1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 1011:

    The Chief Information Security Officer (CISO) at a large company tasks a security administrator to provide additional validation for website customers. Which of the following should the security administrator implement?

    A. HTTP

    B. DNSSEC

    C. 802.1X

    D. Captive portal

  • Question 1012:

    A company occupies the third floor of a leased building that has other tenants. The path from the demarcation point to the company's controlled space runs through unsecured areas managed by other companies. Which of the following could be used to protect the company's cabling as it passes through uncontrolled spaces?

    A. Plenum-rated cables

    B. Cable locks

    C. Conduits

    D. Bayonet Neill-Concelman

  • Question 1013:

    A systems administrator just issued the ssh-keygen -t rsa command on a Linux terminal. Which of the following BEST describes what the rsa portion of the command represents?

    A. A key generation algorithm

    B. A hashing algorithm

    C. A public key infrastructure type

    D. A certificate authority type

  • Question 1014:

    A technician is evaluating a security appliance solution. The company needs a system that continues to pass traffic if the system crashes. Which of the following appliance feature would BEST meet the company's needs?

    A. Fall closed.

    B. Fall Secure

    C. Fall Safe

    D. Fall open

  • Question 1015:

    A Chief Executive Officer (CEO) is staying at a hotel during a business trip. The hotel's wireless network does not show a lock symbol. Which of the following precautions should the CEO take? (Select TWO).

    A. Change the connection type to WPA2.

    B. Change TKIP to CCMR

    C. Use a VPN.

    D. Tether to a mobile phone.

    E. Create a tunnel connection with EAP-TTLS.

  • Question 1016:

    An administrator is setting up automated remote file transfers to another organization. The other organization has the following requirements for the connection protocol:

    Encryption in transit is required.

    Mutual authentication must be used.

    Certificate authentication must be used (no passwords).

    Which of the following should the administrator choose?

    A. SNMPv3

    B. SFTP

    C. TLS

    D. LDAPS

    E. SRTP

  • Question 1017:

    After deploying an antivirus solution on some network-isolated industrial computers, the service desk team received a trouble ticket about the following message being displayed on then computer's screen:

    Which of the following would be the SAFEST next step to address the issue?

    A. Immediately delete the detected file from the quarantine to secure the environment and clear the alert from the antivirus console

    B. Perform a manual antivirus signature update directly from the antivirus vendor's cloud

    C. Centrally activate a full scan for the entire set of industrial computers, looking for new threats

    D. Check the antivirus vendor's documentation about the security modules, incompatibilities, and software whitelisting.

  • Question 1018:

    Which of the following implements a lossy algorithm?

    A. Blowfish

    B. ROT13

    C. Diffie-Hellman

    D. SHA

  • Question 1019:

    A security analyst received an after-hours alert indicating that a large number of accounts with the suffix "admin'' were locked out. The accounts were all locked out after five unsuccessful login attempts, and no other accounts on the network triggered the same alert. Which of the following is the BEST explanation for these alerts?

    A. The standard naming convention makes administrator accounts easy to identify, and they were targeted for an attack.

    B. The administrator accounts do not have rigid password complexity rules, and this made them easier to crack.

    C. The company has implemented time-of-day restrictions, and this triggered a false positive alert when the administrators tried to log in

    D. The threshold for locking out administrator accounts is too high, and it should be changed from five to three to prevent unauthorized access attempts.

  • Question 1020:

    Which of the following BEST explains `likelihood of occurrence'?

    A. The chance that an event will happen regardless of how much damage it may cause

    B. The overall impact to the organization once all factors have been considered

    C. The potential for a system to have a weakness or aw that might be exploited

    D. The probability that a threat actor will target and attempt to exploit an organization's systems

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.