1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 1151:

    Hacktivists are most commonly motivated by:

    A. curiosity

    B. notoriety

    C. financial gain

    D. political cause

  • Question 1152:

    A systems administrator is configuring a new network switch for TACACS+ management and authentication. Which of the following must be configured to provide authentication between the switch and the TACACS+ server?

    A. 802.1X

    B. SSH

    C. Shared secret

    D. SNMPv3

    E. CHAP

  • Question 1153:

    Joe, an employee, asks a coworker how long ago Ann started working at the help desk. The coworker expresses surprise since nobody named Ann works at the help desk. Joe mentions that Ann called several people in the customer service department to help reset their passwords over the phone due to unspecified "server issues".

    Which of the following has occurred?

    A. Social engineering

    B. Whaling

    C. Watering hole attack

    D. Password cracking

  • Question 1154:

    A company is executing a strategy to encrypt and sign all proprietary data in transit. The company recently deployed PKI services to support this strategy.

    Which of the following protocols supports the strategy and employs certificates generated by the PKI? (Choose three.)

    A. S/MIME

    B. TLS

    C. SFTP

    D. SAML

    E. SIP

    F. IPSec

    G. Kerberos

  • Question 1155:

    A security specialist is notified about a certificate warning that users receive when using a new internal website. After being given the URL from one of the users and seeing the warning, the security specialist inspects the certificate and realizes it has been issued to the IP address, which is how the developers reach the site.

    Which of the following would BEST resolve the issue?

    A. OSCP

    B. OID

    C. PEM

    D. SAN

  • Question 1156:

    A security administrator is creating a risk assessment with regard to how to harden internal communications in transit between servers. Which of the following should the administrator recommend in the report?

    A. Configure IPSec in transport mode.

    B. Configure server-based PKI certificates.

    C. Configure the GRE tunnel.

    D. Configure a site-to-site tunnel.

  • Question 1157:

    Which of the following strategies helps reduce risk if a rollback is needed when upgrading a critical system platform?

    A. Non-persistent configuration

    B. Continuous monitoring

    C. Firmware updates

    D. Fault tolerance

  • Question 1158:

    A company utilizes 802.11 for all client connectivity within a facility. Users in one part of the building are reporting they are unable to access company resources when connected to the company SSID.

    Which of the following should the security administrator use to assess connectivity?

    A. Sniffer

    B. Honeypot

    C. Routing tables

    D. Wireless scanner

  • Question 1159:

    After reports of slow internet connectivity, a technician reviews the following logs from a server's host-based firewall:

    Which of the following can the technician conclude after reviewing the above logs?

    A. The server is under a DDoS attack from multiple geographic locations.

    B. The server is compromised, and is attacking multiple hosts on the Internet.

    C. The server is under an IP spoofing resource exhaustion attack.

    D. The server is unable to complete the TCP three-way handshake and send the last ACK.

  • Question 1160:

    A security administrator wants to implement least privilege access for a network share that stores sensitive company dat.

    The organization is particularly concerned with the integrity of data and implementing

    White = A user can modify the content of an existing file and delete an existing file.

    Create = A user can create a new file and place data within the file.

    A missing control means the user does not have that access.

    Which of the following configurations provides the appropriate control to support the organization/s requirements?

    A. Owners: Read, Write, CreateGroup Members: Read, WriteOthers: Read, Create

    B. Owners: Read, CreateGroup Members: Read, Write, CreateOthers: Read

    C. Owners: Read, WriteGroup Members: Read, CreateOthers: Read, Create

    D. Owners: Write, CreateGroup Members: Read, CreateOthers: Read, Write, Create

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.