CompTIA SY0-601 Online Practice Questions and Exam Preparation

CompTIA SY0-601 Online Questions & Answers

• Question 571:

  Which of the following would be the BEST method for creating a detailed diagram of wireless access points and hot-spots?

  A. Footprinting
  B. White-box testing
  C. A drone/UAV
  D. Pivoting
  A. Footprinting

• Question 572:

  The findings in a consultant's report indicate the most critical risk to the security posture from an incident response perspective is a lack of workstation and server investigation capabilities. Which of the following should be implemented to remediate this risk?

  A. HIDS
  B. FDE
  C. NGFW
  D. EDR
  D. EDR

  ---

  Explanation Explanation/Reference: EDR solutions are designed to detect and respond to malicious activity on workstations and servers, and they provide a detailed analysis of the incident, allowing organizations to quickly remediate the threat. According to the CompTIA Security+ SY0-601 Official Text Book, EDR solutions can be used to detect malicious activity on endpoints, investigate the incident, and contain the threat. EDR solutions can also provide real-time monitoring and alerting for potential security events, as well as detailed forensic analysis for security incidents. Additionally, the text book recommends that organizations also implement a host- based intrusion detection system (HIDS) to alert them to malicious activity on their workstations and servers.

• Question 573:

  Which of the following is MOST likely to contain ranked and ordered information on the likelihood and potential impact of catastrophic events that may affect business processes and systems, while also highlighting the residual risks that need to be managed after mitigating controls have been implemented?

  A. An RTO report
  B. A risk register
  C. A business impact analysis
  D. An asset value register
  E. A disaster recovery plan
  B. A risk register

  ---

  A risk register is a document that records all of your organisation's identified risks, the likelihood and consequences of a risk occurring, the actions you are taking to reduce those risks and who is responsible for managing them

• Question 574:

  A security analyst is looking for a solution to help communicate to the leadership team the seventy levels of the organization's vulnerabilities. Which of the following would BEST meet this need?

  A. CVE
  B. SIEM
  C. SOAR
  D. CVSS
  D. CVSS

  ---

  The Common Vulnerability Scoring System (CVSS) is a system widely used in vulnerability management programs. CVSS indicates the severity of an information security vulnerability, and is an integral component of many vulnerability scanning tools.

• Question 575:

  A security analyst is designing the appropriate controls to limit unauthorized access to a physical site. The analyst has a directive to utilize the lowest possible budget. Which of the following would BEST meet the requirements?

  A. Preventive controls
  B. Compensating controls
  C. Deterrent controls
  D. Detective controls
  C. Deterrent controls

  ---

  Deterrent makes sense on further thought. The question just states unauthorized access. It doesn't state the intent of any unauthorized intruders. Deterrence is designed to reduce the occurrence of unintentional bystanders or unmotivated malicious agents from entering the site. Should the agent be motivated enough, a preventative measure is needed. But again, the question doesn't list intentions. Therefore this method works to limit the number of unauthorized visitors by weeding out everyone but the motivated, and the truly stupid.

• Question 576:

  Which of the following is most likely associated with introducing vulnerabilities on a corporate network by the deployment of unapproved software?

  A. Hacktivists
  B. Script kiddies
  C. Competitors
  D. Shadow IT
  D. Shadow IT

  ---

  Shadow IT refers to information technology systems used within organizations without explicit organizational approval.

• Question 577:

  An organization is struggling with scaling issues on its VPN concentrator and internet circuit due to remote work. The organization is looking for a software solution that will allow it to reduce traffic on the VPN and internet circuit, while still providing encrypted tunnel access to the data center and monitoring of remote employee internet traffic. Which of the following will help achieve these objectives?

  A. Deploying a SASE solution to remote employees
  B. Building a load-balanced VPN solution with redundant internet
  C. Purchasing a low-cost SD-WAN solution for VPN traffic
  D. Using a cloud provider to create additional VPN concentrators
  A. Deploying a SASE solution to remote employees

  ---

  SASE (Secure Access Service Edge) is a comprehensive networking and security approach that combines wide-area networking (WAN) capabilities with security features. It provides secure access to applications and data, including encrypted tunnel access to the data center, while also offering monitoring capabilities for remote employee internet traffic. By implementing a SASE solution, the organization can reduce traffic on the VPN and internet circuit by routing traffic intelligently through the cloud, closer to the users. This approach helps optimize performance and security, addressing the scaling issues effectively.

• Question 578:

  A company is designing the layout of a new data center so it will have an optimal environmental temperature. Which of the following must be included? (Choose two.)

  A. An air gap
  B. A cold aisle
  C. Removable doors
  D. A hot aisle
  E. An IoT thermostat
  F. A humidity monitor
  B. A cold aisle
  D. A hot aisle

  ---

  A cold aisle: Cold aisles are typically positioned in front of equipment racks, with the racks facing into the aisle. This design ensures that cold air from the air conditioning units is drawn directly into the front of the equipment, ensuring efficient cooling. A hot aisle: Hot aisles are positioned behind equipment racks. Equipment is oriented so that exhaust fans blow hot air from the equipment directly into these aisles. The hot air in these aisles is then typically extracted and cooled down, often being recycled back to the cold aisles. Using a combination of cold aisles and hot aisles ensures that equipment is efficiently cooled, and hot air is effectively managed, maintaining an optimal temperature environment for the data center. The other options, while they might be relevant in some data center designs, are not as critical as the cold and hot aisle configurations for ensuring optimal environmental temperature.

• Question 579:

  DRAG DROP

  Leveraging the information supplied below, complete the CSR for the server to set up TLS (HTTPS)

  1. Hostname: ws01

  2. Domain: comptia.org

  3. IPv4: 10.1.9.50

  4. IPV4: 10.2.10.50

  5. Root: home.aspx

  6. DNS CNAME:homesite.

  Instructions:

  Drag the various data points to the correct locations within the CSR. Extension criteria belong in the let hand column and values belong in the corresponding row in the right hand column.

  Select and Place:

  

  

  ---

  Explanation/Reference:

• Question 580:

  A new security engineer has started hardening systems. One o( the hardening techniques the engineer is using involves disabling remote logins to the NAS. Users are now reporting the inability lo use SCP to transfer files to the NAS, even though the data is still viewable from the users' PCs. Which of the following is the MOST likely cause of this issue?

  A. TFTP was disabled on the local hosts.
  B. SSH was turned off instead of modifying the configuration file.
  C. Remote login was disabled in the networkd.conf instead of using the sshd. conf.
  D. Network services are no longer running on the NAS
  B. SSH was turned off instead of modifying the configuration file.

  ---

  SSH is used to securely transfer files to the remote server and is required for SCP to work. Disabling SSH will prevent users from being able to use SCP to transfer files to the server. To enable SSH, the security engineer should modify the SSH configuration file (sshd.conf) and make sure that SSH is enabled. For more information on hardening systems and the security techniques that can be used, refer to the CompTIA Security+ SY0-601 Official Text Book and Resources.