1. Home
  2. CompTIA
  3. SY0-301

CompTIA SY0-301 Online Practice Questions and Exam Preparation

SY0-301 Exam Details

  • Exam Code
    :SY0-301
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 12, 2021

CompTIA SY0-301 Online Questions & Answers

  • Question 621:

    A software firm posts patches and updates to a publicly accessible FTP site. The software firm also posts digitally signed checksums of all patches and updates. The firm does this to address:

    A. Integrity of downloaded software.
    B. Availability of the FTP site.
    C. Confidentiality of downloaded software.
    D. Integrity of the server logs.

  • Question 622:

    Which of the following would satisfy wireless network implementation requirements to use mutual authentication and usernames and passwords?

    A. EAP-MD5
    B. WEP
    C. PEAP-MSCHAPv2
    D. EAP-TLS

  • Question 623:

    A company's business model was changed to provide more web presence and now its ERM software is no longer able to support the security needs of the company. The current data center will continue to provide network and security services. Which of the following network elements would be used to support the new business model?

    A. Software as a Service
    B. DMZ
    C. Remote access support
    D. Infrastructure as a Service

  • Question 624:

    A server administrator notes that a legacy application often stops running due to a memory error. When reviewing the debugging logs, they notice code being run calling an internal process to exploit the machine. Which of the following attacks does this describe?

    A. Zero-day
    B. Buffer overflow
    C. Cross site scripting
    D. Malicious add-on

  • Question 625:

    A security administrator wants to test the reliability of an application which accepts user provided parameters. The administrator is concerned with data integrity and availability. Which of the following should be implemented to accomplish this task?

    A. Secure coding
    B. Fuzzing
    C. Exception handling
    D. Input validation

  • Question 626:

    Which of the following MUST be updated immediately when an employee is terminated to prevent unauthorized access?

    A. Registration
    B. CA
    C. CRL
    D. Recovery agent

  • Question 627:

    Joe, a user, in a coffee shop is checking his email over a wireless network. An attacker records the temporary credentials being passed to Joe's browser. The attacker later uses the credentials to impersonate Joe and creates SPAM messages. Which of the following attacks allows for this impersonation?

    A. XML injection
    B. Directory traversal
    C. Header manipulation
    D. Session hijacking

  • Question 628:

    Which of the following should be done before resetting a user's password due to expiration?

    A. Verify the user's domain membership.
    B. Verify the user's identity.
    C. Advise the user of new policies.
    D. Verify the proper group membership.

  • Question 629:

    The use of social networking sites introduces the risk of:

    A. Disclosure of proprietary information.
    B. Data classification issues.
    C. Data availability issues.
    D. Broken chain of custody.

  • Question 630:

    Which of the following firewall types inspects Ethernet traffic at the MOST levels of the OSI model?

    A. Packet Filter Firewall
    B. Stateful Firewall
    C. Proxy Firewall
    D. Application Firewall

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-301 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.