1. Home
  2. CompTIA
  3. SY0-501

CompTIA Security+

Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA CompTIA Certifications SY0-501 Questions & Answers

  • Question 61:

    An employee workstation with an IP address of 204.211.38.211/24 reports it is unable to submit print jobs to a network printer at 204.211.38.52/24 after a firewall upgrade. The active firewall rules are as follows:

    Assuming port numbers have not been changed from their defaults, which of the following should be modified to allow printing to the network printer?

    A. The permit statement for 204.211.38.52/24 should be changed to TCP port 631 instead of UDP

    B. The deny statement for 204.211.38.52/24 should be changed to a permit statement

    C. The permit statement for 204.211.38.52/24 should be changed to UDP port 443 instead of 631

    D. The permit statement for 204.211.38.211/24 should be changed to TCP port 631 only instead of ALL

  • Question 62:

    A network administrator is brute forcing accounts through a web interface. Which of the following would provide the BEST defense from an account password being discovered?

    A. Password history

    B. Account lockout

    C. Account expiration

    D. Password complexity

  • Question 63:

    A security engineer wants to add SSL to the public web server. Which of the following would be the FIRST step to implement the SSL certificate?

    A. Download the web certificate

    B. Install the intermediate certificate

    C. Generate a CSR

    D. Encrypt the private key

  • Question 64:

    Which of the following describes the maximum amount of time a mission essential function can operate without the systems it depends on before significantly impacting the organization?

    A. MTBF

    B. MTTR

    C. RTO

    D. RPO

  • Question 65:

    Which of the following development models entails several iterative and incremental software development methodologies such as Scrum?

    A. Spiral

    B. Waterfall

    C. Agile

    D. Rapid

  • Question 66:

    Which of the following are used to substantially increase the computation time required to crack a password? (Choose two.)

    A. BCRYPT

    B. Substitution cipher

    C. ECDHE

    D. PBKDF2

    E. Diffie-Hellman

  • Question 67:

    A consumer purchases an exploit from the dark web. The exploit targets the online shopping cart of a popular website, allowing the shopper to modify the price of an item as checkout. Which of the following BEST describes this type of user?

    A. Insider

    B. Script kiddie

    C. Competitor

    D. Hacktivist

    E. APT

  • Question 68:

    Joe, a backup administrator, wants to implement a solution that will reduce the restoration time of physical servers. Which of the following is the BEST method for Joe to use?

    A. Differential

    B. Incremental

    C. Full

    D. Snapshots

  • Question 69:

    Users are attempting to access a company's website but are transparently redirected to another websites. The users confirm the URL is correct. Which of the following would BEST prevent this issue in the futue?

    A. DNSSEC

    B. HTTPS

    C. IPSec

    D. TLS/SSL

  • Question 70:

    Which of the following is a compensating control that will BEST reduce the risk of weak passwords?

    A. Requiring the use of one-time tokens

    B. Increasing password history retention count

    C. Disabling user accounts after exceeding maximum attempts

    D. Setting expiration of user passwords to a shorter time

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.