1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 441:

    During a recent audit, it was discovered that many services and desktops were missing security patches. Which of the following BEST describes the assessment that was performed to discover this issue?

    A. Network mapping

    B. Vulnerability scan

    C. Port Scan

    D. Protocol analysis

  • Question 442:

    When generating a request for a new x.509 certificate for securing a website, which of the following is the MOST appropriate hashing algorithm?

    A. RC4

    B. MD5

    C. HMAC

    D. SHA

  • Question 443:

    An organization wants to conduct secure transactions of large data files. Before encrypting and exchanging the data files, the organization wants to ensure a secure exchange of keys. Which of the following algorithms is appropriate for securing the key exchange?

    A. DES

    B. Blowfish

    C. DSA

    D. Diffie-Hellman

    E. 3DES

  • Question 444:

    Ann, a college professor, was recently reprimanded for posting disparaging remarks re-grading her coworkers on a web site. Ann stated that she was not aware that the public was able to view her remakes. Which of the following security-related trainings could have made Ann aware of the repercussions of her actions?

    A. Data Labeling and disposal

    B. Use of social networking

    C. Use of P2P networking

    D. Role-based training

  • Question 445:

    An attack that is using interference as its main attack to impede network traffic is which of the following?

    A. Introducing too much data to a targets memory allocation

    B. Utilizing a previously unknown security flaw against the target

    C. Using a similar wireless configuration of a nearby network

    D. Inundating a target system with SYN requests

  • Question 446:

    The IT department needs to prevent users from installing untested applications. Which of the following would provide the BEST solution?

    A. Job rotation

    B. Least privilege

    C. Account lockout

    D. Antivirus

  • Question 447:

    A security analyst is reviewing the following packet capture of an attack directed at a company's server located in the DMZ:

    Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?

    A. DENY TCO From ANY to 172.31.64.4

    B. Deny UDP from 192.168.1.0/24 to 172.31.67.0/24

    C. Deny IP from 192.168.1.10/32 to 0.0.0.0/0

    D. Deny TCP from 192.168.1.10 to 172.31.67.4

  • Question 448:

    Many employees are receiving email messages similar to the one shown below:

    From IT department To employee Subject email quota exceeded Pease click on the following link http:www.website.info/email.php?quota=1Gb and provide your username and password to increase your email quot Upon reviewing other

    similar emails, the security administrator realized that all the phishing URLs have the following common elements; they all use HTTP, they all come from .info domains, and they all contain the same URI. Which of the following should the

    security administrator configure on the corporate content filter to prevent users from accessing the phishing URL, while at the same time minimizing false positives?

    A. BLOCK http://www.*.info/"

    B. DROP http://"website.info/email.php?*

    C. Redirect http://www,*.Info/email.php?quota=*TOhttp://company.com/corporate_polict.html

    D. DENY http://*.info/email.php?quota=1Gb

  • Question 449:

    The concept of connecting a user account across the systems of multiple enterprises is BEST known as:

    A. federation.

    B. a remote access policy.

    C. multifactor authentication.

    D. single sign-on.

  • Question 450:

    Joe, a user at a company, clicked an email link that led to a website that infected his workstation. Joe was connected to the network, and the virus spread to the network shares. The protective measures failed to stop this virus, and it has continued to evade detection. Which of the following should a security administrator implement to protect the environment from this malware?

    A. Install a definition-based antivirus.

    B. Implement an IDS/IPS.

    C. Implement a heuristic behavior-detection solution.

    D. Implement CASB to protect the network shares.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.