Home > Archive > 70-210 > July 2002 > Wed W2K Professional Question of the Day





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Wed W2K Professional Question of the Day
wbafrank

2002-07-03, 6:14 am

 And today's poser is ....

Q7. Alison is very concerned about someone gaining unauthorized access to several documents that she shares with co-workers.

Alison and her co-workers are in a workgroup called PROJEXT. Alison has local administrator rights to her workstation, and each of her co-workers has local administrator rights to their respective workstations.

Alison has configured the NTFS permissions properly so that only the appropriate co-workers have access to the shared files.

Alsion also would like to configure her workstation so that the data sent to other machines is sent in an encrypted format.

Alison configures her machine with an IP Security (IPSec) policy of Client (Respond Only). However when Alison tests the IPSec policy with a packet sniffer she finds that not all of the data being sent from her computer is being sent in an encrypted format. Which of the following is the best explanation for this behaviour?

A. The Client (Respond Policy) does not secure data unless the destination computer requests it. Therefore data sent from a machine with the IPSec policy of Client (Respond Policy) is not guaranteed to be encrypted.

B. The local policy on Roger's machine is being overwritten by the domain policy. Domain policy will always override any conflicting settings at the local level.

C. IPSec will encrypt data on the local hard drive but will not encrypt data that is sent over the network. In order to encrypt data sent over the network you must use Encrypting File System to first encrypt the data.

D. NTFS permissions will always override IPSec policy settings. If the user receiving the data has NTFS permission of Read or greater, the data will not be sent in an encrypted format.

Good Luck .... see you tomorrow for the answer!!
psnell

2002-07-03, 6:43 am

A
Surender

2002-07-03, 8:15 am

a
Pavlov

2002-07-03, 8:26 am

Yep, going with A, also.
Spid

2002-07-03, 9:14 am

"A"
NetChild1985

2002-07-03, 9:21 am

yeah, it's "A"!
Samba

2002-07-03, 1:31 pm

"A" will be my choice.

Have a nice 4 of July

Deja-vue

2002-07-03, 6:23 pm

"A" good choice!
Tech Ranger

2002-07-04, 4:16 pm

I will go out on a limb and say "A".
TxBear

2002-07-04, 5:02 pm

Yup the answer should be A
wbafrank

2002-07-08, 6:31 pm

quote:
Originally posted by wbafrank
And today's poser is ....

Q7. Alison is very concerned about someone gaining unauthorized access to several documents that she shares with co-workers.
Alison and her co-workers are in a workgroup called PROJEXT. Alison has local administrator rights to her workstation, and each of her co-workers has local administrator rights to their respective workstations. Alison has configured the NTFS permissions properly so that only the appropriate co-workers have access to the shared files. Alsion also would like to configure her workstation so that the data sent to other machines is sent in an encrypted format. Alison configures her machine with an IP Security (IPSec) policy of Client (Respond Only). However when Alison tests the IPSec policy with a packet sniffer she finds that not all of the data being sent from her computer is being sent in an encrypted format. Which of the following is the best explanation for this behaviour?

A. The Client (Respond Policy) does not secure data unless the destination computer requests it. Therefore data sent from a machine with the IPSec policy of Client (Respond Policy) is not guaranteed to be encrypted.
B. The local policy on Roger's machine is being overwritten by the domain policy. Domain policy will always override any conflicting settings at the local level.
C. IPSec will encrypt data on the local hard drive but will not encrypt data that is sent over the network. In order to encrypt data sent over the network you must use Encrypting File System to first encrypt the data.
D. NTFS permissions will always override IPSec policy settings. If the user receiving the data has NTFS permission of Read or greater, the data will not be sent in an encrypted format.


And the answer is ....

Correct Answer: A

The long-term direction for secure networking, IPSec is a suite of cryptography-based protection services and security protocols. Because it requires no changes to applications or protocols, you can easily deploy IPSec for existing networks.

Activating the Client (Respond Only) IPSec policy will not secure traffic unless the destination computer requests it. A server policy may need to be customized to work transparently with some programs and networks.
Sponsored Links





Free Braindumps | MCSE braindumps software forum

Copyright 2003 - 2008 examnotes.net