• Home
  • Blogs
  • Pass CompTIA SYO-501 PDF Dumps Recently Updated 715 Questions [Q66-Q86]

Pass CompTIA SYO-501 PDF Dumps Recently Updated 715 Questions [Q66-Q86]

Share

Pass CompTIA SYO-501 PDF Dumps | Recently Updated 715 Questions

Updated Test Engine to Practice SYO-501 Dumps & Practice Exam

NEW QUESTION # 66
A network administrator at a small office wants to simplify the configuration of mobile clients connecting to an encrypted wireless network. Which of the following should be implemented in the administrator does not want to provide the wireless password or he certificate to the employees?

  • A. TKIP
  • B. WPS
  • C. 802.1x
  • D. WPA2-PSK

Answer: B


NEW QUESTION # 67
A security analyst is working on a project team responsible for the integration of an enterprise SSO solution. The SSO solution requires the use of an open standard for the exchange of authentication and authorization across numerous web based applications. Which of the following solutions is most appropriate for the analyst to recommend in this scenario?

  • A. TACACS+
  • B. SAML
  • C. XTACACS
  • D. Secure LDAP
  • E. RADIUS

Answer: B


NEW QUESTION # 68
You have been tasked with designing a security plan for your company. Drag and drop the appropriate security controls on the floor plan.
Instructions: All objects must be used and all place holders must be filled. Order does not matter. When you have completed the simulation, please select the Done button to submit.

Answer:

Explanation:

Explanation

Cable locks - Adding a cable lock between a laptop and a desk prevents someone from picking it up and walking away Proximity badge + reader Safe is a hardware/physical security measure Mantrap can be used to control access to sensitive areas. CCTV can be used as video surveillance.
Biometric reader can be used to control and prevent unauthorized access. Locking cabinets can be used to protect backup media, documentation and other physical artefacts.


NEW QUESTION # 69
Which of the following is a benefit of credentialed vulnerability scans?

  • A. Credentials provide access to scan documents to identify possible data theft
  • B. The vulnerability scanner is able to inventory software on the target.
  • C. Black-box testing can be performed
  • D. A scan will reveal data loss in real time.

Answer: B


NEW QUESTION # 70
A datacenter manager has been asked to prioritize critical system recovery priorities. Which of the following is the MOST critical for immediate recovery?

  • A. Financial and production software
  • B. Communications software
  • C. Operating system software
  • D. Weekly summary reports to management

Answer: C


NEW QUESTION # 71
A systems administrator wants to protect data stored on mobile devices that are used to scan and record assets in a warehouse. The control must automatically destroy the secure container of mobile devices if they leave the warehouse. Which of the following should the administrator implement?
(Select two.)

  • A. Remote wipe
  • B. Near-field communication
  • C. Geofencing
  • D. Push notification services
  • E. Containerization

Answer: C,E


NEW QUESTION # 72
Which of the following technologies employ the use of SAML? (Select two.)

  • A. Single sign-on
  • B. Secure token
  • C. LDAP
  • D. RADIUS
  • E. Federation

Answer: A,E


NEW QUESTION # 73
An organization has a policy in place that states the person who approves firewall controls/changes cannot be the one implementing the changes. Which of the following is this an example of?

  • A. Job rotation
  • B. Change management
  • C. Least privilege
  • D. Separation of duties

Answer: D


NEW QUESTION # 74
A security analyst is assessing a small company's internal servers against recommended security practices. Which of the following should the analyst do to conduct the assessment? (Choose two.)

  • A. Review the company's current security baseline
  • B. Run an exploitation framework to confirm vulnerabilities
  • C. Verify alignment with policy related to regulatory compliance
  • D. Compare configurations against platform benchmarks
  • E. Confirm adherence to the company's industry-specific regulations

Answer: A,B


NEW QUESTION # 75
Which of the following network vulnerability scan indicators BEST validates a successful, active scan?

  • A. The scan job is scheduled to run during off-peak hours.
  • B. The scan output lists SQL injection attack vectors.
  • C. The scan data identifies the use of privileged-user credentials
  • D. The scan results identify the hostname and IP address

Answer: B


NEW QUESTION # 76
A company recently experienced a security incident in which its domain controllers were the target of a DoS attack. In which of the following steps should technicians connect domain controllers to the network and begin authenticating users again?

