SY0-401 Exam Details

  • Exam Code
    :SY0-401
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1789 Q&As
  • Last Updated
    :Dec 14, 2021

CompTIA SY0-401 Online Questions & Answers

  • Question 1641:

    Ann is concerned that the application her team is currently developing is vulnerable to unexpected user input that could lead to issues within the memory is affected in a detrimental manner leading to potential exploitation. Which of the following describes this application threat?

    A. Replay attack
    B. Zero-day exploit
    C. Distributed denial of service
    D. Buffer overflow

  • Question 1642:

    FTP/S uses which of the following TCP ports by default?

    A. 20 and 21
    B. 139 and 445
    C. 443 and 22
    D. 989 and 990

  • Question 1643:

    Which of the following is a penetration testing method?

    A. Searching the WHOIS database for administrator contact information
    B. Running a port scanner against the target's network
    C. War driving from a target's parking lot to footprint the wireless network
    D. Calling the target's helpdesk, requesting a password reset

  • Question 1644:

    Which of the following are examples of detective controls?

    A. Biometrics, motion sensors and mantraps.
    B. Audit, firewall, anti-virus and biometrics.
    C. Motion sensors, intruder alarm and audit.
    D. Intruder alarm, mantraps and firewall.

  • Question 1645:

    A small company can only afford to buy an all-in-one wireless router/switch. The company has 3 wireless BYOD users and 2 web servers without wireless access. Which of the following should the company configure to protect the servers from the user devices? (Select TWO).

    A. Deny incoming connections to the outside router interface.
    B. Change the default HTTP port
    C. Implement EAP-TLS to establish mutual authentication
    D. Disable the physical switch ports
    E. Create a server VLAN
    F. Create an ACL to access the server

  • Question 1646:

    Joe, a security administrator, believes that a network breach has occurred in the datacenter as a result of a misconfigured router access list, allowing outside access to an SSH server. Which of the following should Joe search for in the log files?

    A. Failed authentication attempts
    B. Network ping sweeps
    C. Host port scans
    D. Connections to port 22

  • Question 1647:

    Highly sensitive data is stored in a database and is accessed by an application on a DMZ server. The disk drives on all servers are fully encrypted. Communication between the application server and end-users is also encrypted. Network ACLs prevent any connections to the database server except from the application server. Which of the following can still result in exposure of the sensitive data in the database server?

    A. SQL Injection
    B. Theft of the physical database server
    C. Cookies
    D. Cross-site scripting

  • Question 1648:

    The system administrator is tasked with changing the administrator password across all 2000 computers in the organization. Which of the following should the system administrator implement to accomplish this task?

    A. A security group
    B. A group policy
    C. Key escrow
    D. Certificate revocation

  • Question 1649:

    Which of the following should Pete, a security manager, implement to reduce the risk of employees working in collusion to embezzle funds from their company?

    A. Privacy Policy
    B. Least Privilege
    C. Acceptable Use
    D. Mandatory Vacations

  • Question 1650:

    Joe, a user, in a coffee shop is checking his email over a wireless network. An attacker records the temporary credentials being passed to Joe's browser. The attacker later uses the credentials to impersonate Joe and creates SPAM messages. Which of the following attacks allows for this impersonation?

    A. XML injection
    B. Directory traversal
    C. Header manipulation
    D. Session hijacking

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-401 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.