GCCC GIAC Exam Questions and Free Practice Test

Question 19

An Internet retailer's database was recently exploited by a foreign criminal organization via a remote attack. The initial exploit resulted in immediate root-level access. What could have been done to prevent this level of access being given to the intruder upon successful exploitation?

A. Configure the DMZ firewall to block unnecessary service

B. Install host integrity monitoring software

C. Install updated anti-virus software

D. Configure the database to run with lower privileges

Correct Answer:D

Question 20

Which of the options below will do the most to reduce an organization??s attack surface on the internet?

A. Deploy an access control list on the perimeter router and limit inbound ICMP messages to echo requests only

B. Deploy antivirus software on internet-facing hosts, and ensure that the signatures are updated regularly

C. Ensure that rotation of duties is used with employees in order to compartmentalize the most important tasks

D. Ensure only necessary services are running on Internet-facing hosts, and that they are hardened according to best practices

Correct Answer:D

START GCCC EXAM