer 14

- Network address translation - Process where a network device, typically a router or firewall, modifies network address information in the IP header of packets traversing a network. It's primarily used to allow multiple devices on a private network to access the internet using a single public IP address. NAT also provides a degree of security by hiding the internal network's topology from the outside world.

Answer 15

- the man-in-the-middle is on the local device, in the browser - the attacker uses the advantage of encrypted traffic being so easy to proxy - malware, often a trojan horse does all of the proxy work

Answer 16

- ".vbs" file extension - general purpose scripting in Windows - application automation- especially for MS Office automation

Answer 17

- malware that spies on you - may trick you into installing it - may work in conjunction with a keylogger

Answer 18

- slow performance and lock up/unresponsiveness - internet connectivity issues - OS update failures - use malware cleaner or reload from a known good backup

Answer 19

Malware, restore from known good backup

Answer 20

- disconnect from the network - isolate all removable media - control the spread

Answer 21

1. login to the computer with the user account - the profile will be rebuilt 2. login as the domain administrator and copy any important files from the old profile, to the new profile

Answer 22

- represent data as a fixed-length string of text - will likely not have a collision (match another hash) - makes it impossible to recover an original message from the digest - without knowing the hash, the hashing method, etc. - SHA-256 is a common hashing method. - different operating systems and applications use different hash algorithms.

Answer 23

- open system - WPA2/3 - Personal or WPA2/3 - PSK - everyone uses the same 256-bit key - WPA2/3 - Enterprise or WPA2/3 - 802.1x - authenticates users individually with an authentification server

Answer 24

- public IP address, assigned by ISP so that router can talk to the rest of the internet - may be dynamically allocated by the ISP - may be able to switch to a static IP address for an additional cost - easier management

Answer 25

- used to allow or deny traffic - also used by operating systems - commonly used on the ingress or egress of a routing interface Track progress

Answer 26

- limit application access to private data, as well as cameras and microphones - by default, Mac OS apps cannot view your private data

Answer 27

- provides direct OS access - requires custom firmware - replaces the existing OS's firmware - uncontrolled access - renders an MDM relatively useless - can allow access to things (software/features) that are not officially supported by the manufacture

Answer 28

True- as long as they have the appropriate software

Answer 29

- provide certificate based authentication - requires a smart card reader to authenticate

Answer 30

- basic command line that can be used without having to fully start Windows - provides complete control, but requires an extensive knowledge base to properly and safely use

Answer 31

- configure how Windows uses power - options to choose what closing the lid on a laptop does - options for USB selective suspend - used to disable individual USB devices - enable or disable fast startup modes: - hibernate - open documents and applications are saved to the disk - used by Fast Startup - sleep (standby) - open files and applications are stored in memory - save power and startup quickly - switches to hibernate if power is low

Answer 32

- redirects folders to a network share - user configuration > policies > windows settings > folder redirection (group policy) - often paired with the Offline Files feature

Answer 33

- FDE tool - decryption requires a local key or iCloud authentication - required before Mac OS can start - set up in System Preferences, under Security & Privacy

Answer 34

- enable automatic time setting - settings > time & language > date & time - the time zone may also need configuration

Answer 35

no, biometric authentication is usually stored as a mathematical representation.

Answer 36

- a message, logo, or graphic shown during startup or login - can be used for branding or to require compliance

Answer 37

- scripting in the Unix/Linux shells - starts with a shebang or hashbang ("#!") - often has a ".sh" file extension - similar to batch files in Windows

Answer 38

- no built-in options - Clam is the recommended third-party anti-virus - open-source

Answer 39

- in-place upgrade - recovery partition - clean install - can be in conjunction with a migration tool - image deployment - deploy a clone on every computer - can be completely automated - repair installation - does not modify user files - remote network installation - install across the internet, or from a local server or shared drive

Answer 40

- a database of everything on the network - manages authentication - provides centralized access control - commonly used by the help desk

Answer 41

- free - works on a wide variety of hardware

Answer 42

- allows you to manage and backup files from the network - when added to a user profile, the directories are automatically created, with proper permissions assigned

Answer 43

- encrypt at the file system level, can encrypt individual files and folders - requires NTFS - uses a username and password to encrypt the key - administrative password resets cause EFS files to be inaccessible

Answer 44

Settings>updates>update history>uninstall updates

Answer 45

- local backups on Mac OS - keeps hourly backups for the past 24 hours, daily backups for the past month, and weekly backups for all previous months - backups are deleted when the disk gets full

Answer 46

- remote authentication protocol - created to control access to dial-up lines to ARPANET

