CompTIA SY0-501 Online Practice Questions and Exam Preparation

CompTIA SY0-501 Online Questions & Answers

• Question 961:

  DRAG DROP

  A security auditor is reviewing the following output from file integrity monitoring software installed on a very busy server at a large service provider. The server has not been updates since it was installed. Drag and drop the log entry that identifies the first instance of server compromise.

  Hot Area:

  

  ---

  

• Question 962:

  A security analyst is updating a BIA document. The security analyst notices the support vendor's time to replace a server hard drive went from eight hours to two hours. Given these new metrics, which of the following can be concluded? (Select TWO)

  A. The MTTR is faster.
  B. The MTTR is slower.
  C. The RTO has increased.
  D. The RTO has decreased.
  E. The MTTF has increased.
  F. The MTTF has decreased.
  A. The MTTR is faster.
  D. The RTO has decreased.

• Question 963:

  Which of the following is a passive method to test whether transport encryption is implemented?

  A. Black box penetration test
  B. Port scan
  C. Code analysis
  D. Banner grabbing
  B. Port scan

• Question 964:

  Which of the following is the proper way to quantify the total monetary damage resulting from an exploited vulnerability?

  A. Calculate the ALE
  B. Calculate the ARO
  C. Calculate the MTBF
  D. Calculate the TCO
  A. Calculate the ALE

• Question 965:

  Which of the following is the main difference between symmetric end asymmetric cryptographic algorithms?

  A. The use of PKI in symmetric algorithms
  B. HSM-based key generation
  C. Only one Key used in symmetric algorithms
  D. Random vs pseudo-random key generation
  C. Only one Key used in symmetric algorithms

• Question 966:

  To further secure a company's email system, an administrator is adding public keys to DNS records in the company's domain. Which of the following is being used?

  A. PFS
  B. SPF
  C. DMARC
  D. DNSSEC
  D. DNSSEC

• Question 967:

  Which of the following could help detect trespassers in a secure facility? (Select TWO)

  A. Faraday cages
  B. Motion-detection sensors
  C. Tall, chain-link fencing
  D. Security guards
  E. Smart cards
  B. Motion-detection sensors
  D. Security guards

• Question 968:

  Joe, a user, wants to send Ann, another user, a confidential document electronically. Which of the following should Joe do to ensure the document is protected from eavesdropping?

  A. Encrypt it with Joe's private key
  B. Encrypt it with Joe's public key
  C. Encrypt it with Ann's private key
  D. Encrypt it with Ann's public key
  D. Encrypt it with Ann's public key

• Question 969:

  A security analyst needs to generate a server certificate to be used for 802.1X and secure RDP connections. The analyst is unsure what is required to perform the task and solicits help from a senior colleague. Which of the following is the FIRST step the senior colleague will most likely tell the analyst to perform to accomplish this task?

  A. Create an OCSP
  B. Generate a CSR
  C. Create a CRL
  D. Generate a .pfx file.
  B. Generate a CSR

• Question 970:

  A coding error has been discovered on a customer-facing website. The error causes each request to return confidential PHI data for the incorrect organization. The IT department is unable to identify the specific customers who are affected. As a result, all customers must be notified of the potential breach. Which of the following would allow the team to determine the scope of future incidents?

  A. Intrusion detection system
  B. Database access monitoring
  C. Application fuzzing
  D. Monthly vulnerability scans
  B. Database access monitoring