1)Which of the following can firewalls NOT protect against? a Unauthorized access to legacy systems. b Attackers with direct access to the protected side. c Viruses. d Inappropriate use of the Internet. e Unauthorized access to web servers. i think the answers should be a, b and e. Any guesses??
Hi there, Some of these questions really make you mad. a. Unauthorized access to legacy systems. - You can control access to any system using address filtering b. Attackers with direct access to the protected side - You can't protect against this. Allowing multiple routes across your network boundaries is stupid unless all are equally secure. c. Viruses. - Seeing as most viruses are delivered by email how are you going to defend against them all? You can block spam and bulk email, you can even scan incoming emails, but you aren't going to be able to detect all viruses. I bet that they list this as one that you *can* protect against
d. Inappropriate use of the Internet. Well, you can block a lot of inappropriate content with a good firewall/proxy server. But as Vladen says, define "Inappropriate", does this include exchanging emails with terrorists? I'd say yes, AOL seem to be able to do it ) e Unauthorized access to web servers. I take it that this means users/systems accessing a companies web servers form outside. In which case this can be protected against using a suitable authentication/authorisation mechanism. So my answer would be 'b' Amanda
Originally posted by Adrian Yan: My two cents, firewall can not protect you from Viruses.
Hi Adrian, I'd say that it can, just switch everything off on your firewall and nothing can get through. A more fine-grained approach would be to prevent external email and file transfers. If you want external email then you need to use the latest and greatest email filtering/anti-virus software on your firewall and keep it updated. But as always, the answer to the question is the one that the person who write the question feels is right. Amanda
One thing I learned from college and the SCJP and SCEA tests is that being able to think like the test writer is a valuable skill. You might disagree with the test writer's answer (and you can even be right) but the immediate goal is to pass the test! John
The only reason for time is so that everything doesn't happen all at once.
- Buckaroo Banzai
Hi all, To follow on from what John has said. Something that I have learned from these tests is that it is rare to find a question as simplisticly worded as the one that started this thread. Mock tests are frequently more difficult than the actual exam because the questions are poorly thought out, but at the same time exam questions do merit very careful reading as they can be written in such a way to be easily misread, possibly deliberately, although I don't see how semantics adds value to a qualification particularly when many of the test candidates may not have english as their first language. I just thought, are these tests always in english? or are they localised for each country/region? Amanda Amanda