This question is asked to network administrators and security officers in order to test insight of the candidates’ overall knowledge of the various attacks that may affect the organization. You’d better have some real life network security experience to giving a perfect answer. However, if you never dealt with denial-of-service attack and recovery, you can still make yourself familiar with the concept and describe the general process. An example answer could be like:
“Our network could get denial-of-service attack because someone wanted to crash our system or make it perform so poorly and become unusable. Hackers may also want to install Trojan or a root kit through the attack. When a denial-of-service attack is identified, the first thing I would do is to reboot the system. In general I would also need to reprogram the switches and routers in order to drop the offending traffic. I would implement certain security features provided by the vendors to within the system to protect the network from this type of attack. With a Windows server system for example, I can invoke IPSec policies that allow me to limit or forbid traffic from certain hosts.”
0 Comments.