GIAC Certified Incident Handler (GCIH) — Question 206
Which of the following steps can be taken as countermeasures against sniffer attacks?
Each correct answer represents a complete solution. (Choose all that apply.)
Answer options
- A. Use encrypted protocols for all communications.
- B. Use switches instead of hubs since they switch communications, which means that information is delivered only to the predefined host.
- C. Use tools such as StackGuard and Immunix System to avoid attacks.
- D. Reduce the range of the network to avoid attacks into wireless networks.
Correct answer: A, B, D
Explanation
Using encrypted protocols ensures that even if data is intercepted, it remains unreadable. Employing switches instead of hubs enhances security by directing traffic only to intended recipients, which mitigates the risk of eavesdropping. Reducing the network's range helps protect against unauthorized wireless access, while the use of tools like StackGuard and Immunix focuses on different types of vulnerabilities rather than specifically countering sniffer attacks.