MA0-102 - McAfee Certified Product Specialist - HIPs
Go back to
The option to select Create Exception upon an Intrusion Event will only be available if the IPS Rules Policy has been configured with which of the following?
Allow Client Rules
With stateful filtering, a slate table is considered a match when which of the following conditions of the packet are matched?
Protocol. Local Address. Local Port, Remote Address. Remote Port
When creating a User Defined signature, Rule Definitions can be based on which of the following criteria? (Select the three that apply)
Windows and UNIX Files and Directories
Windows Registry Keys
Which of the following HIPs Policy categories are used to set reaction for signature seventy levels?
Which of the following items can be found under the IPS Policy tab of the HIPS Client Ul?
Locally created IPS Client Rules
Which of the following statements about Adaptive Mode are correct?
Adaptive Mode blocks all activity except malicious exploits
Stateful packet filtering occurs at which level of the Transport Layer?
Layer 4 and lower
Which of the following is the command-line troubleshooting tool used for HIPs non-Windows platforms?
Which of the following is the HIPs executable for the HIPs Client Ul?
Which port is used to access the McAfee Agent Activity Log from a remote machine?
Which of the following statements best defines the Application Protection (Shielding and Enveloping) feature?
Applications, system registry and services are locked down against malicious activity
Which of the following is the HIPs policy that allows a generated listing of applications that are known to be safe and are allowed to perform any normal operation?
Trusted Applications Policy
Which of the following ClientControl utility command line arguments force the Firewall component to allow all traffic?
Which of the following custom signature rule types are used to prevent process termination and modification?
Which of the following options cannot be used to define a trusted network?
Firewall client rules are created in Adaptive Mode using which of the following parameters?
Which of the following extensions is required to enable IPS within HIPs?
Host IPS License
Under which policy category is the Application Protection List managed?
Which of the following tasks provide signature updates to HIPs clients?
McAfee Agent Update
Which of the following server services is responsible for communication with the McAfee agent?
Which of the following options can prevent policy enforcements locally on the client?
Which of the following categories is used to set the protection reaction level for Host IPS signature seventy levels?
Which of the following is a supported browser for Host IPS and ePO? (Select the two that apply)
Which of the following steps should be performed first when troubleshooting issues with custom signatures?
Simplify the signature to find the point of failure
Which of the following methods utilize HIPs events? (Select the three that apply)
When are MPs client rule exceptions delivered to the ePO Server?
During agent-to-server communication
The Connection Isolation option is available for which of the following?
Which of the following McAfee Agent files are used to report the results of script commands used during updates and deployment?
Which of the following types of signatures can be contained within an IPS Rules Policy? (Select the three that apply)
Which of the following is the default location for the McAfee Agent configuration files?
The time period between the moment a vulnerability is identified and a patch is released is commonly referred to as the ______________window.
Time to patch
Which of the following is the HIPs executable that provides the McAfee Firewall Core Service?
Which of the following are the accepted methods of creating exceptions? (Select the two that apply)
Which component controls the scheduled tasks and communicates with the common agent1?
Which of the following Firewall Rule group options is used to prevent undesirable traffic from accessing the network by only processing traffic that matches both the "allow rules" above the group in the Firewall rules list and the group criteria?
Which of the following platforms does Host IPS not support?
Where are Host IPS custom signatures created?
Which of the following protection is available for HIPs non-Windows clients?
Which of the following operating systems does HIPs for Windows not support?
Windows XPSP 3 64-bit
Under which HIPs Policy category can IPS Engines be disabled for troubleshooting?
Client Ul (Windows)
Which of the following is the installation directory for HIPs non-Windows platforms?
Which of the following is the main log file for IPS?
Which of the following is not an available criteria for a Location Aware Group?
Which of the following security level adjustments to "all clients" would be the equivalent to defining an exception valid for all clients, users and processes under a specific signature?
When applying a patch or service pack to systems on the network, what is the recommended HIPs protection policy that is used for enforcement?
Where is Firewall traffic displayed within the HIPs Client Ul?
Activity Log lab
What detail property includes the Local Time Zone value of a managed machine?
System Information properties
In which of the following files are all triggered Automatic Response actions logged?
Server Task lop
Which of the following are used to create custom signatures? (Select the three that apply)
Signature Creation Wizard
In which order are HIPs Firewall rules processed to filler incoming packets'?
Top to bottom