CompTIA CompTIA Certifications SY0-601 Questions & Answers

• Question 1121:

  A new plug-and-play storage device was installed on a PC in the corporate environment. Which of the following safeguards will BEST help to protect the PC from malicious files on the storage device?

  A. Change the default settings on the PC.

  B. Define the PC firewall rules to limit access.

  C. Encrypt the disk on the storage device.

  D. Plug the storage device in to the UPS

  Correct Answer: A

  By disabling autorun we will reduce the possible execution of the malware ( unless its rubberducky)

• Question 1122:

  Which of the following identifies the point in time when an organization will recover data in the event of an outage?

  A. ALE

  B. RPO

  C. MTBF

  D. ARO

  Correct Answer: B

• Question 1123:

  A security manager needs to assess the security posture of one of the organization's vendors. The contract with the vendor does not allow for auditing of the vendor's security controls. Which of the following should the manager request to complete the assessment?

  A. A service-level agreement

  B. A business partnership agreement

  C. A SOC 2 Type 2 report

  D. A memorandum of understanding

  Correct Answer: A

• Question 1124:

  Which of the following authentication methods is considered to be the LEAST secure?

  A. TOTP

  B. SMS

  C. HOTP

  D. Token key

  Correct Answer: B

  SMS (Short Message Service) authentication involves sending a one-time passcode (OTP) to the user's mobile phone via text message, which the user then enters to complete the authentication process. While it is more convenient than

  some other methods, it is also less secure compared to the other options listed.

  SMS authentication has several security weaknesses:

  Phishing: Attackers can use social engineering to trick users into revealing their SMS OTP, compromising the authentication.

  SIM swapping: Attackers can contact the user's mobile service provider and convince them to transfer the phone number to a new SIM card, gaining access to the SMS OTP.

  Intercepting SMS: In some cases, attackers with advanced capabilities can intercept SMS messages, allowing them to capture the OTP.

  Due to these vulnerabilities, SMS authentication is considered less secure compared to other authentication methods like TOTP (Time-based One-Time Password) and HOTP (HMAC-based One-Time Password), which rely on algorithms

  and do not involve transmitting the OTP via SMS.

• Question 1125:

  Which of the following is required in order for an IDS and a WAF to be effective on HTTPS traffic?

  A. Hashing

  B. DNS sinkhole

  C. TLS inspection

  D. Data masking

  Correct Answer: C

• Question 1126:

  Which of the following BEST describes the method a security analyst would use to confirm a file that is downloaded from a trusted security website is not altered in transit or corrupted using a verified checksum?

  A. Hashing

  B. Salting

  C. Integrity

  D. Digital signature

  Correct Answer: A

  File verification, also known as hashing, is the process of checking that a file you have on your machine is identical to the source file... When you hash a file, you are left with a checksum, a random alpha numeric string with a set length. Hashing a file doesn't encrypt the file and you can't take a checksum and run it back through an algorithm to get the original source file.

• Question 1127:

  Per company security policy, IT staff members are required to have separate credentials to perform administrative functions using just-in-time permissions. Which of the following solutions is the company Implementing?

  A. Privileged access management

  B. SSO

  C. RADIUS

  D. Attribute-based access control

  Correct Answer: A

• Question 1128:

  A security analyst has been tasked with creating a new WiFi network for the company. The requirements received by the analyst are as follows:

  1.

  Must be able to differentiate between users connected to WiFi

  2.

  The encryption keys need to change routinely without interrupting the users or forcing reauthentication

  3.

  Must be able to integrate with RADIUS

  4.

  Must not have any open SSIDs

  Which of the following options BEST accommodates these requirements?

  A. WPA2-Enterprise

  B. WPA3-PSK

  C. 802.11n

  D. WPS

  Correct Answer: A

  WPA2-Enterprise

  Deploying WPA2-Enterprise requires a RADIUS server, which handles the task of authenticating network users access. The actual authentication process is based on the 802.1x policy and comes in several different systems labelled EAP.

  Because each device is authenticated before it connects, a personal, encrypted tunnel is effectively created between the device and the network.

  https://www.securew2.com/solutions/wpa2-enterprise-and-802-1x-simplified

• Question 1129:

  A Chief Information Officer is concerned about employees using company-issued laptops lo steal data when accessing network shares. Which of the following should the company Implement?

  A. DLP

  B. CASB

  C. HIDS

  D. EDR

  E. UEFI

  Correct Answer: A

  Chmod removes the setuido permission, that is, it removes the S bit. Setuido is the specific permission, but it is removed with Chmod.

  https://www.cbtnuggets.com/blog/technology/system-admin/linux-file-permissions-understanding-setuid-setgid-and-the-sticky-bit

• Question 1130:

  An organization is concerned about hackers potentially entering a facility and plugging in a remotely accessible Kali Linux box. Which of the following should be the first lines of defense against such an attack? (Select TWO)

  A. MAC filtering

  B. Zero trust segmentation

  C. Network access control

  D. Access control vestibules

  E. Guards

  F. Bollards

  Correct Answer: DE