GDSA by GIAC Valid Free Exam Practice Test

Question 1

Your company is facing increased phishing attempts through email attachments. The security team has decided to implement an SMTP proxy to improve email security. What are the key benefits of deploying an SMTP proxy, and how should it be configured to block malicious content?
Response:

A. The SMTP proxy will prevent users from accessing external websites while they are receiving emails B. The SMTP proxy will encrypt all incoming emails and block any that are not encrypted C. The SMTP proxy will filter email attachments and block suspicious content; it should be configured to scan attachments for malware and enforce policies on acceptable attachment types D. The SMTP proxy will focus on blocking all outbound email traffic to prevent data loss

Correct Answer: C

Question 2

Perimeter-focused deficiencies highlight which of the following issues?
(Choose two)
Response:

A. Ignoring the potential for insider threats B. Excessive trust in perimeter security to block all attacks C. Overreliance on physical security measures D. Underestimating the importance of user awareness training

Correct Answer: A,B

Question 3

Which of the following is NOT a component of Zero Trust Networking?
Response:

A. Complete trust in all network traffic B. Red herring defenses C. Single Packet Authentication D. Domain Isolation

Correct Answer: A

Question 4

Attack surface analysis involves:
Response:

A. Understanding all the points where an unauthorized user can try to enter data to or extract data from an environment B. Ignoring software vulnerabilities C. Only reviewing physical security controls D. Focusing solely on perimeter security

Correct Answer: A

Question 5

Which of the following is a security concern unique to IPv6 networks?
Response:

A. IPv6 address spoofing B. Lack of subnetting capabilities C. Limited bandwidth D. IP address exhaustion

Correct Answer: A

Question 6

In the context of network proxies and firewalls, what is an essential characteristic of SMTP proxies?
Response:

A. They provide detailed analysis and filtering of email traffic to identify threats. B. They should enable all email attachments without scanning. C. They increase the speed of email delivery. D. They are primarily used to enhance the user interface of email applications.

Correct Answer: A

Question 7

What is the purpose of implementing red herring defenses in a Zero Trust network?
Response:

A. To streamline network traffic analysis B. To reduce the overall security of the network C. To create decoys that distract and mislead potential attackers D. To increase the network's transparency to external entities

Correct Answer: C

Question 8

How does a host-based Intrusion Detection System/Intrusion Prevention System (IDS/IPS) contribute to the security of Zero Trust Endpoints?
Response:

A. By serving as the primary firewall at the network perimeter B. By generating excessive logs to deter attackers C. By monitoring and analyzing system activities for signs of malicious actions D. By encrypting data at rest and in transit

Correct Answer: C

GIAC Defensible Security Architect - GDSA Exam Practice Test