CompTIA SY0-301 Online Practice Questions and Exam Preparation

CompTIA SY0-301 Online Questions & Answers

• Question 271:

  Which of the following services are used to support authentication services for several local devices from a central location without the use of tokens?

  A. TACACS+
  B. Smartcards
  C. Biometrics
  D. Kerberos
  A. TACACS+

• Question 272:

  Which of the following is the BEST method for ensuring all files and folders are encrypted on all corporate laptops where the file structures are unknown?

  A. Folder encryption
  B. File encryption
  C. Whole disk encryption
  D. Steganography
  C. Whole disk encryption

• Question 273:

  A security administrator suspects that an increase in the amount of TFTP traffic on the network is due to unauthorized file transfers, and wants to configure a firewall to block all TFTP traffic. Which of the following would accomplish this task?

  A. Deny TCP port 68
  B. Deny TCP port 69
  C. Deny UDP port 68
  D. Deny UDP port 69
  D. Deny UDP port 69

• Question 274:

  Which of the following should be performed to increase the availability of IP telephony by prioritizing traffic?

  A. Subnetting
  B. NAT
  C. Quality of service
  D. NAC
  C. Quality of service

• Question 275:

  Which of the following should the security administrator implement to limit web traffic based on country of origin? (Select THREE).

  A. Spam filter
  B. Load balancer
  C. Antivirus
  D. Proxies
  E. Firewall
  F. NIDS
  G. URL filtering
  D. Proxies
  E. Firewall
  G. URL filtering

• Question 276:

  Which of the following is an advantage of implementing individual file encryption on a hard drive which already deploys full disk encryption?

  A. Reduces processing overhead required to access the encrypted files
  B. Double encryption causes the individually encrypted files to partially lose their properties
  C. Individually encrypted files will remain encrypted when copied to external media
  D. File level access control only apply to individually encrypted files in a fully encrypted drive
  C. Individually encrypted files will remain encrypted when copied to external media

• Question 277:

  Which of the following is the BEST way to prevent Cross-Site Request Forgery (XSRF) attacks?

  A. Check the referrer field in the HTTP header
  B. Disable Flash content
  C. Use only cookies for authentication
  D. Use only HTTPS URLs
  A. Check the referrer field in the HTTP header

• Question 278:

  Joe, a security administrator, is concerned with users tailgating into the restricted areas. Given a limited budget, which of the following would BEST assist Joe with detecting this activity?

  A. Place a full-time guard at the entrance to confirm user identity.
  B. Install a camera and DVR at the entrance to monitor access.
  C. Revoke all proximity badge access to make users justify access.
  D. Install a motion detector near the entrance.
  B. Install a camera and DVR at the entrance to monitor access.

• Question 279:

  Jane has recently implemented a new network design at her organization and wishes to passively identify security issues with the new network. Which of the following should Jane perform?

  A. Vulnerability assessment
  B. Black box testing
  C. White box testing
  D. Penetration testing
  A. Vulnerability assessment

• Question 280:

  At an organization, unauthorized users have been accessing network resources via unused network wall jacks. Which of the following would be used to stop unauthorized access?

  A. Configure an access list.
  B. Configure spanning tree protocol.
  C. Configure port security.
  D. Configure loop protection.
  C. Configure port security.