CompTIA SY0-301 Online Practice Questions and Exam Preparation

CompTIA SY0-301 Online Questions & Answers

• Question 311:

  A security administrator wants to ensure that the message the administrator sends out to their Chief Financial Officer (CFO) does not get changed in route. Which of the following is the administrator MOST concerned with?

  A. Data confidentiality
  B. High availability
  C. Data integrity
  D. Business continuity
  C. Data integrity

• Question 312:

  During a routine audit a web server is flagged for allowing the use of weak ciphers. Which of the following should be disabled to mitigate this risk? (Select TWO).

  A. SSL 1.0
  B. RC4
  C. SSL 3.0
  D. AES
  E. DES
  F. TLS 1.0
  A. SSL 1.0
  E. DES

• Question 313:

  Which of the following is an example of a false negative?

  A. The IDS does not identify a buffer overflow.
  B. Anti-virus identifies a benign application as malware.
  C. Anti-virus protection interferes with the normal operation of an application.
  D. A user account is locked out after the user mistypes the password too many times.
  A. The IDS does not identify a buffer overflow.

• Question 314:

  Elastic cloud computing environments often reuse the same physical hardware for multiple customers over time as virtual machines are instantiated and deleted. This has important implications for which of the following data security concerns?

  A. Hardware integrity
  B. Data confidentiality
  C. Availability of servers
  D. Integrity of data
  B. Data confidentiality

• Question 315:

  After viewing wireless traffic, an attacker notices the following networks are being broadcasted by local access points:

  Corpnet

  Coffeeshop

  FreePublicWifi

  Using this information the attacker spoofs a response to make nearby laptops connect back to a malicious device.

  Which of the following has the attacker created?

  A. Infrastructure as a Service
  B. Load balancer
  C. Evil twin
  D. Virtualized network
  C. Evil twin

• Question 316:

  The security department has implemented a new laptop encryption product in the environment. The product requires one user name and password at the time of boot up and also another password after the operating system has finished loading. This setup is using which of the following authentication types?

  A. Two-factor authentication
  B. Single sign-on
  C. Multifactor authentication
  D. Single factor authentication
  D. Single factor authentication

• Question 317:

  Which of the following should be considered to mitigate data theft when using CAT5 wiring?

  A. CCTV
  B. Environmental monitoring
  C. Multimode fiber
  D. EMI shielding
  D. EMI shielding

• Question 318:

  A security administrator wishes to increase the security of the wireless network. Which of the following BEST addresses this concern?

  A. Change the encryption from TKIP-based to CCMP-based.
  B. Set all nearby access points to operate on the same channel.
  C. Configure the access point to use WEP instead of WPA2.
  D. Enable all access points to broadcast their SSIDs.
  A. Change the encryption from TKIP-based to CCMP-based.

• Question 319:

  ABC company has a lot of contractors working for them. The provisioning team does not always get notified that a contractor has left the company. Which of the following policies would prevent contractors from having access to systems in the event a contractor has left?

  A. Annual account review
  B. Account expiration policy
  C. Account lockout policy
  D. Account disablement
  B. Account expiration policy

• Question 320:

  Which of the following concepts allows an organization to group large numbers of servers together in order to deliver a common service?

  A. Clustering
  B. RAID
  C. Backup Redundancy
  D. Cold site
  A. Clustering