Ensurepass

QUESTION 501

Which of the following assets is MOST likely considered for DLP?

 

A.

Application server content

B.

USB mass storage devices

C.

Reverse proxy

D.

Print server

 

Correct Answer: B

 

 

QUESTION 502

In order to securely communicate using PGP, the sender of an email must do which of the following when sending an email to a recipient f
or the first time?

 

A.

Import the recipient’s public key

B.

Import the recipient’s private key

C.

Export the sender’s private key

D.

Export the sender’s public key

 

Correct Answer: A

 

 

QUESTION 503

A hacker has discovered a simple way to disrupt business for the day in a small company which relies on staff working remotely. In a matter of minutes the hacker was able to deny remotely working staff access to company systems with a script. Which of the following security controls is the hacker exploiting?

 

A.

DoS

B.

Account lockout

C.

Password recovery

D.

Password complexity

 

Correct Answer: B

 

 

 

QUESTION 504

A security specialist has been asked to evaluate a corporate network by performing a vulnerability assessment. Which of the following will MOST likely be performed?

 

A.

Identify vulnerabilities, check applicability of vulnerabilities by passively testing security controls.

B.

Verify vulnerabilities exist, bypass security controls and exploit the vulnerabilities.

C.

Exploit security controls to determine vulnerabilities and mis-configurations.

D.

Bypass security controls and identify applicability of vulnerabilities by passively testing security controls.

 

Correct Answer: A

 

 

QUESTION 505

A security technician is attempting to access a wireless network protected with WEP. The technician does not know any information about the network. Which of the following should the technician do to gather information about the configuration of the wireless network?

 

A.

Spoof the MAC address of an observed wireless network client

B.

Ping the access point to discover the SSID of the network

C.

Perform a dictionary attack on the access point to enumerate the WEP key

D.

Capture client to access point disassociation packets to replay on the local PC’s loopback

 

Correct Answer: A

 

 

QUESTION 506

After an assessment, auditors recommended that an application hosting company should contract with additional data providers for redundant high speed Internet connections. Which of the following is MOST likely the reason for this recommendation? (Select TWO).

 

A.

To allow load balancing for cloud support

B.

To allow for business continuity if one provider goes out of business

C.

To eliminate a single point of failure

D.

To allow for a hot site in case of disaster

E.

To improve intranet communication speeds

 

Correct Answer: BC

 

 

QUESTION 507

A router has a single Ethernet connection to a switch. In the router configuration, the Ethernet interface has three sub-interfaces, each configured with ACLs applied to them and 802.1q trunks. Which of the following is MOST likely the reason for the sub-interfaces?

 

A.

The network uses the subnet of 255.255.255.128.

B.

The switch has several VLANs configured on it.

C.

The sub-interfaces are configured for VoIP traffic.

D.

The sub-interfaces each implement quality of service.

 

Correct Answer: B

 

 

QUESTION 508

Which of the following should be enabled in a laptop’s BIOS prior to full disk encryption?

 

A.

USB

B.

HSM

C.

RAID

D.

TPM

 

Correct Answer: D

 

 

QUESTION 509

Company employees are required to have workstation client certificates to access a bank website. These certificates were backed up as a precautionary step before the new computer upgrade. After the upgrade and restoration, users state they can access the bank’s website, but not login. Which is the following is MOST likely the issue?

 

A.

The IP addresses of the clients have change

B.

The client certificate passwords have expired on the server

C.

The certificates have not been installed on the workstations

D.

The certificates have been installed on the CA

 

Correct Answer: C

 

 

QUESTION 510

Digital Signatures provide which of the following?

 

A.

Confidentiality

B.

Authorization

C.

Integrity

D.

Authentication

E.

Availability

 

Correct Answer: C

 

Free VCE & PDF File for CompTIA SY0-401 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

Comments are closed.