CWNP certification

　
　
Exam : SCP SC0-402
Title : Network Defense and Countermeasures (NDC)


1. Choose the best 3 responses
You are creating the User Account section of your organizational security policy. From the following options, select the questions to use for the formation of this section?
A. Are users allowed to make copies of any operating system files (including, but not limited to /etc/passwd or the SAM)?
B. Who in the organization has the right to approve the request for new user accounts?
C. Are users allowed to have multiple accounts on a computer?
D. Are users allowed to share their user account with coworkers?
E. Are users required to use password-protected screensavers?
F. Are users allowed to modify files they do not own, but have write abilities?
Answer: BCD

2. You are configuring your new IDS machine, where you have recently installed Snort. While you are working with this machine, you wish to create some basic rules to test the ability to log traffic as you desire. Which of the following Snort rules will log any tcp traffic from any host other than 172.16.40.50 using any port, to any host in the 10.0.10.0/24 network using any port?
A. log udp ! 172.16.40.50/32 any -> 10.0.10.0/24 any
B. log tcp ! 172.16.40.50/32 any -> 10.0.10.0/24 any
C. log udp ! 172.16.40.50/32 any <> 10.0.10.0/24 any
D. log tcp ! 172.16.40.50/32 any <> 10.0.10.0/24 any
E. log tcp ! 172.16.40.50/32 any <- 10.0.10.0/24 any
Answer: B

3. You are examining a packet from an unknown host that was trying to ping one of your protected servers and notice that the packets it sent had an IPLen of 20 byes and DgmLen set to 60 bytes.
What type of operating system should you believe this packet came from?
A. Linux
B. SCO
C. Windows
D. Mac OSX
E. Netware
Answer: C

4. What step in the process of Intrusion Detection as shown in the exhibit would determine if given alerts were part of a bigger intrusion, or would help discover infrequent attacks?
A. 5
B. 9
C. 12
D. 10
E. 4
Answer: C

5. You have found a user in your organization who has managed to gain access to a system that this user was not granted the right to use. This user has just provided you with a working example of which of the following?
A. Intrusion
B. Misuse
C. Intrusion detection
D. Misuse detection
E. Anomaly detection
Answer: A

superexamprep has assembled to take you through 120 Q&As to your SC0-402 Exam preparation. In the SC0-402 exam resources, you will cover every field and category in SC0-402 helping to ready you for your successful Juniper Certification.

Quality and Value for the SC0-402 Exam

superexamprep Practice Exams for SCP SC0-402 are written to the highest standards of technical accuracy, using only certified subject matter experts and published authors for development.

100% Guarantee to Pass Your SC0-402 Exam

If you prepare for the exam using our superexamprep testing engine, we guarantee your success in the first attempt. If you do not pass the SCP Certification SC0-402 exam (Network Defense and Countermeasures (NDC)) on your first attempt we will give you a FULL REFUND of your purchasing fee AND send you another same value product for free.

SCP SC0-402 Downloadable, Printable Exams (in PDF format)

Our Exam SC0-402 Preparation Material provides you everything you will need to take your SC0-402 Exam. The SC0-402 Exam details are researched and produced by Professional Certification Experts who are constantly using industry experience to produce precise, and logical. You may get questions from different web sites or books, but logic is the key. Our Product will help you not only pass in the first try, but also save your valuable time.

SC0-402 Downloadable, Interactive Testing engines

We are all well aware that a major problem in the IT industry is that there is a lack of quality study materials. Our Exam Preparation Material provides you everything you will need to take a certification examination. Like actual certification exams, our Practice Tests are in multiple-choice (MCQs)

Our SCP SCP Certification SC0-402 Exam will provide you with exam questions with verified answers that reflect the actual exam. These questions and answers provide you with the experience of taking the actual test. High quality and Value for the SC0-402 Exam:100% Guarantee to Pass Your SCP Certification exam and get your SCP Certification Certification.