SY0-401 Exam Details

  • Exam Code
    :SY0-401
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1789 Q&As
  • Last Updated
    :Dec 14, 2021

CompTIA SY0-401 Online Questions & Answers

  • Question 281:

    A company has been attacked and their website has been altered to display false information. The security administrator disables the web server service before restoring the website from backup. An audit was performed on the server and no other data was altered. Which of the following should be performed after the server has been restored?

    A. Monitor all logs for the attacker's IP
    B. Block port 443 on the web server
    C. Install and configure SSL to be used on the web server
    D. Configure the web server to be in VLAN 0 across the network

  • Question 282:

    A company has just deployed a centralized event log storage system. Which of the following can be used to ensure the integrity of the logs after they are collected?

    A. Write-once drives
    B. Database encryption
    C. Continuous monitoring
    D. Role-based access controls

  • Question 283:

    An organization is moving its human resources system to a cloud services provider. The company plans to continue using internal usernames and passwords with the service provider, but the security manager does not want the service provider to have a company of the passwords. Which of the following options meets all of these requirements?

    A. Two-factor authentication
    B. Account and password synchronization
    C. Smartcards with PINS
    D. Federated authentication

  • Question 284:

    Users can authenticate to a company's web applications using their credentials from a popular social media site. Which of the following poses the greatest risk with this integration?

    A. Malicious users can exploit local corporate credentials with their social media credentials
    B. Changes to passwords on the social media site can be delayed from replicating to the company
    C. Data loss from the corporate servers can create legal liabilities with the social media site
    D. Password breaches to the social media site affect the company application as well

  • Question 285:

    A user has plugged in a wireless router from home with default configurations into a network jack at the office. This is known as: A. an evil twin.

    B. an IV attack.
    C. a rogue access point.
    D. an unauthorized entry point.

  • Question 286:

    Ann a new security specialist is attempting to access the internet using the company's open wireless network. The wireless network is not encrypted: however, once associated, ANN cannot access the internet or other company resources. In an attempt to troubleshoot, she scans the wireless network with NMAP, discovering the only other device on the wireless network is a firewall. Which of the following BEST describes the company's wireless network solution?

    A. The company uses VPN to authenticate and encrypt wireless connections and traffic
    B. The company's wireless access point is being spoofed
    C. The company's wireless network is unprotected and should be configured with WPA2
    D. The company is only using wireless for internet traffic so it does not need additional encryption

  • Question 287:

    Which of the following preventative controls would be appropriate for responding to a directive to reduce the attack surface of a specific host?

    A. Installing anti-malware
    B. Implementing an IDS
    C. Taking a baseline configuration
    D. Disabling unnecessary services

  • Question 288:

    A recent review of accounts on various systems has found that after employees' passwords are required to change they are recycling the same password as before. Which of the following policies should be enforced to prevent this from happening? (Select TWO).

    A. Reverse encryption
    B. Minimum password age
    C. Password complexity
    D. Account lockouts
    E. Password history
    F. Password expiration

  • Question 289:

    If Organization A trusts Organization B and Organization B trusts Organization C, then Organization A trusts Organization C. Which of the following PKI concepts is this describing?

    A. Transitive trust
    B. Public key trust
    C. Certificate authority trust
    D. Domain level trust

  • Question 290:

    Joe, the systems administrator, is setting up a wireless network for his team's laptops only and needs to prevent other employees from accessing it. Which of the following would BEST address this?

    A. Disable default SSID broadcasting.
    B. Use WPA instead of WEP encryption.
    C. Lower the access point's power settings.
    D. Implement MAC filtering on the access point.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-401 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.