CompTIA SY0-601 Online Practice Questions and Exam Preparation

CompTIA SY0-601 Online Questions & Answers

• Question 1191:

  A user attempts to load a web-based application, but the expected login screen does not appear A help desk analyst troubleshoots the issue by running the following command and reviewing the output on the user's PC

  

  The help desk analyst then runs the same command on the local PC

  

  Which of the following BEST describes the attack that is being detected?

  A. Domain hijacking
  B. DNS poisoning
  C. MAC flooding
  D. Evil twin
  B. DNS poisoning

• Question 1192:

  Which of the following exercises should an organization use to improve its incident response process?

  A. Tabletop
  B. Replication
  C. Failover
  D. Recovery
  A. Tabletop

  ---

  A Tabletop exercise is a type of simulation-based training exercise where key personnel come together in a classroom or conference room setting to discuss and practice their response to various simulated scenarios. It involves discussing hypothetical incidents and their potential impacts on the organization, as well as going through the steps of the incident response process, including identification, containment, eradication, recovery, and lessons learned. Tabletop exercises are valuable for testing the effectiveness of the incident response plan, identifying gaps in processes, and improving communication and coordination among different teams involved in incident response. It allows participants to think through complex scenarios in a safe and controlled environment without real-world consequences.

• Question 1193:

  A company is designing the layout of a new datacenter so it will have an optimal environmental temperature Which of the following must be included? (Select TWO)

  A. An air gap
  B. A cold aisle
  C. Removable doors
  D. A hot aisle
  E. An loT thermostat
  F. A humidity monitor
  B. A cold aisle
  D. A hot aisle

  ---

  Hot aisle/cold aisle refers to a layout design especially for data warehouses or datacenters where huge servers and computing equipment are kept and data is stored. The purpose of the hot aisle/cold aisle scheme is to manage air flow in data centers, consequently lowering the energy, cooling and management cost inside data centers

• Question 1194:

  DRAG DROP

  A forensic analyst is asked to respond to an ongoing network attack on a server. Place the items in the list below in the correct order in which the forensic analyst should preserve them.

  Select and Place:

  

  

  ---

  Explanation/Reference:

  When dealing with multiple issues, address them in order of volatility (OOV); always deal with the most volatile first. Volatility can be thought of as the amount of time that you have to collect certain data before a window of opportunity is gone.

  Naturally, in an investigation you want to collect everything, but some data will exist longer than others, and you cannot possibly collect all of it once. As an example, the OOV in an investigation may be RAM, hard drive data, CDs/DVDs, and printouts.

  Order of volatility: Capture system images as a snapshot of what exists, look at network traffic and logs, capture any relevant video/screenshots/hashes, record time offset on the systems, talk to witnesses, and track total man-hours and expenses associated with the investigation.

  References:

  Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, p. 453

• Question 1195:

  A security assessment determines DES and 3DES at still being used on recently deployed production servers. Which of the following did the assessment identify?

  A. Unsecme protocols
  B. Default settings
  C. Open permissions
  D. Weak encryption
  D. Weak encryption

  ---

  DES stands for Data Encryption Standard hence why the answer is encryption as its still using a weak/old encryption standard.

• Question 1196:

  Which of the following is the MOST secure but LEAST expensive data destruction method for data that is stored on hard drives?

  A. Pulverizing
  B. Shredding
  C. Incinerating
  D. Degaussing
  B. Shredding

  ---

  Comptia online book currently only uses hard drives in the sense of HDDs. The following is also from comptia's book. Due to the cost of facilities, physical destruction is likely to be contracted to a third-party. It is important to use a reputable service provider and to obtain a detailed inventory of how each media item was sanitized and certificates of destruction

• Question 1197:

  HOTSPOT

  Select the appropriate attack and remediation from each drop-down list to label the corresponding attack with its remediation.

  INSTRUCTIONS

  Not all attacks and remediation actions will be used. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

  Select and Place:

  

  

  ---

  Explanation/Reference:

  Implement a host-based IDS --> Implement a host-based IPS

• Question 1198:

  A major clothing company recently lost a large amount of proprietary information. The security officer must find a solution to ensure this never happens again. Which of the following is the BEST technical implementation to prevent this from happening again?

  A. Configure DLP solutions
  B. Disable peer-to-peer sharing
  C. Enable role-based access controls.
  D. Mandate job rotation
  E. Implement content filters
  A. Configure DLP solutions

  ---

  Explanation Explanation/Reference:Makes the most sense implementing a DLP solution wont allow this Proprietary information be leaked or sent from the inside of the company.

• Question 1199:

  A company is concerned about individuals dnvmg a car into the building to gam access. Which of the following security controls would work BEST to prevent this from happening?

  A. Bollard
  B. Camera
  C. Alarms
  D. Signage
  E. Access control vestibule
  A. Bollard

  ---

  A bollard would work best to prevent individuals from driving a car into the building. A bollard is a short, vertical post that can be used to block vehicles from entering a designated area. It is specifically designed to stop cars from crashing into buildings or other structures.

• Question 1200:

  Which of the following employee roles is responsible for protecting an organization's collected personal information?

  A. CTO
  B. DPO
  C. CEO
  D. DBA
  B. DPO

  ---

  Many companies also have a data protection officer or DPO. This is a higher-level manager who is responsible for the organization's overall data privacy policies. https://www.professormesser.com/security-plus/sy0-601/sy0-601-video/dataroles-and- responsibilities/#:~:text=Many%20companies%20also%20have%20a,organization's%20ov erall%20data%20privacy%20policies.