Answer 47

- built-in search engine for Mac, iOS, and iPadOS - accessible by clicking the magnifying glass in the top right of the screen - or by keying cmd-space - define search categories in System Preferences

Answer 48

- not included on mobile phones - most activity initiates outbound, not inbound - useful in enterprise environments

Answer 49

- the central OS and file manager - provides integrated access to other devices

Answer 50

- high humidity promotes condensation - low humidity promotes static discharges - 50% humidity is a good number

Answer 51

- PSK brute-force attacks - hackers can derive the PSK hash and then brute-force the actual PSK. - once a hacker has the PSK, they also have everyone else's wireless key - as technology improves, so does the speed of these attacks. Track progress

Answer 52

iOS - data is encrypted using your passcode by default Android - encryption tool is integrated into version 5.0 and later - probably turned on by default

Answer 53

locally stored browser data

Answer 54

- manages application usage - the application will only work if this hardware device is present - commonly a USB device - often used with high-end software

Answer 55

- the latest version of TACACS - provides more authentication requests and response codes - released as an open standard in 1993 - commonly associated with Cisco devices, though

Answer 56

- file systems commonly used by Linux - ext4 was an upgrade to ext3, and is also seen in Android OS

Answer 57

- program - port - predefined - custom

Answer 58

- from the Open Handset Alliance - open sourced, based on Linux - wide device and hardware support

Answer 59

- check available storage - check available bandwidth - connect to wifi - try a different network connection - reboot

Answer 60

- require extensive CPU processing ability/will take up tons of processing power - malware that forces cryptomining to occur on your computer

Answer 61

use tools to remove or run in Safe Mode or in WinPE

Answer 62

- speed up the search process - control what information might be searched

Answer 63

- check task manager for high CPU and I/O utilization - update Windows - check for available disk space and defrag - verify power-saving mode is turned off (laptops) - run an anti-virus scan and an anti-malware scan

Answer 64

- the first full backup copies every file - subsequent full backups are created from previous backups - uses full and synthetic backups to create new full backups

Answer 65

- USB storage - must be bootable - computer must support booting from USB - optical media - PXE - SSDs and HDDs - internet-based - external/hot swappable drive - some can mount an ISO image - boot from USB

Answer 66

- set by us - take precedence over inherited permissions

Answer 67

- a method of code injection where SQL requests are modified - if you can manipulate an SQL database, then you can control the application - used by hackers

Answer 68

- malicious code is placed on a centralized server, such as a social media website - inside of a comment, for example - everybody who visits the page or who views the comment gets attacked - no specific target

Answer 69

- a form of social engineering where an access point is configured to look and act like an existing network - may overpower the original access point

Answer 70

tabs: - general - view - customize how files and folders are seen - provides options to view hidden files and to hide extensions - search - modify what is shown when you perform a search

Answer 71

- supports managed Apple IDs - integrate with Active Directory - can connect with an existing MDM

Answer 72

- Terminal - XTerm - (etc.)

Answer 73

logical diagram of the network layout

Answer 74

- per-seat/per-site - the software may be installed everywhere - annual renewals

Answer 75

batteries - usually sent to a hazardous waste facility toner - recycle and reuse

Answer 76

- automates a series of tasks during login - must associate a script with a group policy - user configuration > policies > windows settings > scripts

Answer 77

- settings > bluetooth & devices > Autoplay - AutoRun on older Windows operating systems - if memory cards and removeable drives will

Answer 78

- system > about > system protection - pick a restore time and let the system reboot - user data is not modified - from here can also manually create a restore point

Answer 79

- look for the unusual - use a remover/tool specific to the rootkit - Secure Boot using a UEFI BIOS

Answer 80

- caused by bad reception or an aging battery - disable unnecessary features - check application battery usage

Answer 81

- easy to use - extremely compatible - relatively few security concerns

Answer 82

- apple file system - optimized for SSDs - features include encryption, snapshots, and increased data integrity

Answer 83

subsequent backups contain data changed since the last full backup

Answer 84

- 3 copies of data should always be available - 2 different types of media should be used - 1 copy of the backup should be off site

Answer 85

spear phishing the CEO of a company

Answer 86

- Universal Plug and Play - allows network devices to automatically configure and find other network devices - applications on the internal network can open inbound ports using UPnP - no approval is needed - used for many P2P applications - best practice would be to disable UPnP

Answer 87

GCMP with GMAC

Answer 88

Done at the factory, base level sectors and tracks are created

Answer 89

- Material Safety Data Sheet - required by OSHA - may be abbreviated as SDS - provides information for all hazardous chemicals

Answer 90

integrated graphics: - combined CPU and GPU chip - uses system memory for graphics dedicated graphics card: - uses it's own vRAM - Different apps will need/utilize different levels of graphics requirements

