SY0-401 Exam Details

  • Exam Code
    :SY0-401
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1789 Q&As
  • Last Updated
    :Dec 14, 2021

CompTIA SY0-401 Online Questions & Answers

  • Question 1601:

    Which of the following is an indication of an ongoing current problem?

    A. Alert
    B. Trend
    C. Alarm
    D. Trap

  • Question 1602:

    Which of the following BEST describes a demilitarized zone?

    A. A buffer zone between protected and unprotected networks.
    B. A network where all servers exist and are monitored.
    C. A sterile, isolated network segment with access lists.
    D. A private network that is protected by a firewall and a VLAN.

  • Question 1603:

    Acme Corp has selectively outsourced proprietary business processes to ABC Services. Due to some technical issues, ABC services wants to send some of Acme Corp's debug data to a third party vendor for problem resolution. Which of the following MUST be considered prior to sending data to a third party?

    A. The data should be encrypted prior to transport
    B. This would not constitute unauthorized data sharing
    C. This may violate data ownership and non-disclosure agreements
    D. Acme Corp should send the data to ABC Services' vendor instead

  • Question 1604:

    A company determines a need for additional protection from rogue devices plugging into physical ports around the building. Which of the following provides the highest degree of protection from unauthorized wired network access?

    A. Intrusion Prevention Systems
    B. MAC filtering
    C. Flood guards
    D. 802.1x

  • Question 1605:

    Who should be contacted FIRST in the event of a security breach?

    A. Forensics analysis team
    B. Internal auditors
    C. Incident response team
    D. Software vendors

  • Question 1606:

    An administrator has a network subnet dedicated to a group of users. Due to concerns regarding data and network security, the administrator desires to provide network access for this group only. Which of the following would BEST address this desire?

    A. Install a proxy server between the users' computers and the switch to filter inbound network traffic.
    B. Block commonly used ports and forward them to higher and unused port numbers.
    C. Configure the switch to allow only traffic from computers based upon their physical address.
    D. Install host-based intrusion detection software to monitor incoming DHCP Discover requests.

  • Question 1607:

    Users have been reporting that their wireless access point is not functioning. They state that it allows slow connections to the internet, but does not provide access to the internal network. The user provides the SSID and the technician logs into the company's access point and finds no issues. Which of the following should the technician do?

    A. Change the access point from WPA2 to WEP to determine if the encryption is too strong
    B. Clear all access logs from the AP to provide an up-to-date access list of connected users
    C. Check the MAC address of the AP to which the users are connecting to determine if it is an imposter
    D. Reconfigure the access point so that it is blocking all inbound and outbound traffic as a troubleshooting gap

  • Question 1608:

    The security administrator generates a key pair and sends one key inside a rest file to a third party. The third party sends back a signed file. In this scenario, the file sent by the administrator is a:

    A. CA
    B. CRL
    C. KEK
    D. PKI
    E. CSR

  • Question 1609:

    Which of the following can be mitigated with proper secure coding techniques?

    A. Input validation
    B. Error handling
    C. Header manipulation
    D. Cross-site scripting

  • Question 1610:

    A security administrator suspects that an increase in the amount of TFTP traffic on the network is due to unauthorized file transfers, and wants to configure a firewall to block all TFTP traffic.

    Which of the following would accomplish this task?

    A. Deny TCP port 68
    B. Deny TCP port 69
    C. Deny UDP port 68
    D. Deny UDP port 69

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-401 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.