Home > Archive > 70-216 > July 2002 > Tue 70-216 Question of the Day





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author Tue 70-216 Question of the Day
wbafrank

2002-07-30, 2:24 am

 And today's poser is ....

Q20. Alison is very concerned about someone gaining unauthorized access to several documents that she shares with co-workers. Alison's computer is a member of a workgroup called ProjectA1 and she has local administrator rights to her machine. She has configured the NTFS permissions properly so that only the appropriate people have access to the files. She also would like to configure her computer so that the data sent to other machines is sent in an encrypted format.

Alison configures her machine with an IP Security (IPSec) policy of Client (Respond Only). However, when Alison tests the IPSec policy she finds that not all of the data being sent from her computer is being sent in an encrypted format. Which of the following is the best explanation for this behaviour?

A. IPSec will encrypt data on the local hard drive but will not encrypt data that is sent over the network. In order to encrypt data sent over the network you must use Encrypting File System to first encrypt the data.

B. The local policy on Alison's machine is being overwritten by the domain policy. Domain policy will always override any conflicting settings at the local level.

C. The Client (Respond Policy) does not secure data unless the destination computer requests it. Therefore data sent from a machine with the IPSec policy of Client (Respond Policy) is not guaranteed to be encrypted.

D. NTFS permissions will always override IPSec policy settings. If the user receiving the data has NTFS permission of Read or greater, the data will not be sent in an encrypted format.

Good Luck .... see you tomorrow for the answer!!
Pavlov

2002-07-30, 8:27 am

Welcome back, wbafrank!

This morning I will choose C.
Spid

2002-07-30, 8:33 am

I agree with "C"
jeff50ho

2002-07-30, 10:06 am

I think "C" is the way to go too.
kopman

2002-07-30, 2:15 pm

I'll go with C as well
mcdoud

2002-07-30, 2:46 pm

I agree with C.
unreal

2002-07-30, 7:40 pm

Sounds like 'B'.
Not sure abt 'C', but it could be true, but better select what I know
lardie

2002-07-30, 8:11 pm

I Go with "C"
B4yaman3

2002-07-31, 9:36 am

I am going with |C| all the way...!!!
wbafrank

2002-07-31, 3:14 pm

quote:
Originally posted by wbafrank
And today's poser is ....

Q20. Alison is very concerned about someone gaining unauthorized access to several documents that she shares with co-workers. Alison's computer is a member of a workgroup called ProjectA1 and she has local administrator rights to her machine. She has configured the NTFS permissions properly so that only the appropriate people have access to the files. She also would like to configure her computer so that the data sent to other machines is sent in an encrypted format. Alison configures her machine with an IP Security (IPSec) policy of Client (Respond Only). However, when Alison tests the IPSec policy she finds that not all of the data being sent from her computer is being sent in an encrypted format. Which of the following is the best explanation for this behaviour?

A. IPSec will encrypt data on the local hard drive but will not encrypt data that is sent over the network. In order to encrypt data sent over the network you must use Encrypting File System to first encrypt the data.
B. The local policy on Alison's machine is being overwritten by the domain policy. Domain policy will always override any conflicting settings at the local level.
C. The Client (Respond Policy) does not secure data unless the destination computer requests it. Therefore data sent from a machine with the IPSec policy of Client (Respond Policy) is not guaranteed to be encrypted.
D. NTFS permissions will always override IPSec policy settings. If the user receiving the data has NTFS permission of Read or greater, the data will not be sent in an encrypted format.


And the answer is ....

Correct Answer: C

The long-term direction for secure networking, IPSec is a suite of cryptography-based protection services and security protocols. Because it requires no changes to applications or protocols, you can easily deploy IPSec for existing networks.
Activating the Client (Respond Only) IPSec policy will not secure traffic unless the destination computer requests it. A server policy may need to be customized to work transparently with some programs and networks.
Sponsored Links





Free Braindumps | MCSE braindumps software forum

Copyright 2003 - 2008 examnotes.net