[Free] 2018(Mar) EnsurePass Testinsides CompTIA SY0-501 Dumps with VCE and PDF 11-20

Ensurepass.com : Ensure you pass the IT Exams
2018 Mar CompTIA Official New Released SY0-501
100% Free Download! 100% Pass Guaranteed!
http://www.EnsurePass.com/SY0-501.html

CompTIA Security Certification Exam

Question No: 11

A company has a data classification system with definitions for “Private” and public.” The company’s security policy outlines how data should be protected based on type. The company recently added the data type “Proprietary” Which of the following is the MOST likely reason the company added this data type?

  1. Reduced cost

  2. More searchable data

  3. Better data classification

  4. Expanded authority of the privacy officer

Answer: B

Question No: 12

A user clicked an email link that led to a website that infected the workstation with a virus. The virus encrypted all the network shares to which the user had access. The virus was not detected or blocked by the company’s email filter, website filter, or antivirus. Which of the following describes what occurred?

  1. Improper error handling triggered a false negative in all three controls

  2. The email originated from a private email server with no malware protection

  3. The virus was a zero-day attack

  4. none of the above

Answer: C

Question No: 13

When configuring settings in a mandatory access control environment, which of the following specifies the subjects that can access specific data objects?

  1. Owner

  2. System

  3. Administrator

  4. User

Answer: D

Question No: 14

An organization’s internal auditor discovers that large sums of money have recently been paid to a vendor that management does not recognize. The IT security department is asked to investigate the organization’s ERP system to determine how the accounts payable module has been used to make these vendor payments.

The IT security department finds the following security configuration for the accounts payable module:

EnsurePass 2018 PDF and VCE

Which of the following changes to the security configuration of the accounts payable module would BEST mitigate this risk?

  1. EnsurePass 2018 PDF and VCE

  2. EnsurePass 2018 PDF and VCE

  3. EnsurePass 2018 PDF and VCE

  4. EnsurePass 2018 PDF and VCE

Answer: D

Question No: 15

An application team is performing a load-balancing test for a critical application during off- hours and has requested access to the load balancer to review. Which servers are up without having the administrator on call. The security analyst is hesitant to give the application team full access due to other critical applications running on the road balancer. Which of the following is the BEST solution for the security analyst to process the request?

  1. Give the application team administrator access during off hours

  2. Disable other critical applications before granting the team access.

  3. Give the application team read-only access

  4. Share the account with the application team

Answer: A

Question No: 16

Malicious traffic from an internal network has been detected on an unauthorized port on an application server. Which of the following network-based security controls should the engineer consider implementing?

  1. ACLs

  2. HIPS

  3. NAT

  4. MAC filtering

Answer: D

Question No: 17

Which of the following is an important step to take BEFORE moving any installation packages from a test environment to production?

  1. Verify the hashes of files

  2. Archive and compress the files

  3. Update the secure baseline

  4. none of the above

Answer: A

Question No: 18

When trying to log onto a company’s new ticketing system, some employees receive the following message: Access denied: too many concurrent sessions. The ticketing system was recently installed on a small VM with only the recommended hardware specifications. Which of the following is the MOST likely cause for this error message?

  1. Network resources have been exceeded.

  2. The software is out of licenses.

  3. The VM does not have enough processing power.

  4. The firewall is misconfigured.

Answer: C

Question No: 19

An auditor wants to test the security posture of an organization by running a tool that will display the following:

JIMS <00> UNIQUE Registered

WORKGROUP <00> GROUP Registered

JIMS <00> UNIQUE Registered

Which of the following commands should be used?

  1. nbtstat

  2. nc

  3. arp

  4. ipconfig

Answer: B

Question No: 20

A company wants to host a publicly available server that performs the following functions:

-Evaluates MX record lookup

-Can perform authenticated requests for A and AAA records

-Uses RRSIG

Which of the following should the company use to fulfill the above requirements?

  1. DNSSEC

  2. SFTP

  3. nslookup

  4. dig

Answer: A

100% Ensurepass Free Download!
Download Free Demo:SY0-501 Demo PDF
100% Ensurepass Free Guaranteed!
Download 2018 EnsurePass SY0-501 Full Exam PDF and VCE

EnsurePass ExamCollection Testking
Lowest Price Guarantee Yes No No
Up-to-Dated Yes No No
Real Questions Yes No No
Explanation Yes No No
PDF VCE Yes No No
Free VCE Simulator Yes No No
Instant Download Yes No No

You must be logged in to post a comment.

Proudly powered by WordPress   Premium Style Theme by www.gopiplus.com