CompTIA SY0-501 Online Practice Questions and Exam Preparation

CompTIA SY0-501 Online Questions & Answers

• Question 361:

  Which of the following is a random value appended to a credential that makes the credential less susceptible to compromise when hashed?

  A. Nonce
  B. Salt
  C. OTP
  D. Block cipher
  E. IV
  B. Salt

• Question 362:

  A manager wants to distribute a report to several other managers within the company. Some of them reside in remote locations that are not connected to the domain but have a local server. Because there is sensitive data within the report and the size of the report is beyond the limit of the email attachment size, emailing the report is not an option.

  Which of the following protocols should be implemented to distribute the report securely? (Select three.)

  A. S/MIME
  B. SSH
  C. SNMPv3
  D. FTPS
  E. SRTP
  F. HTTPS
  G. LDAPS
  B. SSH
  D. FTPS
  F. HTTPS

• Question 363:

  A network technician is setting up a segmented network that will utilize a separate ISP to provide wireless access to the public area for a company. Which of the following wireless security methods should the technician implement to provide basic accountability for access to the public network?

  A. Pre-shared key
  B. Enterprise
  C. Wi-Fi Protected setup
  D. Captive portal
  D. Captive portal

• Question 364:

  A security administrator determined that users within the company are installing unapproved software. Company policy dictates that only certain applications may be installed or ran on the user's computers without exception. Which of the following should the administrator do to prevent all unapproved software from running on the user's computer?

  A. Deploy antivirus software and configure it to detect and remove pirated software
  B. Configure the firewall to prevent the downloading of executable files
  C. Create an application whitelist and use OS controls to enforce it
  D. Prevent users from running as administrator so they cannot install software.
  C. Create an application whitelist and use OS controls to enforce it

• Question 365:

  Which of the following is the MOST likely motivation for a script kiddie threat actor?

  A. Financial gain
  B. Notoriety
  C. Political expression
  D. Corporate espionage
  B. Notoriety

• Question 366:

  

  

  Correct Answer. Check the answer below
  Check the answer below

  ---

  Use the following answer for this simulation task:

  Source IP

  Destination IP

  Port number

  TCP/UDP

  Allow/Deny

  10.4.255.10/24

  10.4.255.101

  443

  TCP

  Allow

  10.4.255.10/23

  10.4.255.2

  22

  TCP

  Allow

  10.4.255.10/25

  10.4.255.101

  Any

  Any

  Allow

  10.4.255.10/25

  10.4.255.102

  Any

  Any

  Allow

  Firewall rules act like ACLs, and they are used to dictate what traffic can pass between the firewall and the internal network. Three possible actions can be taken based on the rule's criteria:

  Block the connection

  Allow the connection

  Allow the connection only if it is secured

  TCP is responsible for providing a reliable, one-to-one, connection-oriented session. TCP establishes a connection and ensures that the other end receives any packets sent. Two hosts communicate packet results with each other. TCP also

  ensures that packets are decoded and sequenced properly. This connection is persistent during the session. When the session ends, the connection is torn down.

  UDP provides an unreliable connectionless communication method between hosts. UDP is considered a best-effort protocol, but it's considerably faster than TCP. The sessions don't establish a synchronized session like the kind used in TCP,

  and UDP doesn't guarantee error-free communications. The primary purpose of UDP is to send small packets of information. The application is responsible for acknowledging the correct reception of the data.

  Port 22 is used by both SSH and SCP with UDP.

  Port 443 is used for secure web connections

• Question 367:

  The Chief Information Security Officer (CISO) is asking for ways to protect against zero-day exploits. The CISO is concerned that an unrecognized threat could compromise corporate data and result in regulatory fines as well as poor

  corporate publicity. The network is mostly flat, with split staff/guest wireless functionality.

  Which of the following equipment MUST be deployed to guard against unknown threats?

  A. Cloud-based antivirus solution, running as local admin, with push technology for definition updates
  B. Implementation of an off-site datacenter hosting all company data, as well as deployment of VDI for all client computing needs
  C. Host-based heuristic IPS, segregated on a management VLAN, with direct control of the perimeter firewall ACLs
  D. Behavior-based IPS with a communication link to a cloud-based vulnerability and threat feed
  D. Behavior-based IPS with a communication link to a cloud-based vulnerability and threat feed

• Question 368:

  A server administrator needs to administer a server remotely using RDP, but the specified port is closed on the outbound firewall on the network. The access the server using RDP on a port other than the typical registered port for the RDP protocol?

  A. TLS
  B. MPLS
  C. SCP
  D. SSH
  A. TLS

• Question 369:

  Which of the following can affect electrostatic discharge in a network operations center?

  A. Fire suppression
  B. Environmental monitoring
  C. Proximity card access
  D. Humidity controls
  D. Humidity controls

• Question 370:

  A remote intruder wants to take inventory of a network so exploits can be researched. The intruder is looking for information about software versions on the network. Which of the following techniques is the intruder using?

  A. Banner grabbing
  B. Port scanning
  C. Packet sniffing
  D. Virus scanning
  A. Banner grabbing