CompTIA CompTIA Certifications SY0-601 Questions & Answers

• Question 921:

  Which of the following is the BEST reason to maintain a functional and effective asset management policy that aids in ensuring the security of an organization?

  A. To provide data to quantity risk based on the organization's systems.

  B. To keep all software and hardware fully patched for known vulnerabilities

  C. To only allow approved, organization-owned devices onto the business network

  D. To standardize by selecting one laptop model for all users in the organization

  Correct Answer: A

• Question 922:

  An organization regularly scans its infrastructure for missing security patches but is concerned about hackers gaining access to the scanner's account. Which of the following would be BEST to minimize this risk?

  A. Require a complex, eight-character password that is updated every 90 days.

  B. Perform only non-intrusive scans of workstations.

  C. Use non-credentialed scans against high-risk servers.

  D. Log and alert on unusual scanner account logon times.

  Correct Answer: A

• Question 923:

  Several large orders of merchandise were recently purchased on an e-commerce company's website. The totals for each of the transactions were negative values, resulting in credits on the customers' accounts. Which of the following should be implemented to prevent similar situations in the future?

  A. Ensure input validation is in place to prevent the use of invalid characters and values.

  B. Calculate all possible values to be added together and ensure the use of the proper integer in the code.

  C. Configure the web application firewall to look for and block session replay attacks.

  D. Make sure transactions that are submitted within very short time periods are prevented from being processed.

  Correct Answer: A

• Question 924:

  After installing a Windows server, a cybersecurity administrator needs to harden it, following security best practices. Which of the following will achieve the administrator's goal? (Select TWO).

  A. Disabling guest accounts

  B. Disabling service accounts

  C. Enabling network sharing

  D. Disabling NetBIOS over TCP/IP

  E. Storing LAN manager hash values

  F. Enabling NTLM

  Correct Answer: AD

  Enabling NTLM is also part of the MS Checklist, but it's not part of the user account hardening but rather network security configuration.

• Question 925:

  The concept of connecting a user account across the systems of multiple enterprises is BEST known as:

  A. federation.

  B. a remote access policy.

  C. multifactor authentication.

  D. single sign-on.

  Correct Answer: A

  The key difference between SSO and FIM is while SSO is designed to authenticate a single credential across various systems within one organization, federated identity management systems offer single access to a number of applications across various enterprises.

  Source: https://www.okta.com/identity-101/federated-identity-vs-sso/#:~:text=The%20key%20difference%20between%20SSO,of%20applications%20across%20various%20enterprises.

• Question 926:

  An analyst is trying to identify insecure services that are running on the internal network. After performing a port scan, the analyst identifies that a server has some insecure services enabled on default ports. Which of the following BEST describes the services that are currently running and the secure alternatives for replacing them? (Choose three.)

  A. SFTP. FIPS

  B. SNMPv2, SNMPv3

  C. HTTP, HTTPS

  D. TFTP, FTP

  E. SNMPyt, SNMPy2

  F. Tenet, SSH

  G. TLS, SSL

  H. POP, IMAP

  I. Login, nogin

  Correct Answer: BCF

  snmpv2 vs snmpv3 - v3 offers encryption capabilities to secure secure data communications http vs https - http will transfer the data in plain text while https will add the capability to encrypt the data during transit with either SSL/TLS Telnet vs ssh - Same there here, telnet transfers your data in an unencrypted format, while SSH encrypts it.

  A. SFTP, FTPS

  -SFTP is FTP over SSH, FTPS is FTP over SSL/TLS which means they both have encryption mechanisms built in.

  B. SNMPv2, SNMPv3

  -v2 has no encryption. v3 does.

  C. HTTP, HTTPS

  -HTTP is plaintext. HTTPS is HTTP Secure (SSL and now TLS).

  D. TFTP, FTP

  -Neither of these are secure protocols.

  E. SNMPv1, SNMPv2

  -Neither of these feature encryption, although as stated up v3 does.

  F. Telnet, SSH

  -Telnet is in the clear. SSH in encrypted.

  G. TLS, SSL

  -Both cryptographic protocols, TLS is an upgrade to SSL, not the other way around. While SSL in considered insecure, it's supposed to be, and these protocols don't have "default ports".

  H. POP, IMAP

  -You'd probably be looking for POP->POP3 or IMAP->IMAPS here. These email protocols that work a bit differently.

  I. Login, rlogin

  -These are not in the SY0-601 objectives from what I remember. I had to do a quick search: rlogin is a remote access protocol for Linux that sends passwords in-the-clear and was basically replaced by SSH.

• Question 927:

  A security analyst is concerned about traffic initiated to the dark web form the corporate LAN. Which of the following networks should the analyst monitor?

  A. SFTP

  B. AS

  C. Tor

  D. LoC

  Correct Answer: C

  TOR is a dark web browser

• Question 928:

  Accompany deployed a WiFi access point in a public area and wants to harden the configuration to make it more secure. After performing an assessment, an analyst identifies that the access point is configured to use WPA3, AES, WPS, and RADIUS. Which of the following should the analyst disable to enhance the access point security?

  A. WPA3

  B. AES

  C. RADIUS

  D. WPS

  Correct Answer: D

  Wifi Protected Setup - Even though WPS offers this convenience, it is appallingly insecure. Wireless networks with WPS enabled are highly vulnerable to cybersecurity threats. Attackers can easily target the WPS function to steal network passwords, regardless of how complex the password is.

• Question 929:

  The human resources department of a large online retailer has received multiple customer complaints about the rudeness of the automated chatbots it uses to interface and assist online shoppers. The system, which continuously learns and adapts, was working fine when it was installed a few months ago. Which of the following BEST describes the method being used to exploit the system?

  A. Baseline modification

  B. A fileless virus

  C. Tainted training data

  D. Cryptographic manipulation

  Correct Answer: C

  Tainted Training Data for Machine Learning (ML):

  Machine learning (ML) is one of the techniques used in AI. ML works by using a training data set to calibrate the detection model to enable detection on sample data. One of the weaknesses of ML is this training set dependency. The ability of

  the model to detect is a function of the efficacy of the training data set. A good training data set can build a solid detection model. A deficient training set of data can build a model with holes in it--holes that allow conditions to go undetected.

  Tainting the training data is one of the attack vectors that attackers can use against ML systems. Over time, as conditions change, an ML algorithm needs retraining or updating to make it effective against differing inputs. Each of these

  updates represents an opportunity to taint the input data set. Also, if you train the algorithm against normal network traffic, marking it as good when in fact there is an adversary already in that training data set, you effectively blind the algorithm

  to the attack by having already labeled it as good.

• Question 930:

  A local coffee shop runs a small WiFi hotspot for its customers that utilizes WPA2-PSK. The coffee shop would like to stay current with security trends and wants to implement WPA3 to make its WiFi even more secure. Which of the following technologies should the coffee shop use in place of PSK?

  A. WEP

  B. MSCHAP

  C. WPS

  D. SAE

  Correct Answer: D

  WPA3 - Simultaneous Authentication of Equals (SAE) replaces Pre-shared Key (PSK) in WPA2-Personal.