CompTIA SY0-301 Online Practice Questions and Exam Preparation

CompTIA SY0-301 Online Questions & Answers

• Question 541:

  A major security risk with co-mingling of hosts with different security requirements is:

  A. Security policy violations.
  B. Zombie attacks.
  C. Password compromises.
  D. Privilege creep.
  A. Security policy violations.

• Question 542:

  Which of the following is characterized by an attacker attempting to map out an organization's staff hierarchy in order to send targeted emails?

  A. Whaling
  B. Impersonation
  C. Privilege escalation
  D. Spear phishing
  A. Whaling

• Question 543:

  Users report that they are unable to access network printing services. The security technician checks the router access list and sees that web, email, and secure shell are allowed. Which of the following is blocking network printing?

  A. Port security
  B. Flood guards
  C. Loop protection
  D. Implicit deny
  D. Implicit deny

• Question 544:

  A network administrator is configuring access control for the sales department which has high employee turnover. Which of the following is BEST suited when assigning user rights to individuals in the sales department?

  A. Time of day restrictions
  B. Group based privileges
  C. User assigned privileges
  D. Domain admin restrictions
  B. Group based privileges

• Question 545:

  Which of the following should an administrator implement to research current attack methodologies?

  A. Design reviews
  B. Honeypot
  C. Vulnerability scanner
  D. Code reviews
  B. Honeypot

• Question 546:

  Which of the following components of an all-in-one security appliance would MOST likely be configured in order to restrict access to peer-to-peer file sharing websites?

  A. Spam filter
  B. URL filter
  C. Content inspection
  D. Malware inspection
  B. URL filter

• Question 547:

  You have been tasked with designing a security plan for your company. Drag and drop the appropriate security controls on the floor plan-Instructions: All objects must be used and all place holders must be filled Order does not matter When you have completed the simulation, please select the Done button to submit.

  Select and Place:

  

  

• Question 548:

  An IT security technician is actively involved in identifying coding issues for her company. Which of the following is an application security technique that can be used to identify unknown weaknesses within the code?

  A. Vulnerability scanning
  B. Denial of service
  C. Fuzzing
  D. Port scanning
  C. Fuzzing

• Question 549:

  Matt, the network engineer, has been tasked with separating network traffic between virtual machines on a single hypervisor. Which of the following would he implement to BEST address this requirement? (Select TWO).

  A. Virtual switch
  B. NAT
  C. System partitioning
  D. Access-list
  E. Disable spanning tree
  F. VLAN
  A. Virtual switch
  F. VLAN

• Question 550:

  Pete, the security engineer, would like to prevent wireless attacks on his network. Pete has implemented a security control to limit the connecting MAC addresses to a single port. Which of the following wireless attacks would this address?

  A. Interference
  B. Man-in-the-middle
  C. ARP poisoning
  D. Rogue access point
  D. Rogue access point