FortiMail Interview Questions for freshers experienced :-
1. What is bulk mailing? What are the challenges associated?
The process of sending email to multiple users at the same time for conveying a message or anything is considering as bulk mailing. This is a very common approach in large-scale organizations and in business promotions. Sending emails internally doesn’t have many issues that are associated. However, sending emails to outside users can create a few issues sometimes. The sender must be aware of the fact that the email account actually exists and is used by the authorized user only.
2. Is there any approach that can be considered for securing the information before transferring it to another user or server?
There are certain techniques available depending on the type and size of data or information that needs to be sent over a network. The most common one is securing a document with a username and a password. Second is using cryptography.
3. Are you familiar with the key challenges associated with the email-security?
There can be so many challenges related to data security and the most common one is when anyone else is using an email account than the one who is authorized to do so. This leads to information leakage and security concerns that can often put down the entire business at risk.
4. Name one security measure which you will take for securing emails and information from being leaked while mailing anything internally
Requesting suspension of all the accounts that are no longer in use.
5. Suppose there are some issues with the server and the intranet is not working. Do you proceed with sending information through personal e-mail in case the data is confidential?
No, sharing of data should be through intranet only otherwise it leads o a lot of concerns about the information security.
6. How will you find out a breakdown in communication?
It all depends on the type of task or the medium. Most of the time issues are with the medium only. A medium is actually a link which connects a sender and a destination. The breakdown in communication reflects slower transmission speed and thus actions can be taken based on that.
7. What components in a network are always more prone to attacks and why?
Well, a network can be a large connection of various nodes and devices that work for a similar or different operation. There are networking devices such as a router, SFPT, as well as stitches that are always more prone to attacks. This is because these devices don’t have any inbuilt protocol for information security. Hacking or accessing the control over them can leak entire data.
8. Is there any technique to find out whether a remote server is running Apache or IIS?
Yes, it’s possible to do so. The website administrator has to match the information as provided by the remote server. In case it matches, it can simply be known after that whether it’s an Apache or IIS.
9. What exactly do you know about Symmetrical and Asymmetric encryption?
Both these approaches are meant to enhance the information security and especially before it needs to be transferred over a link or a network. In symmetric approach, the same key is used for both encryption as well as decryption. On the other side, in asymmetric approach, the encryption and decryption keys are different depending on the type of data or information. Generally, it has been seen that an Asymmetric connection is first established and the same is converted into symmetric at a later stage.
10. Email accounts often need to be linked with other accounts for functionality. Do you support this approach? Name one method by which the associated challenges can be eliminated?
Well, it’s quite true that functionality and accuracy always matter in an organization. The linking of accounts is necessary to keep up the pace at various stages. The most common example is social media sites which are used for promotional purposes by the businesses in the current scenario. In realm of information and data security, it leads to leakage of same. The challenges related to information security can simply be avoided up to a great extent by making sure that these applications are not running in their default configuration. Locking the permissions on all such applications is also necessary.
11. Do you know what exactly a POST code is? What is its significance?
It is basically an approach to ensure the proper working of a system to ensure uninterrupted functionality. Generally, it is considered in systems that need to be up all the time such as a server. It is also considered when the system fails to boot.
12. Can you tell the difference between a White Hat and a Black Hat attacker or hacker?
When it comes to freedom of information, this is a very complicated question. White hack hackers generally work for the welfare of an organization in terms of getting the information. They usually get it from other sources to understand the security measures. Black Hat hackers on the other side steal a company’s information through an unauthorized access to their database.
13. What is the abbreviation of WAP? How can it be protected?
WAP stands for Wireless Access Point. The broadcasting of SSID could be stopped for its protection. In addition to this, MAC address filtering is another approach that can be adopted to keep up the pace when it comes to the security of WAP.
14. Do you have any idea about the Salt Hashes?
Salt is generally considered as random data. When the system receives a new password request, the same is created with a hashed value and a fresh salt random value gets created automatically. This is actually a useful approach for defending the attack that is concerned with a dictionary. They are also considered as hash attacks. It is because of salt hashes a user is not able to login on multiple systems with same login details at the same time.
