CompTIA SY0-501 Online Practice Questions and Exam Preparation

CompTIA SY0-501 Online Questions & Answers

• Question 871:

  A security analyst is interested in setting up an IDS to monitor the company network. The analyst has been told there can be no network downtime to implement the solution, but the IDS must capture all of the network traffic. Which of the following should be used for the IDS implementation?

  A. Network tap
  B. Honeypot
  C. Aggregation
  D. Port mirror
  A. Network tap

• Question 872:

  Which of the following identity access methods creates a cookie on the rst logic to a central authority to allow logins to subsequent applications without referring credentials?

  A. Multifactor authentication
  B. Transitive trust
  C. Federated access
  D. Single sign-on
  D. Single sign-on

• Question 873:

  Having adequate lighting on the outside of a building is an example of which of the following security controls?

  A. Deterrent
  B. Compensating
  C. Detective
  D. Preventative
  A. Deterrent

• Question 874:

  An application was recently compromised after some malformed data came in via web form. Which of the following would MOST likely have prevented this?

  A. Input validation
  B. Proxy server
  C. Stress testing
  D. Encoding
  A. Input validation

• Question 875:

  A transitive trust:

  A. is automatically established between a parent and a child.
  B. is used to update DNS records.
  C. allows access to untrusted domains.
  D. can be used in place of a hardware token for logins.
  A. is automatically established between a parent and a child.

• Question 876:

  A network technician needs to monitor and view the websites that are visited by an employee. The employee Is connected to a network switch. Which of the following would allow the technician to monitor the employee's web traffic?

  A. Implement promiscuous mode on the NIC of the employee's computer.
  B. Install and configure a transparent proxy server.
  C. Run a vulnerability scanner to capture DNS packets on the router.
  D. Configure a VPN to forward packets to the technician's computer.
  B. Install and configure a transparent proxy server.

• Question 877:

  Which of the following solutions should an administrator use to reduce the risk from an unknown vulnerability in a third-party software application?

  A. Sandboxing
  B. Encryption
  C. Code signing
  D. Fuzzing
  A. Sandboxing

• Question 878:

  Given the following: > md5.exe filel.txt > ADIFAB103773DC6A1E6021B7E503A210 > md5.exe file2.txt > ADIFAB103773DC6A1E602lB7E503A210 Which of the following concepts of cryptography is shown?

  A. Collision
  B. Salting
  C. Steganography
  D. Stream cipher
  B. Salting

• Question 879:

  After discovering the /etc/shadow file had been rewritten, a security administrator noticed an application insecurely creating files in / tmp. Which of the following vulnerabilities has MOST likely been exploited?

  A. Privilege escalation
  B. Resource exhaustion
  C. Memory leak
  D. Pointer dereference
  A. Privilege escalation

• Question 880:

  The network information for a workstation is as follows:

  

  When the workstation's user attempts to access www.example.com. the URL that actually opens is www.notexample.com. The user successfully connects to several other legitimate URLs. Which of the following have MOST likely occurred? (Select TWO).

  A. ARP poisoning
  B. Buffer overflow
  C. DNS poisoning
  D. Domain hijacking
  E. IP spoofing
  C. DNS poisoning
  D. Domain hijacking