Print this page

Certified Ethical Hacker v10 UK Question of the Day #95

Written by  Oct 08, 2019

You have successfully gained access to a linux server and would like to ensure that the succeeding outgoing traffic from this server will not be caught by a Network Based Intrusion Detection Systems (NIDS).

What is the best way to evade the NIDS?

A. Encryption
B. Protocol Isolation
C. Alternate Data Streams
D. Out of band signalling

 

 

 

 

 Scroll down for answer

 

 The following books are highly recommended to progress your CEH v10 studies.


CEH v10 Certified Ethical Hacker Study Guide
amazon uk


CEH Certified Ethical Hacker All-in-One Exam Guide, Fourth Edition
amazon uk

 

Answer A

 

Explanation
When the NIDS encounters encrypted traffic, the only analysis it can perform is packet level analysis, since the application layer contents are inaccessible. Given that exploits against today's networks are primarily targeted against network services (application layer entities), packet level analysis ends up doing very little to protect our core business assets.
References: http://www.techrepublic.com/article/avoid-these-five-common-ids-implementation-errors/

 

See more questions and answers

CEH v10 EC Council questions and answers.

FREE PDF Download of all CEH v10 exam questions and answers.


Have something to say about this article? Comment below or share it with us on
Facebook, Twitter or LinkedIn.

Last modified on Wednesday, 20 May 2020 19:13