Question:

(a) State whether the following statements are TRUE or FALSE. Justify your answer.

i. A good site security policy will require that users use computer generated password that are changed monthly.

ii. Mandatory Access Control policy allows the current owner of a data file to specify who has access.

(b) How is dictionary attacks made difficult against Unix systems? Which file is instrumental in preventing dictionary attack altogether?

(c) Which database recovery techniques provide an exact, up-to-date copy of the database maintained at an alternative location?

(d) What combination of backup strategies provides the fastest backup creation time?

(e) Given that a file in UNIX has the 9 mode bits set as follow: 111 110 100, describe the access rights encoded.

(f) What is the major difference between a virus and a worm?