Answer all the following questions C1 Answer the following questions C1 1 Classify the following scenario to their type of social engineering attack they represent (1 5 Marks) Scenario 1 Imagine receiving a phone call from a representative claiming to be conducting research for a reputable company The representative asks a survey of questions that such as your birth date, favorite color, your banking institution and other information etc Scenario 2 At place of your employment, you are rushing to the door with your arm full of bags As you approach, the man before you scans his badge to gain entrance while holding the door for you, but without asking to see your badge Scenario 3 Let's say you work for an organization with an excellent IT office Your Network admin sends you an email of warning of a security breach and asking you to confirm your password by entering it into a secure website Scenario Social engineering attack type Scenario 1 Scenario 2 Scenario 3 C1 2 Classify the following attacks examples to their corresponding payload attack type (4 Marks ) Attack Type of attack Overloading a server host so that it cannot respond MIM attack Cutting a communication line SQL injection Obtaining copies of a message Unauthorized change to file content change Changing network configuration Adding a record to the database in unauthorized way C1 3 Explain how the principle of least privilege principle is implemented differently in UNIX Linux and Windows operating system (2 marks) C2 Answer the following questions C2 1 From the diagram below, consider yourself the administrator of below networks How to reduce the attack surface from Internet network to other operating systems of hosts on the network 1,2, 3 and 4 (2 Marks) C2 2 How you will configure a DMZ in network 2 for a web server Support your answer with a diagram FO Laptop PT Laptop4 RO P10 FO Server PT Server PC1 Server PT Server2 Fao Peo's RO Laptop PT Laptop2 Fan2 GAD 1804 Pous Fo 2 PC PT PC2 605 2950 22 RO S0 24 Switchz Switcho 20 RO Network 3 Sel Laptop PT Laptops Laptop PT Laptop3 Internet Network 2 Gg0 1 Gg0 01 Se03 0 F20 20 ZYUI Routero 2901 Gigo 1 Router1 Internet FO PRAR Fa0 1 60251 24 Fa0 5ch3 Laptop PT Laptop RO RO RO 1 FO F003 2950 24 Switchi Server PT Server 3 FO Server PT Serveri RO PD Fa0 FO Laptop PT Laptop Laptop PT PC PT Laptopi PCO Network 1 Laptop PT Laptop PC PT PC3 Network 4

The Answer is in the image, click to view ...

Answered step by step

Verified Expert Solution

Link Copied!

Question

1 Approved Answer

Posted on Sep 24, 2024

Answer all the following questions: C1. Answer the following questions: C1.1: Classify the following scenario to their type of social engineering attack they represent: (1.5

Answer all the following questions:

C1. Answer the following questions:

C1.1: Classify the following scenario to their type of social engineering attack they represent: (1.5 Marks)

Scenario-1: Imagine receiving a phone call from a representative claiming to be conducting research for a reputable company. The representative asks a survey of questions that such as your birth date, favorite color, your banking institution and other information etc.

Scenario-2: At place of your employment, you are rushing to the door with your arm full of bags. As you approach, the man before you scans his badge to gain entrance while holding the door for you, but without asking to see your badge.

Scenario-3: Let's say you work for an organization with an excellent IT office. Your Network admin sends you an email of warning of a security breach and asking you to confirm your password by entering it into a secure website.

Scenario	Social engineering attack type
Scenario-1
Scenario-2
Scenario-3

C1.2: Classify the following attacks examples to their corresponding payload attack type.(4 Marks )

Attack	Type of attack
Overloading a server host so that it cannot respond.
MIM attack
Cutting a communication line.
SQL injection
Obtaining copies of a message.
Unauthorized change to file content change
Changing network configuration.
Adding a record to the database in unauthorized way.

C1.3: Explain how the principle of least privilege principle is implemented differently in UNIX/Linux and Windows operating system. (2 marks)

C2. Answer the following questions:

C2.1 From the diagram below, consider yourself the administrator of below networks .How to reduce the attack surface from Internet network to other operating systems of hosts on the network 1,2, 3 and 4. (2 Marks) image text in transcribed C2.2: How you will configure a DMZ in network 2 for a web server? Support your answer with a diagram.

FO Laptop-PT Laptop4 RO P10 FO Server-PT Server PC1 Server-PT Server2 Fao Peo's RO Laptop-PT Laptop2 Fan2 GAD 1804 Pous Fo/2 PC-PT PC2 605 2950-22 RO/S0-24 Switchz Switcho 20 RO Network 3 Sel Laptop-PT Laptops Laptop-PT Laptop3 Internet Network 2 Gg0/1 Gg0/01 Se03/0 F20/20 ZYUI Routero 2901 Gigo/1 Router1 Internet FO PRAR Fa0/1 60251-24 Fa0/5ch3 Laptop-PT Laptop RO RO RO/ 1 FO F003 2950-24 Switchi Server-PT Server 3 FO Server PT Serveri RO PD Fa0 FO Laptop-PT Laptop Laptop PT PC-PT Laptopi PCO Network 1 Laptop-PT Laptop PC-PT PC3 Network 4