Chapter 90 · Quiz

Web Filtering — Quiz

Six multiple-choice questions and four matching questions. Submit for instant scoring and explanations.

Question 1 of 6
An organization's security policy states: Educational websites = Allow; Home and Garden websites = Allow and log an alert; Gambling websites = Block. A user requests a page on a gambling site. What happens, and which web filtering feature produces this behavior?
Question 2 of 6
A company's employees work from home, travel internationally, and connect to untrusted public Wi-Fi. The CISO requires web filtering that is always active regardless of which network the employee uses, without requiring a VPN connection to the corporate network. Which technology is BEST suited?
Question 3 of 6
A user's browser is configured with no special settings. The user requests a web page. Unknown to the user, the network silently routes the request through an inspection device that scans the response for malware before delivering it. No configuration was required on the user's workstation. What type of proxy is this?
Question 4 of 6
An endpoint is infected with malware that attempts to contact its command-and-control (C2) server. The malware performs a DNS lookup for the C2 domain. The organization uses DNS filtering with a real-time threat intelligence feed. What happens, and why is DNS filtering effective against this threat?
Question 5 of 6
An automated reputation system scores a newly discovered website as “High Risk.” A security administrator reviews the site and determines it is a legitimate security research blog operated by a trusted vendor. What should the administrator do, and what feature enables this?
Question 6 of 6
Fifty employees in a corporate office all regularly access the same popular news website during working hours. After a forward proxy with caching is deployed, the IT team notices that external bandwidth consumption for that site drops by 95%. What proxy feature is responsible?

Matching

Match each description to the correct web filtering technology.

1. Filtering that installs client software on user devices and enforces organizational web policy locally, keeping users protected on any network worldwide without requiring a VPN
2. A centralized internal proxy that routes and controls all outbound employee internet traffic; users on the internal network send requests to it and it fetches pages on their behalf
3. Evaluates websites on a five-level risk scale (Trustworthy → High Risk) using automated crawling and manual overrides; blocks high-risk sites before users interact with malicious content
4. Prevents connections to malicious domains by returning no IP address during name resolution; effective against phishing sites, malware C2 callbacks, and all DNS-dependent application traffic
A. Agent-Based Filtering
B. Forward Proxy
C. Reputation-Based Filtering
D. DNS Filtering