1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 371:

    Which of the following security controls BEST mitigates social engineering attacks?

    A. Separation of duties
    B. Least privilege
    C. User awareness training
    D. Mandatory vacation

  • Question 372:

    After a recent internal breach, a company decided to regenerate and reissue all certificates used in the transmission of confidential information. The company places the greatest importance on confidentiality and non-repudiation, and decided to generate dual key pairs for each client. Which of the following BEST describes how the company will use these certificates?

    A. One key pair will be used for encryption and decryption. The other will be used to digitally sign the data.
    B. One key pair will be used for encryption. The other key pair will provide extended validation.
    C. Data will be encrypted once by each key, doubling the confidentiality and non-repudiation strength.
    D. One key pair will be used for internal communication, and the other will be used for external communication.

  • Question 373:

    A security administrator is Implementing a secure method that allows developers to place files or objects onto a Linux server Developers ate required to log In using a username. password, and asymmetric key. Which of the following protocols should be implemented?

    A. SSL/TLS
    B. SFTP
    C. SRTP
    D. IPSec

  • Question 374:

    A manager makes an unannounced visit to the marketing department and performs a walk-through of the office. The manager observes unclaimed documents on printers. A closer look at these documents reveals employee names, addresses ages, birth dates, marital/dependent statuses, and favorite ice cream flavors. The manager brings this to the attention of the marketing department head. The manager believes this information to be Pll, but the marketing head does not agree. Having reached a stalemate, which of the following is the most appropriate action to take NEXT?

    A. Elevate to the Chief Executive Officer (CEO) for redress, change from the top down usually succeeds.
    B. Find the privacy officer in the organization and let the officer act as the arbiter.
    C. Notify employees whose names are on these files that their personal infor-mation is being compromised.
    D. To maintain a working relationship with marketing, quietly record the incident in the risk register.

  • Question 375:

    A user loses a COPE device. Which of the following should the user do NEXT to protect the data on the device?

    A. Call the company help desk to remotely wipe the device.
    B. Report the loss to authorities.
    C. Check with corporate physical security for the device.
    D. Identify files that are potentially missing on the device.

  • Question 376:

    Which of the following vulnerabilities can lead to unexpected system behavior, including the bypassing of security controls, due to differences between the time of commitment and the time of execution?

    A. Buffer overflow
    B. DLL injection
    C. Pointer dereference
    D. Race condition

  • Question 377:

    A systems administrator is receiving multiple alerts from the company NIPS. A review of the NIPS logs shows the following:

    reset both: 70.32.200.2:3194 ?gt; 10.4.100.4:80 buffer overflow attempt reset both: 70.32.200.2:3230 ?gt; 10.4.100.4:80 directory traversal attack reset client: 70.32.200.2:4019 ?gt; 10.4.100.4:80 Blind SQL injection attack Which of the

    following should the systems administrator report back to management?

    A. The company web server was attacked by an external source, and the NIPS blocked the attack.
    B. The company web and SQL servers suffered a DoS caused by a misconfiguration of the NIPS.
    C. An external attacker was able to compromise the SQL server using a vulnerable web application.
    D. The NIPS should move from an inline mode to an out-of-band mode to reduce network latency.

  • Question 378:

    Which of the following is the main difference an XSS vulnerability and a CSRF vulnerability?

    A. XSS needs the attacker to be authenticated to the trusted server.
    B. XSS does not need the victim to be authenticated to the trusted server.
    C. CSRF needs the victim to be authenticated to the trusted server.
    D. CSRF does not need the victim to be authenticated to the trusted server.
    E. CSRF does not need the attacker to be authenticated to the trusted server.

  • Question 379:

    Exploitation of a system using widely known credentials and network addresses that results in DoS is an example of:

    A. improper error handling
    B. default configurations
    C. untrained users
    D. lack of vendor support

  • Question 380:

    When building a hosted datacenter, which of the following is the MOST important consideration for physical security within the datacenter?

    A. Security guards
    B. Cameras
    C. Secure enclosures
    D. Biometrics

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.