Answer 91

- google.com is an example of a fully qualified domain name. - as seen above, a domain name does not include the protocol, and any subdomains, paths, or file names. - a website URL includes all of these components. - https://www.google.com/search?q=domain+name&sxsrf=ALiCzsYV67... is an example of a URL, and includes the domain name, "google.com", as well as the: - protocol (HTTPS) - subdomain (www) - path (/search?q=domain+name&sxsrf=ALiCzsYV67/) - always ends with "/" - in this example, the URL is shortened due to space constraints (shown by the "..." at the end of the shown URL" - as our web search did not lead us into viewing or opening a file, no file path is included. - an example of a URL with a file path, however, is https://www.google.com/search/file.html - (note that this URL is made-up) - this example's file path is "file.html" ** (note that miranda, the creator of this Quizlet set is currently unsure if the file path of a URL includes the backslashes, or not. however, extensive URL knowlege is not listed in the exam objetives, and therefore, is very unlikely to be on the CompTIA A+ 220-1102 A+ Exam. in the future (after i pass my exam), though, i'll try to remember to further research this, and will edit this term's definition, accordingly :)) ** ** insert image of miranda peace signing for time-keeping purposes, i'm typing this the evening of 8/6/22, with my test scheduled for 8/9/22; let's see how long my update takes! **

Answer 92

- an attack that utilizes a previously unknown vulnerability before it can be patched - utilizes exploit code

Answer 93

Virtual network computing is a system that allows you to remotely view and interact with a computer's desktop environment, regardless of its physical location -VNC allows you to connect to a computer (the VNC server) from another computer (the VNC viewer) over a network, including the internet. - uses RFB (remote frame buffing) - there are clients for many OS'

Answer 94

- useful in missing NTLDR troubleshooting - the main Windows boot loader is missing - run Startup Repair or replace manually and reboot - disconnect any removable media - also useful with missing OS errors - boot configuration data may be incorrect - settings > system > recovery - or run from advanced boot options

Answer 95

Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (acronym) - used with WPW2, uses AES encryption

Answer 96

- shredder - drill/hammer - degaussing - incineration

Answer 97

- reimage or reload the OS - Windows 10: settings > update & security > recovery - Windows 11: settings > system > recovery

Answer 98

targeted phishing, using insider information -often targeting a high up individual in a company/organization

Answer 99

- monitors the local computer - prevents malware communication - for example, Microsoft Defender Firewall - built into Windows

Answer 100

-Remote Authentication Dial-In User Service (acronym) - one of the more common AAA (Authentication, authorization, and accounting) protocols - supported on a wide variety of platforms and devices - not just for dial-in - centralizes authentication for users

Answer 101

BCD (boot configuration data)

Answer 102

- general purpose scripting - has interoperability between devices and other languages - ".py" file extension

Answer 103

- on demand access from a remote device - software connects to a VPN concentrator - some software can be configured as always-on

Answer 104

- Malicious code being injected into otherwise trusted websites - utilizing browser security flaws - one of the most common web application development errors - by using malware that takes advantage of JavaScript

Answer 105

- BitLocker FDE for removeable media/USB drives - not included in Windows Home editions

Answer 106

- modifies core system files - embeds itself deep inside the OS, often in the kernel - can be invisible to the OS and to anti-virus software

Answer 107

- scripting inside of the browser - ".js" file extension - adds interactivity to HTML and CSS

Answer 108

Microsoft remote assistance - used over the web

Answer 109

Simultaneous authentication of equals -- built into the WPA3 standard, also an IEEE standard that changed the PSK authentication process - includes mutual authentication - without a hash, there's no risk of brute-force attacks - SAE uses a diffie-hellman derived key exchange with an authentication component - everyone uses a different session key, even with the same PSK - dragonfly handshake

Answer 110

- configure the locations of multiple displays - modify which display contains the Apple menu - modify individual display settings

Answer 111

- the mail applet icon does not appear unless a mail client is installed on the system - provides access to local mail configuration - account information - data files

Answer 112

No. There is almost no direct application compatibility between operating systems.

Answer 113

- shows computer information, including the version and edition of Windows - modify system properties and system preferences - configure remote desktop - can launch to settings

Answer 114

Protected Health Information - regulated with HIPAA

Answer 115

automatically, with five minutes of tolerance

Answer 116

- a form of password attack where attackers try every single possible password combination, until the password's hash is matched - time consuming - also requires a large amount of computing power and resources Track progress

Answer 117

the second tuesday of every month at 10:00am PST

Answer 118

- uses CCMP block cipher mode - provides data confidentiality using AES encryption - adds a MIC with CBC-MAC (compared to WPA)

Answer 119

though CSS seems like a better acronym for cross-site scripting, it is already utilized for a programming language, used in website design.

