[Aug-2021] Practice CompTIA SY0-501 exam. Online Exam Practice Tests with detailed explanations! Pass SY0-501 with confidence! [Q160-Q184]

Practice Security+ SY0-501 exam. Online Exam Practice Tests with detailed explanations! Pass SY0-501 with confidence!

SY0-501 - CompTIA Security+ Certification Exam Practice Tests 2021 | Exam-Killer

NEW QUESTION 160
You have just received some room and WiFi access control recommendations from a security consulting company. Click on each building to bring up available security controls. Please implement the following requirements:
The Chief Executive Officer's (CEO) office had multiple redundant security measures installed on the door to the office. Remove unnecessary redundancies to deploy three-factor authentication, while retaining the expensive iris render.
The Public Cafe has wireless available to customers. You need to secure the WAP with WPA and place a passphrase on the customer receipts.
In the Data Center you need to include authentication from the "something you know" category and take advantage of the existing smartcard reader on the door.
In the Help Desk Office, you need to require single factor authentication through the use of physical tokens given to guests by the receptionist.
The PII Office has redundant security measures in place. You need to eliminate the redundancy while maintaining three-factor authentication and retaining the more expensive controls.

Instructions: The original security controls for each office can be reset at any time by selecting the Reset button. Once you have met the above requirements for each office, select the Save button. When you have completed the entire simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

Answer:

Explanation:
See the solution below.
Explanation
Solution as

 

NEW QUESTION 161
To reduce disk consumption, an organization's legal department has recently approved a new policy
setting the data retention period for sent email at six months. Which of the following is the BEST way to
ensure this goal is met?

• A. Configure the email server to delete the relevant emails.
• B. Create a daily encrypted backup of the relevant emails.
• C. Implement automatic disk compression on email servers.
• D. Migrate the relevant emails into an "Archived" folder.

Answer: B

 

NEW QUESTION 162
A security analyst is hardening a WiFi infrastructure. The primary requirements are the following:
The infrastructure must allow staff to authenticate using the most

secure method.
The infrastructure must allow guests to use an "open" WiFi network

that logs valid email addresses before granting access to the
Internet.
Given these requirements, which of the following statements BEST represents what the analyst should recommend and configure?

• A. Configure a captive portal for staff and WPA for guests.
• B. Configure a captive portal for staff and WEP for guests.
• C. Configure a captive portal for guest and WPA2 Enterprise for staff.
• D. Configure a captive portal for guests and WPS for staff.

Answer: C

 

NEW QUESTION 163
A security administrator is given the security and availability profiles for servers that are being deployed.
* Match each RAID type with the correct configuration and MINIMUM number of drives.
* Review the server profiles and match them with the appropriate RAID type based on integrity,
* availability, I/O, storage requirements. Instructions:
* All drive definitions can be dragged as many times as necessary
* Not all placeholders may be filled in the RAID configuration boxes
* If parity is required, please select the appropriate number of parity checkboxes
* Server profiles may be dragged only once
If at any time you would like to bring back the initial state of the simulation, please select the Reset button.
When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

Answer:

Explanation:

Explanation

RAID-0 is known as striping. It is not a fault tolerant solution but does improve disk performance for read/write operations. Striping requires a minimum of two disks and does not use parity.
RAID-0 can be used where performance is required over fault tolerance, such as a media streaming server.
RAID-1 is known as mirroring because the same data is written to two disks so that the two disks have identical data. This is a fault tolerant solution that halves the storage space. A minimum of two disks are used in mirroring and does not use parity. RAID-1 can be used where fault tolerance is required over performance, such as on an authentication server. RAID-5 is a fault tolerant solution that uses parity and striping. A minimum of three disks are required for RAID-5 with one disk's worth of space being used for parity information. However, the parity information is distributed across all the disks. RAID-5 can recover from a sing disk failure.
RAID-6 is a fault tolerant solution that uses dual parity and striping. A minimum of four disks are required for RAID-6. Dual parity allows RAID-6 to recover from the simultaneous failure of up to two disks. Critical data should be stored on a RAID-6 system.
http://www.adaptec.com/en-us/solutions/raid_levels.html

 

NEW QUESTION 164
After patching computers with the latest application security patches/updates, users are unable to open certain applications. Which of the following will correct the issue?

