CompTIA SY0-301 Online Practice Questions and Exam Preparation

CompTIA SY0-301 Online Questions & Answers

• Question 701:

  The IT department has setup a share point site to be used on the intranet. Security has established the groups and permissions on the site. No one may modify the permissions and all requests for access are centrally managed by the security team. This is an example of which of the following control types?

  A. Rule based access control
  B. Mandatory access control
  C. User assigned privilege
  D. Discretionary access control
  B. Mandatory access control

• Question 702:

  Which of the following protocols encapsulates an IP packet with an additional IP header?

  A. SFTP
  B. IPSec
  C. HTTPS
  D. SSL
  B. IPSec

• Question 703:

  Which of the following provides dedicated hardware-based cryptographic functions to an operating system and its applications running on laptops and desktops?

  A. TPM
  B. HSM
  C. CPU
  D. FPU
  A. TPM

• Question 704:

  Sara, the Chief Security Officer (CSO), has had four security breaches during the past two years. Each breach has cost the company $3,000. A third party vendor has offered to repair the security hole in the system for $25,000. The breached system is scheduled to be replaced in five years. Which of the following should Sara do to address the risk?

  A. Accept the risk saving $10,000.
  B. Ignore the risk saving $5,000.
  C. Mitigate the risk saving $10,000.
  D. Transfer the risk saving $5,000.
  D. Transfer the risk saving $5,000.

• Question 705:

  Which of the following can Pete, a security administrator, use to distribute the processing effort when generating hashes for a password cracking program?

  A. RAID
  B. Clustering
  C. Redundancy
  D. Virtualization
  B. Clustering

• Question 706:

  Which of the following BEST describes a protective countermeasure for SQL injection?

  A. Eliminating cross-site scripting vulnerabilities
  B. Installing an IDS to monitor network traffic
  C. Validating user input in web applications
  D. Placing a firewall between the Internet and database servers
  C. Validating user input in web applications

• Question 707:

  Purchasing receives an automated phone call from a bank asking to input and verify credit card information. The phone number displayed on the caller ID matches the bank. Which of the following attack types is this?

  A. Hoax
  B. Phishing
  C. Vishing
  D. Whaling
  C. Vishing

• Question 708:

  A security administrator needs to update the OS on all the switches in the company. Which of the following MUST be done before any actual switch configuration is performed?

  A. The request needs to be sent to the incident management team.
  B. The request needs to be approved through the incident management process.
  C. The request needs to be approved through the change management process.
  D. The request needs to be sent to the change management team.
  C. The request needs to be approved through the change management process.

• Question 709:

  A router has a single Ethernet connection to a switch. In the router configuration, the Ethernet interface has three sub-interfaces, each configured with ACLs applied to them and 802.1q trunks. Which of the following is MOST likely the reason for the sub-interfaces?

  A. The network uses the subnet of 255.255.255.128.
  B. The switch has several VLANs configured on it.
  C. The sub-interfaces are configured for VoIP traffic.
  D. The sub-interfaces each implement quality of service.
  B. The switch has several VLANs configured on it.

• Question 710:

  Which of the following security concepts identifies input variables which are then used to perform boundary testing?

  A. Application baseline
  B. Application hardening
  C. Secure coding
  D. Fuzzing
  D. Fuzzing