Free Access GIAC.GCCC.v2022-03-26.q34 Practice Test (Page 3)

Question 6

Janice is auditing the perimeter of the network at Sugar Water InC. According to documentation, external SMTP traffic is only allowed to and from 10.10.10.25. Which of the following actions would demonstrate the rules are configured incorrectly?

A.Successfully deliver mail from another host inside the network directly to an external contact

B.Successfully deliver mail from web client using another host inside the network to an external contact.

C.Receive spam from a known bad domain

D.Receive mail at Sugar Water Inc. account using Outlook as a mail client

Question 7

An organization is implementing a control for the Limitation and Control of Network Ports, Protocols, and Services CIS Control. Which action should they take when they discover that an application running on a web server is no longer needed?

A.Uninstall the application providing the service

B.Create an access list on the router to filter traffic to the host

C.Turn the service off in the host configuration files

D.Block the protocol for the unneeded service at the firewall

Question 8

After installing a software package on several workstations, an administrator discovered the software opened network port TCP 23456 on each workstation. The port is part of a software management function that is not needed on corporate workstations. Which actions would best protect the computers with the software package installed?

A.Document the port number and request approval from a change control group

B.Determine which service controls the software management function and opens the port, and disable it

C.Redirect traffic to and from the software management port to a non-default port

D.Block TCP 23456 at the network perimeter firewall

Question 9

Of the options shown below, what is the first step in protecting network devices?

A.Implementing IDS to detect attacks

B.Applying all known security patches

C.Creating standard secure configurations for all devices

D.Scanning the devices for known vulnerabilities

Question 10

What is an organization's goal in deploying a policy to encrypt all mobile devices?

A.Enabling best practices for the protection of their software licenses

B.Controlling unauthorized access to sensitive information

C.Providing their employees, a secure method of connecting to the corporate network

D.Applying the principle of defense in depth to their mobile devices

Other Version: 929GIAC.GCCC.v2022-09-29.q34

Latest Upload: 147Huawei.H12-811_V1.0.v2025-10-02.q205; 112PMI.PfMP.v2025-10-02.q265; 113EMC.D-NWR-DY-01.v2025-10-02.q145; 132Salesforce.Public-Sector-Solutions.v2025-10-01.q106; 111Microsoft.SC-300.v2025-10-01.q358; 106Snowflake.DSA-C03.v2025-10-01.q105; 109Fortinet.NSE7_SDW-7.2.v2025-10-01.q108; 109Scrum.PAL-I.v2025-09-30.q47; 119SAP.C-C4H22-2411.v2025-09-30.q28; 149LinuxFoundation.CKAD.v2025-09-29.q102

Question 6

Question 7

Question 8

Question 9

Question 10

Download PDF File