CompTIA RC0-501 Online Practice Questions and Exam Preparation

CompTIA RC0-501 Online Questions & Answers

• Question 251:

  A global gaming console manufacturer is launching a new gaming platform to its customers. Which of the following controls reduces the risk created by malicious gaming customers attempting to circumvent control by way of modifying consoles?

  A. Firmware version control
  B. Manual software upgrades
  C. Vulnerability scanning
  D. Automatic updates
  E. Network segmentation
  F. Application firewalls
  A. Firmware version control
  D. Automatic updates

• Question 252:

  A systems administrator is reviewing the following information from a compromised server:

  

  Given the above information, which of the following processes was MOST likely exploited via a remote buffer overflow attack?

  A. Apache
  B. LSASS
  C. MySQL
  D. TFTP
  A. Apache

• Question 253:

  Which of the following attack types is being carried out where a target is being sent unsolicited messages via Bluetooth?

  A. War chalking
  B. Bluejacking
  C. Bluesnarfing
  D. Rogue tethering
  B. Bluejacking

• Question 254:

  When generating a request for a new x.509 certificate for securing a website, which of the following is the MOST appropriate hashing algorithm?

  A. RC4
  B. MD5
  C. HMAC
  D. SHA
  B. MD5

• Question 255:

  A member of a digital forensics team, Joe arrives at a crime scene and is preparing to collect system data. Before powering the system off, Joe knows that he must collect the most volatile date first.

  Which of the following is the correct order in which Joe should collect the data?

  A. CPU cache, paging/swap files, RAM, remote logging data
  B. RAM, CPU cache. Remote logging data, paging/swap files
  C. Paging/swap files, CPU cache, RAM, remote logging data
  D. CPU cache, RAM, paging/swap files, remote logging data
  D. CPU cache, RAM, paging/swap files, remote logging data

• Question 256:

  A security analyst is diagnosing an incident in which a system was compromised from an external IP address. The socket identified on the firewall was traced to 207.46.130.0:6666. Which of the following should the security analyst do to determine if the compromised system still has an active connection?

  A. tracert
  B. netstat
  C. ping
  D. nslookup
  B. netstat

• Question 257:

  A remote user (User1) is unable to reach a newly provisioned corporate windows workstation. The system administrator has been given the following log files from the VPN, corporate firewall and workstation host. Which of the following is preventing the remote user from being able to access the workstation?

  A. Network latency is causing remote desktop service request to time out
  B. User1 has been locked out due to too many failed passwords
  C. Lack of network time synchronization is causing authentication mismatches
  D. The workstation has been compromised and is accessing known malware sites
  E. The workstation host firewall is not allowing remote desktop connections
  B. User1 has been locked out due to too many failed passwords

• Question 258:

  Which of the following types of cloud infrastructures would allow several organizations with similar structures and interests to realize the benefits of shared storage and resources?

  A. Private
  B. Hybrid
  C. Public
  D. Community
  D. Community

• Question 259:

  A software developer wants to ensure that the application is verifying that a key is valid before establishing SSL connections with random remote hosts on the Internet. Which of the following should be used in the code? (Select TWO.)

  A. Escrowed keys
  B. SSL symmetric encryption key
  C. Software code private key
  D. Remote server public key
  E. OCSP
  C. Software code private key
  E. OCSP

• Question 260:

  Which of the following are MOST susceptible to birthday attacks?

  A. Hashed passwords
  B. Digital certificates
  C. Encryption passwords
  D. One time passwords
  A. Hashed passwords