CAS-001 Exam Details

  • Exam Code
    :CAS-001
  • Exam Name
    :CompTIA Advanced Security Practitioner
  • Certification
    :CompTIA Advanced Security Practitioner
  • Vendor
    :CompTIA
  • Total Questions
    :493 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-001 Online Questions & Answers

  • Question 291:

    When planning a complex system architecture, it is important to build in mechanisms to secure log information, facilitate audit log reduction, and event correlation. Besides synchronizing system time across all devices through NTP, which of the following is also a common design consideration for remote locations?

    A. Two factor authentication for all incident responders
    B. A central SYSLOG server for collecting all logs
    C. A distributed SIEM with centralized sensors
    D. A SIEM server with distributed sensors

  • Question 292:

    A programming team is deploying a new PHP module to be run on a Solaris 10 server with trusted extensions. The server is configured with three zones, a management zone, a customer zone, and a backend zone. The security model is constructed so that only programs in the management zone can communicate data between the zones. After installation of the new PHP module, which handles on-line customer payments, it is not functioning correctly.

    Which of the following is the MOST likely cause of this problem?

    A. The PHP module is written to transfer data from the customer zone to the management zone, and then from the management zone to the backend zone.
    B. The iptables configuration is not configured correctly to permit zone to zone communications between the customer and backend zones.
    C. The PHP module was installed in the management zone, but is trying to call a routine in the customer zone to transfer data directly to a MySQL database in the backend zone.
    D. The ipfilters configuration is configured to disallow loopback traffic between the physical NICs associated with each zone.

  • Question 293:

    In order for a company to boost profits by implementing cost savings on non-core business activities, the IT manager has sought approval for the corporate email system to be hosted in the cloud. The compliance officer has been tasked with ensuring that data lifecycle issues are taken into account.

    Which of the following BEST covers the data lifecycle end-to-end?

    A. Creation and secure destruction of mail accounts, emails, and calendar items
    B. Information classification, vendor selection, and the RFP process
    C. Data provisioning, processing, in transit, at rest, and de-provisioning
    D. Securing virtual environments, appliances, and equipment that handle email

  • Question 294:

    A data breach occurred which impacted the HR and payroll system. It is believed that an attack from within the organization resulted in the data breach. Which of the following should be performed FIRST after the data breach occurred?

    A. Assess system status
    B. Restore from backup tapes
    C. Conduct a business impact analysis
    D. Review NIDS logs

  • Question 295:

    A small company has recently placed a newly installed DNS server on the DMZ and wants to secure it by allowing Internet hosts to query the DNS server. Since the company deploys an internal DNS server, all DNS queries to that server

    coming from the company network should be blocked. An IT administrator has placed the following ACL on the company firewall:

    Testing shows that the DNS server in the DMZ is not working.

    Which of the following should the administrator do to resolve the problem?

    A. Modify the SRC and DST ports of ACL 1
    B. Modify the SRC IP of ACL 1 to 0.0.0.0/32
    C. Modify the ACTION of ACL 2 to Permit
    D. Modify the PROTO of ACL 1 to TCP

  • Question 296:

    The Chief Executive Officer (CEO) of a corporation purchased the latest mobile device and wants to connect it to the company's internal network. The Chief Information Security Officer (CISO) was told to research and recommend how to secure this device.

    Which of the following recommendations should be implemented to keep the device from posing a security risk to the company?

    A. A corporate policy to prevent sensitive information from residing on a mobile device and anti- virus software.
    B. Encryption of the non-volatile memory and a corporate policy to prevent sensitive information from residing on a mobile device.
    C. Encryption of the non-volatile memory and a password or PIN to access the device.
    D. A password or PIN to access the device and a corporate policy to prevent sensitive information from residing on a mobile device.

  • Question 297:

    A helpdesk manager at a financial company has received multiple reports from employees and customers that their phone calls sound metallic on the voice system. The helpdesk has been using VoIP lines encrypted from the handset to the PBX for several years.

    Which of the following should be done to address this issue for the future?

    A. SIP session tagging and QoS
    B. A dedicated VLAN
    C. Lower encryption setting
    D. Traffic shaping

  • Question 298:

    Which of the following can aid a buffer overflow attack to execute when used in the creation of applications?

    A. Secure cookie storage
    B. Standard libraries
    C. State management
    D. Input validation

  • Question 299:

    SDLC is being used for the commissioning of a new platform. To provide an appropriate level of assurance the security requirements that were specified at the project origin need to be carried through to implementation. Which of the following would BEST help to determine if this occurred?

    A. Requirements workshop
    B. Security development lifecycle (SDL)
    C. Security requirements traceability matrix (SRTM)
    D. Secure code review and penetration test

  • Question 300:

    A storage administrator would like to make storage available to some hosts and unavailable to other hosts. Which of the following would be used?

    A. LUN masking
    B. Deduplication
    C. Multipathing
    D. Snapshots

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.