kenpat/comptia-a-plus-core2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
comptia-a-plus-core2/quizzes/SEC-10-quiz.md
Ken Patmonk 0c3868ea71 quizzes: expand all 35 quizzes to 15 questions each 
OPS-1 through OPS-10, OS-2, OS-3 went from 5 → 15.
OS-1, OS-4 through OS-11, SEC-1 through SEC-11, TRB-1 through TRB-4 went from 7 → 15.
Questions cover exam-weight scenarios not duplicated from original content.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-06-19 02:43:26 -05:00

132 lines
3.4 KiB
Markdown
Raw Blame History

# SEC-10 Quiz: SOHO Network Security
Take this after studying `notes/SEC-10-soho-network-security.md`.
Reply with answers like:
`1B 2A 3D 4C 5B 6A 7D`
## Questions
1. Why should the default admin password on a router be changed?
A. It increases Wi-Fi signal strength
B. It changes the file system to NTFS
C. It disables all security patches
D. Default credentials are often publicly known
2. A SOHO router has a known vulnerability. What is the best first action?
A. Hide every file extension
B. Change the monitor refresh rate
C. Install the manufacturer's firmware update
D. Disable all backups
3. Which Wi-Fi configuration is best for a typical SOHO network?
A. Open network with no password
B. WPA3-Personal or WPA2-Personal with a strong passphrase
C. Default SSID and default password
D. WEP with a short key
4. Why is UPnP often disabled as a best practice?
A. It prevents firmware updates
B. It encrypts every hard drive
C. It disables DHCP permanently
D. It can let internal apps open inbound ports automatically
5. Visitors need Internet access but should not reach internal office computers. What is the best solution?
A. Isolated guest network
B. Quick format
C. Degaussing
D. Disable all encryption
6. What is the purpose of a screened subnet?
A. Increase laptop battery life
B. Replace multifactor authentication
C. Separate public-facing services from the internal network
D. Remove the need for a firewall
7. Which statement about hiding an SSID is correct?
A. It replaces WPA2/WPA3 encryption
B. It is not strong security because the SSID can still be discovered
C. It prevents all malware infections
D. It physically protects the router
8. Which SOHO feature assigns local IP addresses to connected devices automatically?
A. DNS
B. DHCP
C. NAT
D. UPnP
9. A small business wants to prevent employees from accidentally accessing certain websites. Which router feature helps?
A. DHCP reservation
B. UPnP
C. Content filtering or URL filtering
D. SSID broadcast disable
10. Which router setting maps a specific inbound port to an internal server so external users can reach it?
A. DHCP reservation
B. Port forwarding
C. Guest network isolation
D. Firewall default deny
11. A business needs each printer to always receive the same IP address from DHCP. Which feature enables this?
A. Port forwarding
B. DHCP reservation by MAC address
C. WPA2-Enterprise
D. DMZ hosting
12. Which network zone hosts public-facing servers while keeping them separate from the internal LAN?
A. Guest network
B. VLAN only
C. DMZ (demilitarized zone)
D. Private cloud
13. A home router's remote management interface is exposed to the internet. What should be done?
A. Enable WEP to protect it
B. Disable remote management or restrict it to trusted IPs only
C. Enable UPnP for better access
D. Broadcast the SSID
14. Which security practice ensures that wireless clients cannot communicate with each other on a guest network?
A. Client isolation or AP isolation
B. DHCP reservation
C. Port forwarding
D. SSID broadcast
15. What should be done if a SOHO router reaches end-of-life and the vendor stops releasing security patches?
A. Continue using it without concern
B. Replace it with a supported model
C. Disable DHCP only
D. Enable WEP as a workaround
## Answer Key For Instructor
1. D
2. C
3. B
4. D
5. A
6. C
7. B
8. B
9. C
10. B
11. B
12. C
13. B
14. A
15. B
Reference in a new issue View git blame Copy permalink