JK0-018 Exam Details

  • Exam Code
    :JK0-018
  • Exam Name
    :CompTIA Security+ E2C (2011 Edition)
  • Certification
    :CompTIA Security+
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 09, 2021

CompTIA JK0-018 Online Questions & Answers

  • Question 751:

    Which of the following can be used by a security administrator to successfully recover a user's forgotten password on a password protected file?

    A. Cognitive password
    B. Password sniffing
    C. Brute force
    D. Social engineering

  • Question 752:

    HOTSPOT

    The security administrator has installed a new firewall which implements an implicit DENY policy by default Click on the firewall and configure it to allow ONLY the following communication.

    1.

    The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.

    2.

    The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port.

    3.

    The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.

    Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.

    Hot Area:

  • Question 753:

    -- Exhibit ?

    -- Exhibit -

    Which of the following BEST describes the type of attack that is occurring? (Select TWO).

    A. DNS spoofing
    B. Man-in-the-middle
    C. Backdoor
    D. Replay
    E. ARP attack
    F. Spear phishing
    G. Xmas attack

  • Question 754:

    Which of the following was launched against a company based on the following IDS log?

    122.41.15.252 - - [21/May/2012:00:17:20 +1200] "GET /index.php?username=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAA HTTP/1.1" 200 2731 "http://www.company.com/cgi- bin/forum/commentary.pl/ noframes/read/209" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; Hotbar 4.4.7.0)"

    A. SQL injection
    B. Buffer overflow attack
    C. XSS attack
    D. Online password crack

  • Question 755:

    Which of the following would a security administrator implement in order to identify a problem between two applications that are not communicating properly?

    A. Protocol analyzer
    B. Baseline report
    C. Risk assessment
    D. Vulnerability scan

  • Question 756:

    Which of the following is used to verify data integrity?

    A. SHA
    B. 3DES
    C. AES
    D. RSA

  • Question 757:

    A company is trying to limit the risk associated with the use of unapproved USB devices to copy documents. Which of the following would be the BEST technology control to use in this scenario?

    A. Content filtering
    B. IDS
    C. Audit logs
    D. DLP

  • Question 758:

    Which of the following is a common coding error in which boundary checking is not performed?

    A. Input validation
    B. Fuzzing
    C. Secure coding
    D. Cross-site scripting

  • Question 759:

    A certificate authority takes which of the following actions in PKI?

    A. Signs and verifies all infrastructure messages
    B. Issues and signs all private keys
    C. Publishes key escrow lists to CRLs
    D. Issues and signs all root certificates

  • Question 760:

    After a production outage, which of the following documents contains detailed information on the order in which the system should be restored to service?

    A. Succession planning
    B. Disaster recovery plan
    C. Information security plan
    D. Business impact analysis

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your JK0-018 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.