Answer 120

- given when you exceed the number of USB endpoints (buffers) - try moving the device to a different USB interface or matching the USB interface to the device capabilities - USB 2.0 might support a larger number of endpoints

Answer 121

- separates the physical drive into logical pieces - useful for maintaining multiple operating systems - in Windows, formatted partitions are called volumes

Answer 122

- manufacturer stops selling an OS - may continue supporting it, though Track progress

Answer 123

- press cmd-option-esc to bring up the menu - or, hold down the option key when right clicking the application icon in the dock

Answer 124

- attack that uses an army of computers to bring down a service - the army uses all of the network resources, leaving none for the service to run - this "army" may be utilizing a botnet

Answer 125

- standby UPS- waits to detect a power outage, then switches to battery power (longer transfer time) - line-interactive UPS- monitors for power fluctuations and will go to battery power in an instant (very short transfer time) - on-line UPS- always working, constantly converts AC to DC and back and provides constant protection

Answer 126

Microsoft Visual Basic Scripting Edition

Answer 127

- big target for security exploitation - challenging integration due to the sheer amount of support for various hardware

Answer 128

- Impact to device - Impact to network - Impact to operation - Impact to business

Answer 129

Personally identifiable information

Answer 130

Documentation of the continuous possession and handling of devices and information that are under investigation

Answer 131

Take them to a hazardous waste facility

Answer 132

CPU: 1 GHz or faster RAM: 1 GB for 32- and 64-bit Storage: 32 GB free or more

Answer 133

CPU: 1 GHz or faster with 2 or more cores, needs to be a 64-bit CPU RAM: 4 GB Storage: 64 GB free or more

Answer 134

Change board's approval

Answer 135

Yes. If time and date are off, it can throw the process off

Answer 136

Credit card transactions/information

Answer 137

Boot to safe mode and use signatures downloaded from another computer

Answer 138

True. Services are based on the OS, adding one would be changing the OS

Answer 139

Windows pre-installation environment -can be used to boot to, will allow windows repair options without having to boot to the actual windows OS

Answer 140

Windows command for launching the Disk Cleanup utility

Answer 141

Scans that scan all files before they open, very effective

Answer 142

Short, study posts designed to stop vehicles and vehicle ramming attacks

Answer 143

Automated installation of an OS/software the utilizes an answer file (usually and .xml file) to answer all of the prompts and questions that would normally popup during the installation

Answer 144

Remove jewelry and disconnect power source

Answer 145

COPE (corporate owned/personally enabled) vs BYOD vs CYOD (choose your own device, from corporate options)

Answer 146

Control panel>Internet options>connections

Answer 147

Purpose, plan, scope, risk analysis. Must be approved by the change board

Answer 148

Assigning an IP address to a system permanently according to its MAC address

Answer 149

Specific kind of brute force attack where attacker uses a library of pre-written possible passwords and runs them through a login attempt

Answer 150

True. It’s called “enhanced open”

Answer 151

An attack from a person within the organization or company

Answer 152

Class A: 10.x.x.x Class B: 172.16.x.x-172.31.x.x Class C: 192.168.x.x

Answer 153

Clear the local app cache

Answer 154

ID for every piece of major hardware on a network: desktops, servers, laptops, printers and monitors

Answer 155

Wired Equivalent Privacy - outdated encryption standard - uses 64-bit and 128-bit encryption keys

Answer 156

A fake virus alert, meant to actually trick the user into clicking the button that says to remove the virus, and it will then infect your system. These will likely pop up in a browser or on your desktop

Answer 157

It saves a session file on your hard drive and fully shuts done, different from sleep mode where it saves session details on RAM

Answer 158

Installing an application from a third-party provider instead of an official provider

Answer 159

On Mac, see all windows, apps and desktops and switch between them

Answer 160

Mac’s version of “Taskbar”

Answer 161

Can be used to troubleshoot and configure the start up process of Windows machines

Answer 162

Data loss prevention software - used to detect possible data exfiltration attempts at multiple points in the transmission process (on machine, network and in storage)

Answer 163

User datagram protocol - used with TFTP (trivial file transfer protocol) - sends connectionless, non-guaranteed packets over a network

Answer 164

Hardware token used for authentication that generates a limited time code that matches the code on the server

Answer 165

Smaller, less-component heavy computers that boot from a network image. Thin clients run from resources that are stored on a network server, as opposed to a local hard drive. Can reduce software and licensing costs

Need2Know Flashcards

(197 cards)