  • A. Preparation
  • B. Eradication
  • C. Containment
  • D. Lessons learned
  • E. Recovery
  • F. Identification

Answer: E


NEW QUESTION # 77
The security administrator has installed a new firewall which implements an implicit DENY policy by default. Click on the firewall and configure it to allow ONLY the following communication.
1. The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks. 2. The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port 3. The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.
Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.

Hot Area:

Answer:

Explanation:

Explanation:
Section: Network Security
Implicit deny is the default security stance that says if you aren't specifically granted access or privileges for a resource, you're denied access by default. Rule #1 allows the Accounting workstation to ONLY access the web server on the public network over the default HTTPS port, which is TCP port 443. Rule #2 allows the HR workstation to ONLY communicate with the Financial server over the default SCP port, which is TCP Port 22 Rule #3 & Rule #4 allow the Admin workstation to ONLY access the Financial and Purchasing servers located on the secure network over the default TFTP port, which is Port 69.
References: Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 26, 44 http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers


NEW QUESTION # 78
A security analyst runs a monthly file integrity check on the main web server. When analyzing the logs, the analyst observed the following entry:

No OS patches were applied to this server during this period. Considering the log output, which of the following is the BEST conclusion?

  • A. The iexplore.exe was updated on the scanned server. An incident ticket should be created.
  • B. The cmd.exe was executed on the scanned server between the two dates. An incident ticket should be created
  • C. The iexplore.exe was executed on the scanned server between the two dates. An incident ticket should be created.
  • D. The cmd.exe was updated on the scanned server. An incident ticket should be created

Answer: D


NEW QUESTION # 79
A security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center. Drag and drop the applicable controls to each asset types?
Instructions: Controls can be used multiple times and not all placeholders need to be filled. When you have completed the simulation, please select the Done button to submit.

Answer:

Explanation:


NEW QUESTION # 80
A company's user lockout policy is enabled after five unsuccessful login attempts. The help desk notices a
user is repeatedly locked out over the course of a workweek. Upon contacting the user, the help desk
discovers the user is on vacation and does not have network access. Which of the following types of
attacks are MOST likely occurring? (Select two.)

  • A. Brute force
  • B. Replay
  • C. Rainbow tables
  • D. Pass the hash
  • E. Dictionary

Answer: A,E


NEW QUESTION # 81
A computer forensics analyst collected a flash drive that contained a single file with 500 pages of text. Which of the following algorithms should the analyst use to validate the integrity of the file?

  • A. AES
  • B. 3DES
  • C. MD5
  • D. RSA

Answer: B


NEW QUESTION # 82
An attack has occurred against a company.
INSTRUCTIONS
You have been tasked to do the following:
Identify the type of attack that is occurring on the network by clicking on the attacker's tablet and reviewing the output. (Answer Area 1) Identify which compensating controls should be implemented on the assets, in order to reduce the effectiveness of future attacks by dragging them to the correct server. (Answer area 2) All objects will be used, but not all placeholders may be filled. Objects may only be used once.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.


Answer:

Explanation:

Explanation


NEW QUESTION # 83
A network administrator was to implement a solution that will allow authorized traffic, deny unauthorized traffic and ensure that appropriate ports are being used for a number of TCP and UDP protocols. Which of the following network controls would meet these requirements?

  • A. Web security gateway
  • B. proxy server
  • C. Stateful firewall
  • D. URL filter
  • E. web application firewall

Answer: C


NEW QUESTION # 84
Which of the following policies would help an organization identify and mitigate potential single points of failure in the company's IT/security operations?

  • A. Least privilege
  • B. Separation of duties
  • C. Awareness training
  • D. Mandatory vacation

Answer: C


NEW QUESTION # 85
A security administrator is implementing a new WAF solution and has placed some of the web servers behind the WAF, with the WAF set to audit mode. When reviewing the audit logs of external requests and posts to the web servers, the administrator finds the following entry:

Based on this data, which of the following actions should the administrator take?

  • A. Change the parameter name 'Account_Name' identified in the log.
  • B. Alert the web server administrators to a misconfiguration
  • C. Create a blocking policy based on the parameter values
  • D. Create an alert to generate emails for abnormally high activity.

Answer: D


NEW QUESTION # 86
......

CompTIA SYO-501 Dumps Cover Real Exam Questions: https://www.testkingit.com/CompTIA/latest-SYO-501-exam-dumps.html

Related Blogs

more
CompTIA SYO-501 Certification Practice Exam