CompTIA SY0-501 Online Practice Questions and Exam Preparation

CompTIA SY0-501 Online Questions & Answers

• Question 451:

  Which of the following is a risk that is specifically associated with hosting applications in the public cloud?

  A. Unsecured root accounts
  B. Zero-day
  C. Shared tenancy
  D. Insider threat
  D. Insider threat

• Question 452:

  An attacker exploited a vulnerability on a mail server using the code below.

  

  Which of the following BEST explains what the attacker is doing?

  A. The attacker is replacing a cookie.
  B. The attacker is stealing a document.
  C. The attacker is replacing a document.
  D. The attacker is deleting a cookie.
  C. The attacker is replacing a document.

• Question 453:

  While testing a new vulnerability scanner, a technician becomes concerned about reports that list security concerns that are not present on the systems being tested. Which of the following BEST describes this flaw?

  A. False positives
  B. Crossover error rate
  C. Uncredentialed scan
  D. Passive security controls
  A. False positives

• Question 454:

  An employee in the finance department receives an email, which appears to come from the Chief Financial Officer (CFO), instructing the employee to immediately wire a large sum of money to a vendor. Which of the following BEST describes the principles of social engineering used? (Choose two.)

  A. Familiarity
  B. Scarcity
  C. Urgency
  D. Authority
  E. Consensus
  C. Urgency
  D. Authority

• Question 455:

  A security administrator is implementing a secure method that allows developers to place files or objects onto a Linux Server. Developers are required to log in using a username, password, and asymmetirc key. Which of the following protocols should be implemented?

  A. ssl/tls
  B. sftp
  C. srtp
  D. ipsec
  B. sftp

• Question 456:

  A security analyst is investigating a call from a user regarding one of the websites receiving a 503: Service Unavailable error. The analyst runs a netstat-an command to discover if the web server is up and listening. The analyst receives the following output: TCP 10.1.5.2:80 192.168.2.112:60973 TIME_WAIT TCP 10.1.5.2:80 192.168.2.112:60974 TIME_WAIT TCP 10.1.5.2:80 192.168.2.112:60975 TIME_WAIT TCP 10.1.5.2:80 192.168.2.112:60976 TIME_WAIT TCP 10.1.5.2:80 192.168.2.112:60977 TIME_WAIT TCP 10.1.5.2:80 192.168.2.112:60978 TIME_WAIT Which of the following types of attack is the analyst seeing?

  A. Buffer overflow
  B. Domain hijacking
  C. Denial of service
  D. ARP poisoning
  C. Denial of service

• Question 457:

  A security analyst has been asked to implement secure protocols to prevent cleartext credentials from being transmitted over the internal network. Which of the following protocols is the security analyst MOST likely to implement? (Choose two.)

  A. SNMPv3
  B. S/MIME
  C. DNSSEC
  D. SSH
  E. SFTP
  D. SSH
  E. SFTP

• Question 458:

  When an initialization vector is added to each encryption cycle, it is using the:

  A. ECB cipher mode
  B. MD5 cipher mode
  C. XOR cipher mode
  D. CBC cipher mode
  D. CBC cipher mode

• Question 459:

  A network technician is setting up a new branch for a company. The users at the new branch will need to access resources securely as if they were at the main location.

  Which of the following networking concepts would BEST accomplish this?

  A. Virtual network segmentation
  B. Physical network segmentation
  C. Site-to-site VPN
  D. Out-of-band access
  E. Logical VLANs
  C. Site-to-site VPN

• Question 460:

  A high-security defense installation recently begun utilizing large guard dogs that bark very loudly and excitedly at the slightest provocation. Which of the following types of controls does this BEST describe?

  A. Deterrent
  B. Preventive
  C. Detective
  D. Compensating
  A. Deterrent