CompTIA SY0-301 Online Practice Questions and Exam Preparation

CompTIA SY0-301 Online Questions & Answers

• Question 451:

  An auditor is given access to a conference room to conduct an analysis. When they connect their laptop's Ethernet cable into the wall jack, they are not able to get a connection to the Internet but have a link light. Which of the following is MOST likely causing this issue?

  A. Ethernet cable is damaged
  B. The host firewall is set to disallow outbound connections
  C. Network Access Control
  D. The switch port is administratively shutdown
  C. Network Access Control

• Question 452:

  Ann, a security administrator, wishes to replace their RADIUS authentication with a more secure protocol, which can utilize EAP. Which of the following would BEST fit her objective?

  A. CHAP
  B. SAML
  C. Kerberos
  D. Diameter
  D. Diameter

• Question 453:

  A company's employees were victims of a spear phishing campaign impersonating the CEO. The company would now like to implement a solution to improve the overall security posture by assuring their employees that email originated from the CEO. Which of the following controls could they implement to BEST meet this goal?

  A. Spam filter
  B. Digital signatures
  C. Antivirus software
  D. Digital certificates
  B. Digital signatures

• Question 454:

  Which of the following can hide confidential or malicious data in the whitespace of other files (e.g. JPEGs)?

  A. Hashing
  B. Transport encryption
  C. Digital signatures
  D. Steganography
  D. Steganography

• Question 455:

  Concurrent use of a firewall, content filtering, antivirus software and an IDS system would be considered components of:

  A. Redundant systems.
  B. Separation of duties.
  C. Layered security.
  D. Application control.
  C. Layered security.

• Question 456:

  Which of the following are examples of network segmentation? (Select TWO).

  A. IDS
  B. IaaS
  C. DMZ
  D. Subnet
  E. IPS
  C. DMZ
  D. Subnet

• Question 457:

  Which of the following disaster recovery strategies has the highest cost and shortest recovery time?

  A. Warm site
  B. Hot site
  C. Cold site
  D. Co-location site
  B. Hot site

• Question 458:

  The security administrator has installed a new firewall which implements an implicit DENY policy by default Click on the firewall and configure it to allow ONLY the following communication.

  1.

  The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.

  2.

  The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port

  3.

  The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.

  Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.

  

  Hot Area:

  

  

• Question 459:

  To help prevent unauthorized access to PCs, a security administrator implements screen savers that lock the PC after five minutes of inactivity. Which of the following controls is being described in this situation?

  A. Management
  B. Administrative
  C. Technical
  D. Operational
  C. Technical

• Question 460:

  A security administrator notices that a specific network administrator is making unauthorized changes to the firewall every Saturday morning. Which of the following would be used to mitigate this issue so that only security administrators can make changes to the firewall?

  A. Mandatory vacations
  B. Job rotation
  C. Least privilege
  D. Time of day restrictions
  C. Least privilege