SY0-301 Exam Details

  • Exam Code
    :SY0-301
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :820 Q&As
  • Last Updated
    :Dec 12, 2021

CompTIA SY0-301 Online Questions & Answers

  • Question 801:

    A security administrator has configured FTP in passive mode. Which of the following ports should the security administrator allow on the firewall by default?

    A. 20
    B. 21
    C. 22
    D. 23

  • Question 802:

    A Chief Information Security Officer (CISO) wants to implement two-factor authentication within the company. Which of the following would fulfill the CISO's requirements?

    A. Username and password
    B. Retina scan and fingerprint scan
    C. USB token and PIN
    D. Proximity badge and token

  • Question 803:

    In order to maintain oversight of a third party service provider, the company is going to implement a Governance, Risk, and Compliance (GRC) system. This system is promising to provide overall security posture coverage. Which of the following is the MOST important activity that should be considered?

    A. Continuous security monitoring
    B. Baseline configuration and host hardening
    C. Service Level Agreement (SLA) monitoring
    D. Security alerting and trending

  • Question 804:

    Ann, the software security engineer, works for a major software vendor. Which of the following practices should be implemented to help prevent race conditions, buffer overflows, and other similar vulnerabilities prior to each production release?

    A. Product baseline report
    B. Input validation
    C. Patch regression testing
    D. Code review

  • Question 805:

    Matt, the IT Manager, wants to create a new network available to virtual servers on the same hypervisor, and does not want this network to be routable to the firewall. How could this BEST be accomplished?

    A. Create a VLAN without a default gateway.
    B. Remove the network from the routing table.
    C. Create a virtual switch.
    D. Commission a stand-alone switch.

  • Question 806:

    Certificates are used for: (Select TWO).

    A. Client authentication.
    B. WEP encryption.
    C. Access control lists.
    D. Code signing.
    E. Password hashing.

  • Question 807:

    Which of the following describes purposefully injecting extra input during testing, possibly causing an application to crash?

    A. Input validation
    B. Exception handling
    C. Application hardening
    D. Fuzzing

  • Question 808:

    Pete, the system administrator, wants to restrict access to advertisements, games, and gambling web sites. Which of the following devices would BEST achieve this goal?

    A. Firewall
    B. Switch
    C. URL content filter
    D. Spam filter

  • Question 809:

    Which of the following is where an unauthorized device is found allowing access to a network?

    A. Bluesnarfing
    B. Rogue access point
    C. Honeypot
    D. IV attack

  • Question 810:

    A compromised workstation utilized in a Distributed Denial of Service (DDOS) attack has been removed from the network and an image of the hard drive has been created. However, the system administrator stated that the system was left unattended for several hours before the image was created. In the event of a court case, which of the following is likely to be an issue with this incident?

    A. Eye Witness
    B. Data Analysis of the hard drive
    C. Chain of custody
    D. Expert Witness

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-301 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.