CompTIA RC0-501 Online Practice Questions and Exam Preparation

CompTIA RC0-501 Online Questions & Answers

• Question 261:

  For each of the given items, select the appropriate authentication category from the drop down choices. Select the appropriate authentication type for the following items:

  Hot Area:

  

  

  ---

  Biometrics refers to a collection of physical attributes of the human body that can be used as identification or an authentication factor. Fingerprints and retinas are physical attributes of the human body.

  Two types of tokens exist, Time-based one-time password (TOTP) tokens and HMACbased one-time password (HOTP). TOTP tokens generate passwords at fixed time intervals, whereas HOTP tokens generate passwords not based on fixed

  time intervals but instead based on a non-repeating one-way function, such as a hash or HMAC operation.

  Smart cards can have Multi-factor and proximity authentication embedded into it.

  PAP allows for two entities to share a password in advance and use the password as the basis of authentication. The same goes for PIN numbers.

  References:

  Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 282, 285

  http://en.wikipedia.org/wiki/Password_authentication_protocol#Working_cycle

  http://en.wikipedia.org/wiki/Smart_card#Security

• Question 262:

  An administrator is testing the collision resistance of different hashing algorithms. Which of the following is the strongest collision resistance test?

  A. Find two identical messages with different hashes
  B. Find two identical messages with the same hash
  C. Find a common has between two specific messages
  D. Find a common hash between a specific message and a random message
  A. Find two identical messages with different hashes

• Question 263:

  Joe, a user, wants to send Ann, another user, a confidential document electronically. Which of the following should Joe do to ensure the document is protected from eavesdropping?

  A. Encrypt it with Joe's private key
  B. Encrypt it with Joe's public key
  C. Encrypt it with Ann's private key
  D. Encrypt it with Ann's public key
  D. Encrypt it with Ann's public key

• Question 264:

  A software development company needs to share information between two remote servers, using encryption to protect it. A programmer suggests developing a new encryption protocol, arguing that using an unknown protocol with secure, existing cryptographic algorithm libraries will provide strong encryption without being susceptible to attacks on other known protocols. Which of the following summarizes the BEST response to the programmer's proposal?

  A. The newly developed protocol will only be as secure as the underlying cryptographic algorithms used.
  B. New protocols often introduce unexpected vulnerabilities, even when developed with otherwise secure and tested algorithm libraries.
  C. A programmer should have specialized training in protocol development before attempting to design a new encryption protocol.
  D. The obscurity value of unproven protocols against attacks often outweighs the potential for introducing new vulnerabilities.
  B. New protocols often introduce unexpected vulnerabilities, even when developed with otherwise secure and tested algorithm libraries.

• Question 265:

  A network administrator wants to ensure that users do not connect any unauthorized devices to the company network. Each desk needs to connect a VoIP phone and computer. Which of the following is the BEST way to accomplish this?

  A. Enforce authentication for network devices
  B. Configure the phones on one VLAN, and computers on another
  C. Enable and configure port channels
  D. Make users sign an Acceptable use Agreement
  A. Enforce authentication for network devices

• Question 266:

  Which of the following allows an application to securely authenticate a user by receiving credentials from a web domain?

  A. TACACS+
  B. RADIUS
  C. Kerberos
  D. SAML
  D. SAML

• Question 267:

  The help desk is receiving numerous password change alerts from users in the accounting department. These alerts occur multiple times on the same day for each of the affected users' accounts. Which of the following controls should be implemented to curtail this activity?

  A. Password Reuse
  B. Password complexity
  C. Password History
  D. Password Minimum age
  D. Password Minimum age

• Question 268:

  Which of the following best describes routine in which semicolons, dashes, quotes, and commas are removed from a string?

  A. Error handling to protect against program explogtation
  B. Exception handling to protect against XSRF attacks.
  C. Input validation to protect against SQL injection.
  D. Padding to protect against string buffer overflows.
  C. Input validation to protect against SQL injection.

• Question 269:

  Which of the following network vulnerability scan indicators BEST validates a successful, active scan?

  A. The scan job is scheduled to run during off-peak hours.
  B. The scan output lists SQL injection attack vectors.
  C. The scan data identifies the use of privileged-user credentials.
  D. The scan results identify the hostname and IP address.
  D. The scan results identify the hostname and IP address.

• Question 270:

  

  Correct Answer. Check the answer below:
  Check the answer below:

  ---

  Use the following answer for this simulation task:

  Source IP

  Destination IP

  Port number

  TCP/UDP

  Allow/Deny

  10.4.255.10/24

  10.4.255.101

  443

  TCP

  Allow

  10.4.255.10/23

  10.4.255.2

  22

  TCP

  Allow

  10.4.255.10/25

  10.4.255.101

  Any

  Any

  Allow

  10.4.255.10/25

  10.4.255.102

  Any

  Any

  Allow

  Firewall rules act like ACLs, and they are used to dictate what traffic can pass between the firewall and the internal network. Three possible actions can be taken based on the rule's criteria:

  Block the connection

  Allow the connection

  Allow the connection only if it is secured

  TCP is responsible for providing a reliable, one-to-one, connection-oriented session. TCP establishes a connection and ensures that the other end receives any packets sent. Two hosts communicate packet results with each other. TCP also

  ensures that packets are decoded and sequenced properly. This connection is persistent during the session. When the session ends, the connection is torn down.

  UDP provides an unreliable connectionless communication method between hosts. UDP is considered a best-effort protocol, but it's considerably faster than TCP. The sessions don't establish a synchronized session like the kind used in TCP,

  and UDP doesn't guarantee error-free communications. The primary purpose of UDP is to send small packets of information. The application is responsible for acknowledging the correct reception of the data.

  Port 22 is used by both SSH and SCP with UDP.

  Port 443 is used for secure web connections