1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 411:

    A company has critical systems that are hosted on an end-of-life OS. To maintain operations and mitigate potential vulnerabilities, which of the following BEST accomplishes this objective?

    A. Use application whitelisting.
    B. Employ patch management.
    C. Disable the default administrator account.
    D. Implement full-disk encryption.

  • Question 412:

    A procedure differs from a policy in that it:

    A. is a high-level statement regarding the company's position on a topic.
    B. sets a minimum expected baseline of behavior.
    C. provides step-by-step instructions for performing a task.
    D. describes adverse actions when violations occur.

  • Question 413:

    An organization has the following written policies:

    Users must request approval for non-standard software installation Administrators will perform all software installations Software must be installed from a trusted repository

    A recent security audit identified crypto-currency software installed on one user's machine. There are no indications of compromise on this machine. Which of the following is the MOST likely cause of this policy violation and the BEST remediation to prevent a reoccurrence'?

    A. The user's machine was infected with malware implement the organization's incident response
    B. The user installed the software on the machine implement technical controls to enforce the written policies
    C. The crypto-currency software was misidentified and is authorized; add the software to the organization's approved list
    D. Administrators downloaded the software from an untrusted repository; add a policy that requires integrity checking for all software

  • Question 414:

    A company utilizes 802.11 for all client connectivity within a facility. Users in one part of the building are reporting they are unable to access company resources when connected to the company SSID. Which of the following should the security administrator use to assess connectivity?

    A. Sniffer
    B. Honeypot
    C. Routing tables
    D. Wireless scanner

  • Question 415:

    A system administrator wants to provide balance between the security of a wireless network and usability. The administrator is concerned with wireless encryption compatibility of older devices used by some employees. Which of the following would provide strong security and backward compatibility when accessing the wireless network?

    A. Open wireless network and SSL VPN
    B. WPA using a preshared key
    C. WPA2 using a RADIUS back-end for 802.1x authentication
    D. WEP with a 40-bit key

  • Question 416:

    An administrator is configuring access to information located on a network file server named "Bowman". The files are located in a folder named "BalkFiles". The files are only for use by the "Matthews" division and should be read-only. The

    security policy requires permissions for shares to be managed at the file system layer and also requires those permissions to be set according to a least privilege model. Security policy for this data type also dictates that administrator-level

    accounts on the system have full access to the files.

    The administrator configures the file share according to the following table:

    Which of the following rows has been misconfigured?

    A. Row 1
    B. Row 2
    C. Row 3
    D. Row 4
    E. Row 5

  • Question 417:

    Which of the following is the GREATEST risk to a company by allowing employees to physically bring their personal smartphones to work?

    A. Taking pictures of proprietary information and equipment in restricted areas.
    B. Installing soft token software to connect to the company's wireless network.
    C. Company cannot automate patch management on personally-owned devices.
    D. Increases the attack surface by having more target devices on the company's campus

  • Question 418:

    Which of the following Is a resiliency strategy that allows a system to automatically adapt to workload changes?

    A. Fault tolerance
    B. Redundancy
    C. Elasticity
    D. High availability

  • Question 419:

    Which of the following is MOST likely caused by improper input handling?

    A. Loss of database tables
    B. Untrusted certificate warning
    C. Power off reboot loop
    D. Breach of firewall ACLs

  • Question 420:

    A malicious actor compromises a legitimate website, configuring it to deliver malware to visitors of the website. Which of the following attacks does this describe?

    A. Whaling
    B. Watering hole
    C. Impersonation
    D. Spoofing

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.