1. Home
  2. CompTIA
  3. SY0-301

CompTIA SY0-301 Online Practice Questions and Exam Preparation

SY0-301 Exam Details

  • Exam Code
    :SY0-301
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 12, 2021

CompTIA SY0-301 Online Questions & Answers

  • Question 501:

    Which of the following allows a network administrator to implement an access control policy based on individual user characteristics and NOT on job function?

    A. Attributes based
    B. Implicit deny
    C. Role based
    D. Rule based

  • Question 502:

    Mike, a network administrator, has been asked to passively monitor network traffic to the company's sales websites. Which of the following would be BEST suited for this task?

    A. HIDS
    B. Firewall
    C. NIPS
    D. Spam filter

  • Question 503:

    The systems administrator wishes to implement a hardware-based encryption method that could also be used to sign code. They can achieve this by:

    A. Utilizing the already present TPM.
    B. Configuring secure application sandboxes.
    C. Enforcing whole disk encryption.
    D. Moving data and applications into the cloud.

  • Question 504:

    Which of the following describes the purpose of an MOU?

    A. Define interoperability requirements
    B. Define data backup process
    C. Define onboard/offboard procedure
    D. Define responsibilities of each party

  • Question 505:

    A company determines a need for additional protection from rogue devices plugging into physical ports around the building. Which of the following provides the highest degree of protection from unauthorized wired network access?

    A. Intrusion Prevention Systems
    B. MAC filtering
    C. Flood guards
    D. 802.1x

  • Question 506:

    Requiring technicians to report spyware infections is a step in which of the following?

    A. Routine audits
    B. Change management
    C. Incident management
    D. Clean desk policy

  • Question 507:

    Which statement is TRUE about the operation of a packet sniffer?

    A. It can only have one interface on a management network.
    B. They are required for firewall operation and stateful inspection.
    C. The Ethernet card must be placed in promiscuous mode.
    D. It must be placed on a single virtual LAN interface.

  • Question 508:

    Which of the following describes the process of removing unnecessary accounts and services from an application to reduce risk exposure?

    A. Error and exception handling
    B. Application hardening
    C. Application patch management
    D. Cross-site script prevention

  • Question 509:

    Which of the following would be used as a secure substitute for Telnet?

    A. SSH
    B. SFTP
    C. SSL
    D. HTTPS

  • Question 510:

    After a network outage, a PC technician is unable to ping various network devices. The network administrator verifies that those devices are working properly and can be accessed securely. Which of the following is the MOST likely reason the PC technician is unable to ping those devices?

    A. ICMP is being blocked
    B. SSH is not enabled
    C. DNS settings are wrong
    D. SNMP is not configured properly

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-301 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.