Pass4itsure latest upload CompTIA SY0-401 dumps exam questions will be more popular, pass CompTIA Security+ certification exam.This free CompTIA Security+ practice exam covers basic knowledge in the field of Information Systems Security. To pass the CompTIA Security+ https://www.pass4itsure.com/sy0-401.html dumps exam, a candidate will need knowledge in Network Security, Compliance and operational security, threats and vulnerabilities, access control and identity management, cryptography, and application, data, and host security.
Exam Code: SY0-401
Exam Name: CompTIA Security+ Certification Exam
Updated: Aug 25, 2017
Q&As: 1776
[New CompTIA SY0-401 Dumps PDF From Google Drive]: https://drive.google.com/open?id=0BwxjZr-ZDwwWZDR6d015bnBTbTA
[New CompTIA N10-006 Dumps PDF From Google Drive]: https://drive.google.com/open?id=0BwxjZr-ZDwwWNVlLVzlLN1cxZE0
Features to use Pass4itsure SY0-401 Dumps:
- Good grades are 100% guaranteed.
- 100% verified by Experts panel.
- Up to date exam data.
- Pass4itsure data is 100% trustworthy.
- Passing ratio more than 99%
Pass4itsure Latest and Most Accurate CompTIA SY0-401 Dumps Exam Q&As:
QUESTION 19
Which of the following is the BEST reason for placing a password lock on a mobile device?
A. Prevents an unauthorized user from accessing owner’s data
B. Enables remote wipe capabilities
C. Stops an unauthorized user from using the device again
D. Prevents an unauthorized user from making phone calls
SY0-401 exam Correct Answer: A
QUESTION 20
Which of the following is an XML based open standard used in the exchange of authentication and
authorization information between different parties?
A. LDAP
B. SAML
C. TACACS+
D. Kerberos
Correct Answer: B
QUESTION 21
Several employee accounts appear to have been cracked by an attacker. Which of the following should
the security administrator implement to mitigate password cracking attacks? (Select TWO).
A. Increase password complexity
B. Deploy an IDS to capture suspicious logins
C. Implement password history
D. Implement monitoring of logins
E. Implement password expiration
F. Increase password length
SY0-401 dumps Correct Answer: AF
QUESTION 22
To ensure compatibility with their flagship product, the security engineer is tasked to recommend an
encryption cipher that will be compatible with the majority of third party software and hardware vendors.
Which of the following should be recommended?
A. SHA
B. MD5
C. Blowfish
D. AES
Correct Answer: D
QUESTION 23
While setting up a secure wireless corporate network, which of the following should Pete, an administrator,
avoid implementing?
A. EAP-TLS
B. PEAP
C. WEP
D. WPA
SY0-401 pdf Correct Answer: C
QUESTION 24
Which of the following protocols uses an asymmetric key to open a session and then establishes a
symmetric key for the remainder of the session?
A. SFTP
B. HTTPS
C. TFTP
D. TLS
Correct Answer: D
QUESTION 25
The IT department has installed new wireless access points but discovers that the signal extends far into
the parking lot. Which of the following actions should be taken to correct this?
A. Disable the SSID broadcasting
B. Configure the access points so that MAC filtering is not used
C. Implement WEP encryption on the access points
D. Lower the power for office coverage only
SY0-401 vce Correct Answer: D
QUESTION 26
A risk assessment team is concerned about hosting data with a cloud service provider (CSP) which of the
following findings would justify this concern?
A. The CPS utilizes encryption for data at rest and in motion
B. The CSP takes into account multinational privacy concerns
C. The financial review indicates the company is a startup
D. SLA state service tickets will be resolved in less than 15 minutes
Correct Answer: B
QUESTION 27
A computer on a company network was infected with a zero-day exploit after an employee accidently
opened an email that contained malicious content. The employee recognized the email as malicious and
was attempting to delete it, but accidently opened it. Which of the following should be done to prevent this
scenario from occurring again in the future?
A. Install host-based firewalls on all computers that have an email client installed
B. Set the email program default to open messages in plain text
C. Install end-point protection on all computers that access web email
D. Create new email spam filters to delete all messages from that sender
SY0-401 exam Correct Answer: C
QUESTION 28
A small IT security form has an internal network composed of laptops, servers, and printers. The network
has both wired and wireless segments and supports VPN access from remote sites. To protect the
network from internal and external threats, including social engineering attacks, the company decides to
implement stringent security controls. Which of the following lists is the BEST combination of security
controls to implement?
A. Disable SSID broadcast, require full disk encryption on servers, laptop, and personally owned
electronic devices, enable MAC filtering on WAPs, require photographic ID to enter the building.
B. Enable port security; divide the network into segments for servers, laptops, public and remote users;
apply ACLs to all network equipment; enable MAC filtering on WAPs; and require two-factor
authentication for network access.
C. Divide the network into segments for servers, laptops, public and remote users; require the use of one
time pads for network key exchange and access; enable MAC filtering ACLs on all servers.
D. Enable SSID broadcast on a honeynet; install monitoring software on all corporate equipment’ install
CCTVs to deter social engineering; enable SE Linux in permissive mode.
Correct Answer: B
QUESTION 29
A security guard has informed the Chief information Security Officer that a person with a tablet has been
walking around the building. The guard also noticed strange white markings in different areas of the
parking lot. The person is attempting which of the following types of attacks?
A. Jamming
B. War chalking
C. Packet sniffing
D. Near field communication
SY0-401 dumps Correct Answer: B
QUESTION 30
A security Operations Center was scanning a subnet for infections and found a contaminated machine.
One of the administrators disabled the switch port that the machine was connected to, and informed a
local technician of the infection. Which of the following steps did the administrator perform?
A. Escalation
B. Identification
C. Notification
D. Quarantine
E. Preparation
Correct Answer: CD
QUESTION 31. Swap space in Solaris 10 OS is managed by the swapfs file system.
Which two statements accurately describe swapfs? (Choose two.)
A. The swap file system consists only of swap slices and swap files.
B. The swap file system might consist of physical RAM, swap slices, and swap files.
C. The swap slices and swap files managed by swapfs need to be twice as large as physical RAM on the
system.
D. The swapfs provides virtual swap space addresses, thus decreasing the need for physical swap on
systems with large, available memory.
E. The swapfs provides real physical swap space addresses in response to swap space reservation
requests.
SY0-401 pdf Answer: BD
QUESTION 32. The system administrator has placed several entries in the direct map of a Solaris 10 OS machine that is configured to use local files..
Which three features are direct map entries? (Choose three.)
A. Direct maps can always be browsed.
B. Direct maps specify relative paths only.
C. Direct maps specify the absolute path of the mount point.
D. A /- entry in the master map defines a mount point for direct maps. E.
A master map that is a local file can only have one direct map entry.
F. The directory specified in the map entry can be mounted from a comma-separated list of servers.
Answer: CDF
This free SY0-401 dumps practice test will test your knowledge and readiness for the CompTIA Security+ examination.Good luck with your studies and let me and others know how the CompTIA https://www.pass4itsure.com/sy0-401.html dumps test went!
https://youtu.be/B2Ka4IKTmac
