Chapter 4 Extras (SY0-501) PTQ

A coffee shop recently stopped broadcasting the SSID for their wireless network. Instead, paying customers can view it on their receipt and use it to connect to the coffee shop’s wireless network.  Today, Lisa turned on her laptop computer and saw the SSID. Which of the following is the MOST likely reason why?

An IDS sent an alert after correlating the following log events

• 22:10:05 10.10.80.5:49154 > 192.168.1.15:21
• 22:10:05 10.10.80.5:49154 > 192.168.1.15:20
• 22:10:05 10.10.80.5:49154 > 192.168.1.15:25
• 22:10:05 10.10.80.5:49154 > 192.168.1.15:23

What is the most likely the cause of this alert?

You are reviewing logs in Snort and see the following entry:
[**] [1:2463:7] EXPLOIT IGMP IGAP message overflow attempt [**]
[Classification: Attempted Administrator Privilege Gain] [Priority: 1]
09/01-18:12:34.12371 10.10.0.152 -> 10.10.0.88
IGMP TTL:255 TOS:0x0 ID:9744 IpLen:20 DgmLen:502 MF
Frag Offset: 0x1FFF   Frag Size: 0x01E2

What does this MOST likely indicate? Select TWO.

A recent update to your organizations security policy mandated that all network devices authenticate on the network. Additionally, management wants to record accounting information for these devices. To support this, IT administrators have configured a TACACS+ server for authentication and a RADIUS server for accounting. What port should the network devices use for secure authentication?

A recent update to your organizations security policy mandated that all network devices authenticate on the network. Additionally, management wants to record accounting information for these devices. To support this, IT administrators have configured a TACACS+ server for authentication and a RADIUS server for accounting. What port should the network devices use for accounting?