Question#1
An application team is performing a load-balancing test for a critical application during off hours
and has requested access to the load balancer to review. Which servers are up
without having the administrator on call. The security analyst is hesitant to give the
application team full access due to other critical applications running on the road balancer.
Which of the following is the BEST solution for the security analyst to process the request?
A. Give the application team administrator access during off hours
B. Disable other critical applications before granting the team access.
C. Give the application team read-only access
D. Share the account with the application team
Answer: A
Question#2
A systems administrator is attempting to recover from a catastrophic failure in the
datacenter. To recover the domain controller, the systems administrator needs to provide
the domain administrator credentials. Which of the following account types is the systems
administrator using?
A. B. Guest account
B. C. Service account
C. D. User account
Answer: C
Saturday, August 11, 2018
New sy0-501 Exam Questions, Pass compTIA sy0-501 Exam - Dumps4Download
Question#3
Which of the fallowing security controls does an iris scanner provide?
A. Logical
B. Administrative
C. Corrective
D. Physical
E. Detective
F. Deterrent
Answer: D
Question#4
Which of the following attack types BEST describes a client-side attack that is used to mandate an HTML iframe with JavaScript code via web browser?
A. B. MITM
B. c. xss
C. D. SQLi
Answer: C
Question#5
As part of a new industry regulation, companies are required to utilize secure, standardized OS settings. A technician must ensure the OS settings are hardened. Which of the following is the BEST way to do this?
A. Use a vulnerability scanner.
B. Use a configuration compliance scanner.
C. Use a passive, in-line scanner.
D. Use a protocol analyzer.
Answer: A
Question#6
Two users need to send each other emails over unsecured channels. The system should support the principle of non-repudiation. Winch of the following should be used to sign the users' certificates?
A. B. CA
B. C. CRL
C. D. CSR
Answer: C
Question# 7
A company has a data classification system with definitions for "Private" and public." The company's security policy outlines how data should be protected based on type. The company recently added the data type “Proprietary" Which of the following is the MOST likely reason the company added this data type?
A. Reduced cost
B. More searchable data
C. Better data classification
D. Expanded authority of the privacy officer
Answer: B
Which of the fallowing security controls does an iris scanner provide?
A. Logical
B. Administrative
C. Corrective
D. Physical
E. Detective
F. Deterrent
Answer: D
Question#4
Which of the following attack types BEST describes a client-side attack that is used to mandate an HTML iframe with JavaScript code via web browser?
A. B. MITM
B. c. xss
C. D. SQLi
Answer: C
Question#5
As part of a new industry regulation, companies are required to utilize secure, standardized OS settings. A technician must ensure the OS settings are hardened. Which of the following is the BEST way to do this?
A. Use a vulnerability scanner.
B. Use a configuration compliance scanner.
C. Use a passive, in-line scanner.
D. Use a protocol analyzer.
Answer: A
Question#6
Two users need to send each other emails over unsecured channels. The system should support the principle of non-repudiation. Winch of the following should be used to sign the users' certificates?
A. B. CA
B. C. CRL
C. D. CSR
Answer: C
Question# 7
A company has a data classification system with definitions for "Private" and public." The company's security policy outlines how data should be protected based on type. The company recently added the data type “Proprietary" Which of the following is the MOST likely reason the company added this data type?
A. Reduced cost
B. More searchable data
C. Better data classification
D. Expanded authority of the privacy officer
Answer: B
Subscribe to:
Posts (Atom)