- Email support@dumps4free.com
Topic 2: Exam Pool B
An engineer has enabled LDAP accept queries on a listener. Malicious actors must be
prevented from quickly
identifying all valid recipients. What must be done on the Cisco ESA to accomplish this
goal?
A.
Configure incoming content filters
B.
Use Bounce Verification
C.
Configure Directory Harvest Attack Prevention
D.
Bypass LDAP access queries in the recipient access table
Configure Directory Harvest Attack Prevention
A Directory Harvest Attack (DHA) is a technique
used by spammers to find valid/existent email addresses at a domain either by using Brute
force or by guessing valid e-mail addresses at a domain using differentpermutations of
common username. Its easy for attackers to get hold of a valid email address if
yourorganization uses standard format for official e-mail alias (for example:
jsmith@example.com). We canconfigure DHA Prevention to prevent malicious actors from
quickly identifying valid recipients.Note: Lightweight Directory Access Protocol (LDAP) is an
Internet protocol that email programs use to look up contact information from a server, such
as ClickMail Central Directory. For example, here’s an LDAP search translated into plain
English: “Search for all people located in Chicago who’s name contains “Fred” that have an
email address. Please return their full name, email, title, and description.
Which group within Cisco writes and publishes a weekly newsletter to help cybersecurity
professionals remain
aware of the ongoing and most prevalent threats?
A.
PSIRT
B.
Talos
C.
CSIRT
D.
DEVNET
Talos
Which feature within Cisco Umbrella allows for the ability to inspect secure HTTP traffic?
A.
File Analysis
B.
SafeSearch
C.
SSL Decryption
D.
Destination Lists
SSL Decryption
https://support.umbrella.com/hc/en-us/articles/115004564126-SSL-Decryptionin-
the-IntelligentProxy
Drag and drop the solutions from the left onto the solution's benefits on the right.
Explanation: Cisco Stealthwatch - rapidly collects and analyzes netflow and telementy
data to deliver in-depth visibility and understanding of network traffic
Cisco ISE – obtains contextual identity and profiles for all users and device
Cisco TrustSec – software defined segmentation that uses SGTs
Cisco Umbrella – secure internet gateway ion the cloud that provides a security solution
Which IPS engine detects ARP spoofing?
A.
Atomic ARP Engine
B.
Service Generic Engine
C.
ARP Inspection Engine
D.
AIC Engine
Atomic ARP Engine
| Page 10 out of 126 Pages |
| Previous |