• A. Modifying the security policy for media control
• B. Modifying the security policy for DLP
• C. Modifying the security policy for HIDS/HIPS
• D. Modifying the security policy for patch management tools

Answer: B

 

NEW QUESTION 165
You have just received some room and WiFi access control recommendations from a security consulting company. Click on each building to bring up available security controls. Please implement the following requirements:
The Chief Executive Officer's (CEO) office had multiple redundant security measures installed on the door to the office. Remove unnecessary redundancies to deploy three-factor authentication, while retaining the expensive iris render.
The Public Cafe has wireless available to customers. You need to secure the WAP with WPA and place a passphrase on the customer receipts.
In the Data Center you need to include authentication from the "something you know" category and take advantage of the existing smartcard reader on the door.
In the Help Desk Office, you need to require single factor authentication through the use of physical tokens given to guests by the receptionist.
The PII Office has redundant security measures in place. You need to eliminate the redundancy while maintaining three-factor authentication and retaining the more expensive controls.

Instructions: The original security controls for each office can be reset at any time by selecting the Reset button. Once you have met the above requirements for each office, select the Save button. When you have completed the entire simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue.

Answer:

Explanation:
See the solution below.
Explanation
Solution as

 

NEW QUESTION 166
Joe, a backup administrator, wants to implement a solution that will reduce the restoration time of physical servers. Which of the following is the BEST method for Joe to use?

• A. Snapshots
• B. Incremental
• C. Differential
• D. Full

Answer: D

 

NEW QUESTION 167
A user from the financial aid office is having trouble interacting with the finaid directory on the university's ERP system. The systems administrator who took the call ran a command and received the following output:

Subsequently, the systems administrator has also confirmed the user is a member of the finaid group on the ERP system.
Which of the following is the MOST likely reason for the issue?

• A. The files on the finaid directory have become corrupted.
• B. The permissions on the finaid directory should be drwxrwxrwx.
• C. The finaid directory is not formatted correctly
• D. The problem is local to the user, and the user should reboot the machine.

Answer: C

 

NEW QUESTION 168
Recently several employees were victims of a phishing email that appeared to originate from the company president. The email claimed the employees would be disciplined if they did not click on a malicious link in the message.
Which of the following principles of social engineering made this attack successful?

• A. Authority
• B. Social proof
• C. Scarcity
• D. Spamming

Answer: A

 

NEW QUESTION 169
A company wants to host a publicity available server that performs the following functions:
Which of the following should the company use to fulfill the above requirements?

• A. DNSSEC
• B. dig
• C. LDAPS
• D. SFTP
• E. nslookup

Answer: C

 

NEW QUESTION 170
A junior systems administrator noticed that one of two hard drives in a server room had a red error notification. The administrator removed the hard drive to replace it but was unaware that the server was configured in an array. Which of the following configurations would ensure no data is lost?

• A. RAID 0
• B. RAID 2
• C. RAID 1
• D. RAID 3

Answer: C

 

NEW QUESTION 171
A company recently replaced its unsecure email server with a cloud-based email and collaboration solution that is managed and insured by a third party. Which of the following actions did the company take regarding risks related to its email and collaboration services?

• A. Mitigation
• B. Deterrence
• C. Transference
• D. Acceptance

Answer: C

 

NEW QUESTION 172
A security administrator wishes to implement a secure a method of file transfer when communicating with outside organizations. Which of the following protocols would BEST facilitate secure file transfers? (Select TWO)

• A. FTP
• B. SCP
• C. TFTP
• D. FTPS
• E. SNMP
• F. SMTP

Answer: B,D

 

NEW QUESTION 173
During the penetration testing of an organization, the tester was provided with the names of a few key servers, along with their IP address. Which of the following is the organization conducting?

• A. White box testing
• B. Gray box testing
• C. Back box testing
• D. Vulnerability testing
• E. Isolated container testing

Answer: B

 

NEW QUESTION 174
A technician, who is managing a secure B2B connection, noticed the connection broke last night. All networking equipment and media are functioning as expected, which leads the technician to question:
certain PKI components. Which of the following should the technician use to validate this assumption?
(Choose two.)

