CompTIA SY0-301 Online Practice Questions and Exam Preparation

CompTIA SY0-301 Online Questions & Answers

• Question 371:

  Which of the following are Data Loss Prevention (DLP) strategies that address data in transit issues? (Select TWO).

  A. Scanning printing of documents.
  B. Scanning of outbound IM (Instance Messaging).
  C. Scanning copying of documents to USB.
  D. Scanning of SharePoint document library.
  E. Scanning of shared drives.
  F. Scanning of HTTP user traffic.
  B. Scanning of outbound IM (Instance Messaging).
  F. Scanning of HTTP user traffic.

• Question 372:

  Which of the following would a security administrator use to verify the integrity of a file?

  A. Time stamp
  B. MAC times
  C. File descriptor
  D. Hash
  D. Hash

• Question 373:

  A system security analyst using an enterprise monitoring tool notices an unknown internal host exfiltrating files to several foreign IP addresses. Which of the following would be an appropriate mitigation technique?

  A. Disabling unnecessary accounts
  B. Rogue machine detection
  C. Encrypting sensitive files
  D. Implementing antivirus
  B. Rogue machine detection

• Question 374:

  Which of the following assessment techniques would a security administrator implement to ensure that systems and software are developed properly?

  A. Baseline reporting
  B. Input validation
  C. Determine attack surface
  D. Design reviews
  D. Design reviews

• Question 375:

  Jane, an IT security technician, needs to create a way to secure company mobile devices. Which of the following BEST meets this need?

  A. Implement voice encryption, pop-up blockers, and host-based firewalls.
  B. Implement firewalls, network access control, and strong passwords.
  C. Implement screen locks, device encryption, and remote wipe capabilities.
  D. Implement application patch management, antivirus, and locking cabinets.
  C. Implement screen locks, device encryption, and remote wipe capabilities.

• Question 376:

  Which of the following is characterized by an attack against a mobile device?

  A. Evil twin
  B. Header manipulation
  C. Blue jacking
  D. Rogue AP
  C. Blue jacking

• Question 377:

  Encryption of data at rest is important for sensitive information because of which of the following?

  A. Facilitates tier 2 support, by preventing users from changing the OS
  B. Renders the recovery of data harder in the event of user password loss
  C. Allows the remote removal of data following eDiscovery requests
  D. Prevents data from being accessed following theft of physical equipment
  D. Prevents data from being accessed following theft of physical equipment

• Question 378:

  In order for Sara, a client, to logon to her desktop computer, she must provide her username, password, and a four digit PIN. Which of the following authentication methods is Sara using?

  A. Three factor
  B. Single factor
  C. Two factor
  D. Four factor
  B. Single factor

• Question 379:

  Which of the following is BEST used to break a group of IP addresses into smaller network segments or blocks?

  A. NAT
  B. Virtualization
  C. NAC
  D. Subnetting
  D. Subnetting

• Question 380:

  A malicious user is sniffing a busy encrypted wireless network waiting for an authorized client to connect to it. Only after an authorized client has connected and the hacker was able to capture the client handshake with the AP can the hacker begin a brute force attack to discover the encryption key. Which of the following attacks is taking place?

  A. IV attack
  B. WEP cracking
  C. WPA cracking
  D. Rogue AP
  C. WPA cracking