CompTIA SY0-301 Online Practice Questions and Exam Preparation

CompTIA SY0-301 Online Questions & Answers

• Question 261:

  After Ann, a user, logs into her banking websites she has access to her financial institution mortgage, credit card, and brokerage websites as well. Which of the following is being described?

  A. Trusted OS
  B. Mandatory access control
  C. Separation of duties
  D. Single sign-on
  D. Single sign-on

• Question 262:

  One of the servers on the network stops responding due to lack of available memory. Server administrators did not have a clear definition of what action should have taken place based on the available memory. Which of the following would have BEST kept this incident from occurring?

  A. Set up a protocol analyzer
  B. Set up a performance baseline
  C. Review the systems monitor on a monthly basis
  D. Review the performance monitor on a monthly basis
  B. Set up a performance baseline

• Question 263:

  Jane, an administrator, needs to make sure the wireless network is not accessible from the parking area of their office. Which of the following would BEST help Jane when deploying a new access point?

  A. Placement of antenna
  B. Disabling the SSID
  C. Implementing WPA2
  D. Enabling the MAC filtering
  A. Placement of antenna

• Question 264:

  The Chief Information Officer (CIO) is concerned with moving an application to a SaaS cloud provider. Which of the following can be implemented to provide for data confidentiality assurance during and after the migration to the cloud?

  A. HPM technology
  B. Full disk encryption
  C. DLP policy
  D. TPM technology
  C. DLP policy

• Question 265:

  Without validating user input, an application becomes vulnerable to all of the following EXCEPT:

  A. Buffer overflow.
  B. Command injection.
  C. Spear phishing.
  D. SQL injection.
  C. Spear phishing.

• Question 266:

  An achievement in providing worldwide Internet security was the signing of certificates associated with which of the following protocols?

  A. TCP/IP
  B. SSL
  C. SCP
  D. SSH
  B. SSL

• Question 267:

  A company wants to ensure that all credentials for various systems are saved within a central database so that users only have to login once for access to all systems. Which of the following would accomplish this?

  A. Multi-factor authentication
  B. Smart card access
  C. Same Sign-On
  D. Single Sign-On
  D. Single Sign-On

• Question 268:

  After a recent security breach, the network administrator has been tasked to update and backup all router and switch configurations. The security administrator has been tasked to enforce stricter security policies. All users were forced to undergo additional user awareness training. All of these actions are due to which of the following types of risk mitigation strategies?

  A. Change management
  B. Implementing policies to prevent data loss
  C. User rights and permissions review
  D. Lessons learned
  D. Lessons learned

• Question 269:

  Which of the following practices reduces the management burden of access management?

  A. Password complexity policies
  B. User account audit
  C. Log analysis and review
  D. Group based privileges
  D. Group based privileges

• Question 270:

  The systems administrator notices that many employees are using passwords that can be easily guessed or are susceptible to brute force attacks. Which of the following would BEST mitigate this risk?

  A. Enforce password rules requiring complexity.
  B. Shorten the maximum life of account passwords.
  C. Increase the minimum password length.
  D. Enforce account lockout policies.
  A. Enforce password rules requiring complexity.