• A. CRL
• B. OCSP
• C. PFX
• D. CER
• E. SCEP
• F. PEM

Answer: A,B

 

NEW QUESTION 175
A company has three divisions, each with its own networks and services. The company decides to make its secure web portal accessible to all employees utilizing their existing usernames and passwords, The security administrator has elected to use SAML to support authentication.
In this scenario, which of the following will occur when users try to authenticate to the portal?
(Select TWO)

• A. The back-end networks will function as an identity provider and issue an authentication assertion
• B. The portal will function as an identity provider and issue an authentication assertion
• C. The back-end networks will verify the assertion token issued by the portal functioning as the identity provider
• D. The portal will request an authentication ticket from each network that is transitively trusted
• E. The back-end networks will request authentication tickets from the portal, which will act as the third-party service provider authentication store

Answer: A,D

 

NEW QUESTION 176
Which of the following solutions should an administrator use to reduce the risk from an unknown vulnerability in a third-party software application?

• A. Fuzzing
• B. Encryption
• C. Sandboxing
• D. Code signing

Answer: C

 

NEW QUESTION 177
During a lessons learned meeting regarding a previous incident, the security team receives a follow-up action item with the following requirements:
- Allow authentication from within the United States anytime
- Allow authentication if the user is accessing email or a shared file
system
- Do not allow authentication if the AV program is two days out of date
- Do not allow authentication if the location of the device is in two
specific countries
Given the requirements, which of the following mobile deployment authentication types is being utilized?

• A. Two-factor authentication
• B. Context-aware authentication
• C. Geofencing authentication
• D. Biometric authentication

Answer: B

 

NEW QUESTION 178
Drag and drop the correct protocol to its default port.

Answer:

Explanation:

Explanation:
FTP uses TCP port 21. Telnet uses port 23.
SSH uses TCP port 22.
All protocols encrypted by SSH, including SFTP, SHTTP, SCP, SExec, and slogin, also use TCP port 22. Secure Copy Protocol (SCP) is a secure file-transfer facility based on SSH and Remote Copy Protocol (RCP).
Secure FTP (SFTP) is a secured alternative to standard File Transfer Protocol (FTP). SMTP uses TCP port 25.
Port 69 is used by TFTP.
SNMP makes use of UDP ports 161 and 162. http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers

 

NEW QUESTION 179
Devices on the SCADA network communicate exclusively at Layer 2. Which of the following should be used to prevent unauthorized systems using ARP-based attacks to compromise the SCADA network?

• A. VLANS
• B. Application firewall
• C. Hardware encryption
• D. IPSec

Answer: D

 

NEW QUESTION 180
A software development company needs to share information between two remote servers, using encryption to protect it. A programmer suggests developing a new encryption protocol, arguing that using an unknown protocol with secure, existing cryptographic algorithm libraries will provide strong encryption without being susceptible to attacks on other known protocols.
Which of the following summarizes the BEST response to the programmer's proposal?

• A. The newly developed protocol will only be as secure as the underlying cryptographic algorithms used.
• B. A programmer should have specialized training in protocol development before attempting to design a new encryption protocol.
• C. The obscurity value of unproven protocols against attacks often outweighs the potential for introducing new vulnerabilities.
• D. New protocols often introduce unexpected vulnerabilities, even when developed with otherwise secure and tested algorithm libraries.

Answer: D

 

NEW QUESTION 181
A security analyst is checking the bash command history on a Linux host that was involved in a data breach.
The data breach stemmed from the Linux host running a senses of commands against a web server on the internal network, which exploited a vulnerability in an unpatched, outdated Apache module. Given this scenario, which of the following commands might the analyst find in the bash command history for banner grabbing? (Select TWO).

• A. nmap
• B. grep
• C. tracert
• D. Arp
• E. telnet
• F. nslookup

Answer: A,E

 

NEW QUESTION 182
When systems, hardware, or software are not supported by the original vendor, it is a vulnerability known as:

• A. system sprawl
• B. a default configuration
• C. end-of-life systems
• D. resource exhaustion

Answer: C

Explanation:
Explanation
All systems eventually reach an end-of-life stage.
End-of-life is defined as when the system has reached a point where it can no longer function as intended.
End-of-life status can be reached for many reasons,
..... such as lack of vendor support,
.... a failure to instantiate on newer hardware,
.... or incompatibility with other aspects of a system.
Old software systems are frequently referred to as legacy systems, especially when they are still in use post end-of-life.

 

NEW QUESTION 183
An auditor is reviewing the following output from a password-cracking tool:

Which of the following methods did the author MOST likely use?

• A. Dictionary
• B. Brute force
• C. Hybrid
• D. Rainbow table

Answer: C

 

NEW QUESTION 184
......

The best SY0-501 exam study material and preparation tool is here: https://www.exam-killer.com/SY0-501-valid-questions.html