15. What exactly do you know about SSL? Is it enough for encryption when it comes to email security?
SSL stands for Secure Socket Layers and the fact is it’s an identity verification approach that is quite common in email security. Its prime purpose is to make sure that the user at the other end is truly the same to whom access has been provided. Thus it always contributes in enhancing the security up to a great extent. Although it’s a good and trusted approach, it has been seen that it gets stripped in some cases. Therefore the need of some additional approaches is always realized when it comes to implementing this.
16. Suggest some methods for authenticating a user?
This is a common practice. There are a few strategies that work for this and they are
- Through Passwords
- Through token
- Biometrics
In addition to this, a two-way authentication which can be the combination of a password and a token can also be considered to assure additional security.
17. Explain the significance of using SSH?
It is a good approach that is always considered especially when it comes to email security. The fact is it creates a secure connection and all the sensitive information has to pass the TCP port no 22 which in fact is a secure approach. The chances of information leak can be reduced up to an excellent extent and monitoring can be made simple.
18. Would to allow a basic user to login as a root in case of any situation? Why or why not?
Well, the fact is a root has a lot of powers that a basic user is not allowed. Therefore this practice must not be considered. The fact is, root is considered as admin and thus admin login cannot be provided to a basic user under any situation.
19. What is the significance of XSS approach?
Well, the Cross site scripting is a protocol that makes sure that the administrators and developers don’t have to face issues in case the variables changed while they perform their task. Many times it has been seen that variables changed on the webpage of the client. Input validation through XSS is a useful approach that can assure protection against the same and thus enhance the security.
20. Is it wise to open the attached files from an unknown sender without scanning? Why
In the present scenario, a lot of auspicious emails keep on circulating all the time on the internet. They can appear in any email account. Clicking on the links that are unrecognizable and downloading the files attached can create several security issues. This could even lead to spreading of viruses in the database that would be a very daunting situation. So it is not good to do so for obvious reasons.
21. Do you have any idea about the CIA triangle? What does it stands for and what is its significance?
CIA stands for Confidentiality, Integrity and Availability. It is an approach to keep the information that needs to be shared on a network secure in all the aspects. It makes sure of accessibility of data, secure structure, as well as data intact.
22. What exactly do you know about NIDS and HIDS?
The primary aim of both of them is to enhance information security. Actually, they are Intrusion Detection systems. HIDS stands for Host Intrusion Detection System and basically runs a background utility similar to anti-virus software. On the other side, NIDS is Network Intrusion Detection System and is responsible for the security of the network. Both NIDS and HIDS come with anomaly based and signature based variants. They are best in performing their tasks and attacks can be stopped up to a great extent.
23. Suppose you find a security problem on a network which is out of your concerns, what would be your actions during such a situation?
The person in charge of that particular department or the network administrator should immediately be informed and that is exactly what I will do. Sharing such concerns with other parties is always a helping hand for assuring secure data environment in an organization.
24. What does FTP stand for?
It stands for File Transfer Protocol.
25. Would you allow your team to bring their home laptops in the organization and using them for business processes?
No, it should be allowed especially when the information is highly confidential. There are extreme chances of data leak in such a scenario.
26. What factors can cause email data leakage
Basically, it happens when an IP is departed from its actual position. The true reasons for this could be:
- Technology mishaps
- Inadequate security control
- Human and Gross errors
- Assure backups
- Corrupt hard drive
- System breach from hackers
- Misconfiguration
27. Is it possible to access the data stored at an organization server from a remote location?
Yes, this can be done. There are various applications that can help in this matter. They couldn’t create security concerns if the administrators make sure of strong security policies.
28. What is the true purpose of Information Assurance?
It simply aims to keep the data reliable under all the situations. Some examples include backup, configuration, as well as encryption.
29. What is a penetration test? What is its significance?
It is nothing but auditing email accounts for security and other similar purposes. It can be done with the help of outside contractors.
30. What exactly do you know about data protection at rest and data protection in transit?
In case data is protected when it is present in the hard drive or in the database, it is regarded as data protection at rest. When the same is transferred from source to destination, the protection at that instant with some concerned approaches is known as data protection in transit. The Data protection in transit is a common approach in email security.