CompTIA SY0-501 Online Practice Questions and Exam Preparation

CompTIA SY0-501 Online Questions & Answers

• Question 701:

  An organization has the following password policies:

  Passwords must be at least 16 characters long.

  A password cannot be the same as any previous 20 passwords.

  Three failed login attempts will lock the account for five minutes.

  Passwords must have one uppercase letter, one lowercase letter, and one non- alphanumeric symbol.

  A database server was recently breached, and the incident response team suspects the passwords were compromised. Users with permission on that database server were forced to change their passwords for that server. Unauthorized and

  suspicious logins are now being detected on a completely separate server. Which of the following is MOST likely the issue and the best solution?

  A. Some users are reusing passwords for different systems; the organization should scan for password reuse across systems.
  B. The organization has improperly configured single sign-on; the organization should implement a RADIUS server to control account logins.
  C. User passwords are not sufficiently long or complex: the organization should increase the complexity and length requirements for passwords.
  D. The trust relationship between the two servers has been compromised: the organization should place each server on a separate VLAN.
  A. Some users are reusing passwords for different systems; the organization should scan for password reuse across systems.

• Question 702:

  A company would like to prevent the use of a known set of applications from being used on company computers. Which of the following should the security administrator implement?

  A. Whitelisting
  B. Anti-malware
  C. Application hardening
  D. Blacklisting
  E. Disable removable media
  D. Blacklisting

• Question 703:

  A company is using a mobile device deployment model in which employees use their personal devices for work at their own discretion. Some of the problems the company is encountering include the following:

  1.

  There is no standardization.

  2.

  Employees ask for reimbursement for their devices.

  Employees do not replace their devices often enough to keep them running efficiently. The company does not have enough control over the devices.

  Which of the following is a deployment model that would help the company overcome these problems?

  A. BYOD
  B. VDI
  C. COPE
  D. CYOD
  D. CYOD

• Question 704:

  A first responder needs to collect digital evidence from a compromised headless virtual host. Which of the following should the first responder collect FIRST?

  A. Virtual memory
  B. BIOS configuration
  C. Snapshot
  D. RAM
  C. Snapshot

• Question 705:

  An employee on the Internet facing part of a company's website submits a 20-character phrase in a small textbox on a web form. The website returns a message back to the browser stating.

  

  Of which of the following is this an example?

  A. Resources exhaustion
  B. Buffer overflow
  C. Improperly configured account
  D. Improper error handling
  D. Improper error handling

• Question 706:

  A database backup schedule consists of weekly full backups performed on Saturday at 12:00 a.m. and daily differential backups also performed at 12:00 a.m. If the database is restored on Tuesday afternoon, which of the following is the number of individual backups that would need to be applied to complete the database recovery?

  A. 1
  B. 2
  C. 3
  D. 4
  B. 2

• Question 707:

  A network technician is trying to determine the source of an ongoing network based attack. Which of the following should the technician use to view IPv4 packet data on a particular internal network segment?

  A. Proxy
  B. Protocol analyzer
  C. Switch
  D. Firewall
  B. Protocol analyzer

• Question 708:

  A security technician is configuring an access management system to track and record user actions. Which of the following functions should the technician configure?

  A. Accounting
  B. Authorization
  C. Authentication
  D. Identification
  A. Accounting

• Question 709:

  An organization's internal auditor discovers that large sums of money have recently been paid to a vendor that management does not recognize. The IT security department is asked to investigate the organizations the organization's ERP

  system to determine how the accounts payable module has been used to make these vendor payments.

  The IT security department finds the following security configuration for the accounts payable module:

  New Vendor Entry ?Required Role: Accounts Payable Clerk New Vendor Approval ?Required Role: Accounts Payable Clerk Vendor Payment Entry ?Required Role: Accounts Payable Clerk Vendor Payment Approval ?Required Role:

  Accounts Payable Manager Which of the following changes to the security configuration of the accounts payable module would

  BEST mitigate the risk?

  

  A. Option A
  B. Option B
  C. Option C
  D. Option D
  A. Option A

• Question 710:

  An attacker has gathered information about a company employee by obtaining publicly available information from the Internet and social networks. Which of the following types of activity is the attacker performing?

  A. Pivoting
  B. Exfiltration of data
  C. Social engineering
  D. Passive reconnaissance
  B. Exfiltration of data