JK0-018 Exam Details

  • Exam Code
    :JK0-018
  • Exam Name
    :CompTIA Security+ E2C (2011 Edition)
  • Certification
    :CompTIA Security+
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 09, 2021

CompTIA JK0-018 Online Questions & Answers

  • Question 121:

    Which of the following would MOST likely belong in the DMZ? (Select TWO).

    A. Finance servers
    B. Backup servers
    C. Web servers
    D. SMTP gateways
    E. Laptops

  • Question 122:

    Using proximity card readers instead of the traditional key punch doors would help to mitigate:

    A. Impersonation
    B. Tailgating
    C. Dumpster diving
    D. Shoulder surfing

  • Question 123:

    Joe, the Chief Technical Officer (CTO), is concerned about new malware being introduced into the corporate network. He has tasked the security engineers to implement a technology that is capable of alerting the team when unusual traffic is on the network. Which of the following types of technologies will BEST address this scenario?

    A. Application Firewall
    B. Anomaly Based IDS
    C. Proxy Firewall
    D. Signature IDS

  • Question 124:

    After a number of highly publicized and embarrassing customer data leaks as a result of social engineering attacks by phone, the Chief Information Officer (CIO) has decided user training will reduce the risk of another data leak. Which of the following would be MOST effective in reducing data leaks in this situation?

    A. Information Security Awareness
    B. Social Media and BYOD
    C. Data Handling and Disposal
    D. Acceptable Use of IT Systems

  • Question 125:

    Which of the following BEST describes a SQL Injection attack?

    A. The attacker attempts to have the receiving server pass information to a back-end database from which it can compromise the stored information.
    B. The attacker attempts to have the receiving server run a payload using programming commonly found on web servers.
    C. The attacker overwhelms a system or application, causing it to crash and bring the server down to cause an outage.
    D. The attacker overwhelms a system or application, causing it to crash, and then redirects the memory address to read from a location holding the payload.

  • Question 126:

    Joe, the system administrator, is performing an overnight system refresh of hundreds of user computers. The refresh has a strict timeframe and must have zero downtime during business hours. Which of the following should Joe take into consideration?

    A. A disk-based image of every computer as they are being replaced.
    B. A plan that skips every other replaced computer to limit the area of affected users.
    C. An offsite contingency server farm that can act as a warm site should any issues appear.
    D. A back-out strategy planned out anticipating any unforeseen problems that may arise.

  • Question 127:

    Methods to test the responses of software and web applications to unusual or unexpected inputs is known as:

    A. Brute force.
    B. HTML encoding.
    C. Web crawling.
    D. Fuzzing.

  • Question 128:

    While setting up a secure wireless corporate network, which of the following should Pete, an administrator, avoid implementing?

    A. EAP-TLS
    B. PEAP
    C. WEP
    D. WPA

  • Question 129:

    Which of the following allows lower level domains to access resources in a separate Public Key Infrastructure?

    A. Trust Model
    B. Recovery Agent
    C. Public Key
    D. Private Key

  • Question 130:

    An Information Systems Security Officer (ISSO) has been placed in charge of a classified peer-to-peer network that cannot connect to the Internet. The ISSO can update the antivirus definitions manually, but which of the following steps is MOST important?

    A. A full scan must be run on the network after the DAT file is installed.
    B. The signatures must have a hash value equal to what is displayed on the vendor site.
    C. The definition file must be updated within seven days.
    D. All users must be logged off of the network prior to the installation of the definition file.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JK0-018 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.