최신 SY0-601 무료덤프 - CompTIA Security+

문제1

Which of the following is a common source of unintentional corporate credential leakage in cloud environments?

A. State actors

B. Dark web

C. Threat feeds

D. Vulnerability databases

E. Code repositories

정답: E

문제2

An organization wants to enable built-in FDE on all laptops Which of the following should the organization ensure is Installed on all laptops?

A. SAML

B. TPM

C. CRL

D. CA

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제3

A systems administrator is looking for a low-cost application-hosting solution that is cloud-based. Which of the following meets these requirements?

A. SDN

B. Serverless framework

C. SD-WAN

D. Type 1 hypervisor

정답: B

문제4

A company would like to implement a daily backup solution. The backup will be stored on a NAS appliance, and capacity is not a limiting factor. Which of the following will the company most likely implement to ensure complete restoration?

A. Full

B. Snapshot

C. Incremental

D. Differential

정답: A

문제5

A third-party vendor is moving a particular application to the end-of-life stage at the end of the current year. Which of the following is the most critical risk if the company chooses to continue running the application?

A. Lack of source code access

B. Lack of support

C. Lack of security updates

D. Lack of new features

정답: C

문제6

A Chief information Officer is concerned about employees using company-issued laptops to steal data when accessing network shares Which of the following should the company implement?

A. CASB

B. HIDS

C. UEFI

D. EDR

E. DLP

정답: E

설명: (DumpTOP 회원만 볼 수 있음)

문제7

After gaining access to a dual-homed (i.e.. wired and wireless) multifunction device by exploiting a vulnerability in the device's firmware, a penetration tester then gains shell access on another networked asset This technique is an example of:

A. privilege escalation

B. footprinting

C. persistence

D. pivoting.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제8

A security administrator is configuring fileshares. The administrator removed the default permissions and added permissions for only users who will need to access the fileshares as part of their job duties. Which of the following best describes why the administrator performed these actions?

A. Encryption standard compliance

B. Least privilege

C. Data replication requirements

D. Access control monitoring

정답: B

문제9

A newly purchased corporate WAP needs to be configured in the MOST secure manner possible.
INSTRUCTIONS
Please click on the below items on the network diagram and configure them accordingly:
WAP
DHCP Server
AAA Server
Wireless Controller
LDAP Server
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

정답:

문제10

The help desk has received calls from users in multiple locations who are unable to access core network services The network team has identified and turned off the network switches using remote commands. Which of the following actions should the network team take NEXT?

A. Initiate the organization's incident response plan.

B. Turn on all the network switches by using the centralized management software

C. Send response teams to the network switch locations to perform updates

D. Disconnect all external network connections from the firewall

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

문제11

After a web server was migrated to a cloud environment, user access to that server was blocked. Even though an on-premises firewall configuration has been modified to reflect the cloud infrastructure, users are still experiencing access issues. Which of the following most likely needs to be configured?

A. Resource allocation

B. Storage permissions

C. URL filter

D. Load balancer pool

E. Security group

정답: E

문제12

A security administrator recently used an internal CA to issue a certificate to a public application. A user tries to reach the application but receives a message stating, "Your connection is not private." Which of the following is the best way to fix this issue?

A. Install the certificate on each endpoint that needs to use the application.

B. Ignore the warning and continue to use the application normally.

C. Send the new certificate to the users to install on their browsers.

D. Send a CSR to a known CA and install the signed certificate on the application's server.

정답: D

설명: (DumpTOP 회원만 볼 수 있음)

문제13

In a tabletop exercise a simulated group of disgruntled employees deleted all of their work from the file server on their last day at the company. Which of the following actions would a security engineer take to mitigate this risk?

A. Deploy RAID 10 on the file server.

B. Perform nightly snapshots.

C. Maintain the last known-good configurations.

D. Replicate the data to a hot site.

정답: B

문제14

Users report access to an application from an internal workstation is still unavailable to a specific server, even after a recent firewall rule implementation that was requested for this access. ICMP traffic is successful between the two devices. Which of the following tools should the security analyst use to help identify if the traffic is being blocked?

A. tracert

B. nmap

C. ping

D. ssh

정답: B

설명: (DumpTOP 회원만 볼 수 있음)

문제15

Which of the following are common VoIP-associated vulnerabilities? (Select two).

A. VLAN hopping

B. Vishing

C. Tailgating

D. DHCP snooping

E. SPIM

F. Phishing

정답: B,E

설명: (DumpTOP 회원만 볼 수 있음)

문제16

An organization wants to ensure it can track changes between software deployments. Which of the following concepts should the organization implement?

A. Rights management

B. Version control

C. Non-repudiation

D. Continuous monitoring

정답: B

문제17

A security researcher has alerted an organization that its sensitive user data was found for sale on a website. Which of the following should the organization use to inform the affected parties?

A. A communications plan

B. A business continuity plan

C. A disaster recovery plan

D. An incident response plan

정답: A

설명: (DumpTOP 회원만 볼 수 있음)

최신 SY0-601 무료덤프 - CompTIA Security+

우리와 연락하기

유용한 링크

최신 업데이트