Why are packet filter firewalls not always a competent countermeasure against instant messaging (IM) attacks?
A.
They are the best type of countermeasure for this type of threat.
B.
They cause an internal denial of service when dealing with IM traffic.
C.
They can detect worms that are being transmitted through this traffic type.
D.
IM clients can reconfigure themselves to work on a port that is open on the firewall.
Explanation:
Many firewalls do not have the capability to scan for this type of
traffic to uncover suspicious activity. Blocking specific ports on the firewalls is
not usually effective because IM traffic can use common ports that need to be open
(HTTP port 80 and FTP port 21). Many IM clients will auto-configure themselves to
work on another port if their default port is unavailable and blocked by the
firewall.
the answer should be D
A packet contains source IP/Port and Destination IP/Port and as the firewall can be set to block ports that messengers commonly use. A smart user can always change the port and thus enable his messaging functionality that is why packet filter firewalls aren’t always a competent counter measure for IM’s. Answer should be D.
Yes answer should be D
no question, it is D
Hi admin,
The answer should be D
I concur with Peter, Greg, and Ravi – the answer is D.
Concur. Best answer is D.
Ans is D no doubt about it.
I agree with the answer. A
Correct answer is D , who agree that correct answer is A is a moron who bark the same nonsense in reply of every question
suck my dick faggot!
Hi, is this questions from real exam ?
The explanation or rationale to the question cleary points to “D” as the correct answer!
People, the CISSP test is above all a test of your understanding of the English language, or whatever language they are using to test you. If your command of the language is approximative, then you might have issues understanding what they are asking you.
D