IPSec is an excellent way to secure data as it travels across a network, and to secure data on disk drives to block someone from gaining unauthorized access to the computer.

A VPN is limited to dial-up connections.

A hardware firewall is configured with two or more network interfaces typically placed between a corporate LAN and the WAN connection.

An intrusion detection system (IDS) usually works with a firewall or router with access control lists.

Spam is simply unsolicited e-mail.

WEP, the successor to WPA, has enhancements that make it much more difficult to crack the encryption code.

____ allows administrators to control who has access to the network.

____ allows administrators to control what users can do after they are logged on to the network.

On Linux systems, the passwords can be stored in an encrypted format in the ____ file located in the /etc directory.

____ is the standard software service on many Linux distributions for authenticating users.

In Windows OSs, with ____ permissions administrators can assign permissions to files as well as folders, so one level of permission can be assigned to a folder but a different level of permission assigned to files in the folder, if needed.

Windows OSs ____ permissions are applied to folders (and only folders) shared over the network.

Encryption prevents somebody using eavesdropping technology, such as a(n) ____, from capturing packets and using data in the packets for malicious purposes.

The most popular method for encrypting data as it travels network media is to use an extension to the IP protocol called ____.

IPSec works by establishing a(n) ____ between two communicating devices.

____ authentication can be used in a Windows domain environment or on a Linux system to authenticate users and computers.

On Linux systems, a simple method to encrypt files involves using a command-line program called ____.

____ are temporary or permanent connections across a public network—such as the Internet—that use encryption technology to transmit and receive data.

With ____, a user running a Windows OS can dial up a Windows server when it’s running Routing and Remote Access Service (RRAS).

____ supports advanced authentication and encryption technologies; however, it requires Windows machines on both sides of any remote connection.

A(n) ____ is a hardware device or software program that inspects packets going into or out of a network or computer and then discards or forwards those packets based on a set of rules.

A ____ is a program that spreads by replicating itself into other programs or documents.

A ____ is similar to a virus in that it’s self-replicating, but it doesn’t attach itself to another program; rather, it’s a self-contained program.

A ____ is a program installed on a computer that permits access to the computer, bypassing the normal authentication process.

A ____ program appears to be something useful, such as a free utility, but in reality contains some type of malware.

____ are a form of Trojan programs that can monitor traffic to and from a computer, monitor keystrokes, and capture passwords.

____ monitors or in some way controls part of your computer at the expense of your privacy and to the gain of some third party.

Attackers who drive around looking for wireless LANs to intercept are called ____.

A(n) ____ attack is an attacker’s attempt to tie up network bandwidth or network services so that it renders those resources useless to legitimate users.

Digital certificates involve a third party called a(n) _________________________ (CA).

In Windows XP, Vista, and Server 2003, _________________________ (EFS) is a standard feature available on NTFS-formatted disks.

A(n) ____________________ firewall is installed on a computer or server and simply inspects all packets coming into or leaving the computer.

Firewalls can attempt to determine the context of a packet; this process is called ______________________________ (SPI).

Viruses, worms, and rootkits are part of a broader category of software called ____________________, which is any software designed to cause harm or disruption to a computer system or perform activities on a computer without the consent of the computer’s owner.

______________________________ (WEP) provides data encryption so that a casual attacker who gains access to your wireless signals sees only encrypted gibberish.

A(n) ____________________ address is a source address inserted into the packet that isn’t the actual address of the sending station.