1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 991:

    Malware that changes its binary pattern on specific dates at specific times to avoid detection is known as a (n):

    A. armored virus
    B. logic bomb
    C. polymorphic virus
    D. Trojan

  • Question 992:

    The phones at a business are being replaced with VoIP phones that get plugged in-line between the switch and PC The voice and data networks still need to be kept separate. Which of the following would allow for this?

    A. NAT
    B. Intranet
    C. Subnetting
    D. VLAN

  • Question 993:

    A systems administrator needs to configure an SSL remote access VPN according to the following organizational guidelines:

    The VPN must support encryption of header and payload.

    The VPN must route all traffic through the company's gateway.

    Which of the following should be configured on the VPN concentrator?

    A. Full tunnel
    B. Transport mode
    C. Tunnel mode
    D. IPSec

  • Question 994:

    An organization plans to transition the intrusion detection and prevention techniques on a critical subnet to an anomaly-based system. Which of the following does the organization need to determine for this to be successful?

    A. The baseline
    B. The endpoint configurations
    C. The adversary behavior profiles
    D. The IPS signatures

  • Question 995:

    A company wants to deploy PKI on its Internet-facing website. The applications that are currently deployed are:

    1.

    www company com (mam website)

    2.

    contactus company com (for locating a nearby location)

    3.

    quotes company com (for requesting a price quote)

    The company wants to purchase one SSL certificate that will work for all the existing applications and any future applications that follow the same naming conventions, such as store company com. Which of the following certificate types would BEST meet the requirements?

    A. SAN
    B. Wildcard
    C. Extended validation
    D. Self-signed

  • Question 996:

    Which of the following is an algorithm family that was developed for use cases in which power consumption and lower computing power are constraints?

    A. Elliptic curve
    B. RSA
    C. Diffie-Hellman
    D. SHA

  • Question 997:

    An attachment that was emailed to finance employees contained an embedded message. The security administrator investigates and finds the intent was to conceal the embedded information from public view. Which of the following BEST describes this type of message?

    A. Obfuscation
    B. Stenography
    C. Diffusion
    D. BCRYPT

  • Question 998:

    During a lessons learned meeting regarding a previous incident, the security team receives a follow- up action item with the following requirements:

    Allow authentication from within the United States anytime Allow authentication if the user is accessing email or a shared file system Do not allow authentication if the AV program is two days out of date

    Do not allow authentication if the location of the device is in two specific countries Given the requirements, which of the following mobile deployment authentication types is being utilized?

    A. Geofencing authentication
    B. Two-factor authentication
    C. Context-aware authentication
    D. Biometric authentication

  • Question 999:

    A security analyst is asked to check the configuration of the company's DNS service on the server. Which of the following command line tools should the analyst use to perform the Initial assessment?

    A. nslookup/dlg
    B. traced
    C. ipconfig/ifconfig
    D. tcpdump

  • Question 1000:

    A technician has installed a new AAA server, which will be used by the network team to control access to a company's routers and switches. The technician completes the configuration by adding the network team members to the NETWORK_TEAM group, and then adding the NETWORK_TEAM group to the appropriate ALLOW_ACCESS access list. Only members of the network team should have access to the company's routers and switches.

    Members of the network team successfully test their ability to log on to various network devices configured to use the AAA server. Weeks later, an auditor asks to review the following access log sample:

    Which of the following should the auditor recommend based on the above information?

    A. Configure the ALLOW_ACCESS group logic to use AND rather than OR.
    B. Move the NETWORK_TEAM group to the top of the ALLOW_ACCESS access list.
    C. Disable groups nesting for the ALLOW_ACCESS group in the AAA server.
    D. Remove the DOMAIN_USERS group from ALLOW_ACCESS group.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.