Test your knowledge of Web server security with these trivia questions. Scroll down to the bottom of the page for the correct answers. If you get them all right, you can call yourself an Infosec Know IT All!
1.) IIS 4.0 employs three authentication methods. Which method employs a one-way hash process to protect the password during transit between the client and server?
a. basic authentication
b. NT Challenge/Response authentication
c. anonymous authentication
d. Integrated Windows authentication
2.) In addition to NetBIOS, Windows 2000 Web server comes with the following port open by default.
a. Kerberos – 88
b. LDAP – 389
c. Global Catalog SSL – 3269
d. All of the above.
e. None of the above.
3.) What is the name of Microsoft's free utility that inspects systems locally and remotely for all known security vulnerabilities that can be corrected by a patch?
a. Microsoft Baseline Security Analyzer
c. The Strategic Technology Protection Program
d. Microsoft Enterprise Inspector
4.) Web server applications install automatically on all versions of Windows prior to Windows .NET Server, making it possible for systems to be vulnerable to a wide range of attacks without the administrator knowing.
What do you think of our daily trivia questions? Are they too easy? Too hard? Let me know.
4.) a. True
For more information on securing default settings on your Web server, read this Web Security Tip.