QUESTION 231 During a penetration test from the Internet, Jane, the system administrator, was able to establish a connection to an internal router, but not successfully log in to it. Which ports and protocols are MOST likely to be open on the firewall? (Select FOUR). A. 21 B. 22 C. 23 D. 69 E. 3389 […]
Tag: SY0-401 Exam Questions
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (221-230)
QUESTION 221 In order for Sara, a client, to logon to her desktop computer, she must provide her username, password, and a four digit PIN. Which of the following authentication methods is Sara using? A. Three factor B. Single factor C. Two factor D. Four factor Answer: B
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (211-220)
QUESTION 211 Which of the following protocols uses an asymmetric key to open a session and then establishes a symmetric key for the remainder of the session? A. SFTP B. HTTPS C. TFTP D. TLS Answer: B
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (201-210)
QUESTION 201 Users at a company report that a popular news website keeps taking them to a web page with derogatory content. This is an example of which of the following? A. Evil twin B. DNS poisoning C. Vishing D. Session hijacking Answer: B
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (191-200)
QUESTION 191 Which of the following can be used to mitigate risk if a mobile device is lost? A. Cable lock B. Transport encryption C. Voice encryption D. Strong passwords Answer: D
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (181-190)
QUESTION 181 Which of the following can use RC4 for encryption? (Select TWO). A. CHAP B. SSL C. WEP D. AES E. 3DES Answer: BC
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (171-180)
QUESTION 171 In which of the following scenarios is PKI LEAST hardened? A. The CRL is posted to a publicly accessible location. B. The recorded time offsets are developed with symmetric keys. C. A malicious CA certificate is loaded on all the clients. D. All public keys are accessed by an unauthorized user. Answer: C
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (161-170)
QUESTION 161 Which of the following transportation encryption protocols should be used to ensure maximum security between a web browser and a web server? A. SSLv2 B. SSHv1 C. RSA D. TLS Answer: D
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (151-160)
QUESTION 151 Sara, a user, downloads a keygen to install pirated software. After running the keygen, system performance is extremely slow and numerous antivirus alerts are displayed. Which of the following BEST describes this type of malware? A. Logic bomb B. Worm C. Trojan D. Adware Answer: C
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (141-150)
QUESTION 141 Which of the following BEST describes a protective countermeasure for SQL injection? A. Eliminating cross-site scripting vulnerabilities B. Installing an IDS to monitor network traffic C. Validating user input in web applications D. Placing a firewall between the Internet and database servers Answer: C
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (131-140)
QUESTION 131 Which of the following solutions provides the most flexibility when testing new security controls prior to implementation? A. Trusted OS B. Host software baselining C. OS hardening D. Virtualization Answer: D
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (121-130)
QUESTION 121 Which of the following protocols is used to validate whether trust is in place and accurate by returning responses of either "good", "unknown", or "revoked"? A. CRL B. PKI C. OCSP D. RA Answer: C
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (111-120)
QUESTION 111 Human Resources suspects an employee is accessing the employee salary database. The administrator is asked to find out who it is. In order to complete this task, which of the following is a security control that should be in place? A. Shared accounts should be prohibited. B. Account lockout should be enabled C. […]
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (101-110)
QUESTION 101 Ann, a security administrator, has concerns regarding her company’s wireless network. The network is open and available for visiting prospective clients in the conference room, but she notices that many more devices are connecting to the network than should be. Which of the following would BEST alleviate Ann’s concerns with minimum disturbance of […]
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (91-100)
QUESTION 91 The security team would like to gather intelligence about the types of attacks being launched against the organization. Which of the following would provide them with the MOST information? A. Implement a honeynet B. Perform a penetration test C. Examine firewall logs D. Deploy an IDS Answer: A
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (81-90)
QUESTION 81 Users are encouraged to click on a link in an email to obtain exclusive access to the newest version of a popular Smartphone. This is an example of. A. scarcity. B. familiarity. C. intimidation. D. trust. Answer: A
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (71-80)
QUESTION 71 A computer is suspected of being compromised by malware. The security analyst examines the computer and finds that a service called Telnet is running and connecting to an external website over port 443. This Telnet service was found by comparing the system’s services to the list of standard services on the company’s system […]
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (61-70)
QUESTION 61 An administrator wants to establish a WiFi network using a high gain directional antenna with a narrow radiation pattern to connect two buildings separated by a very long distance. Which of the following antennas would be BEST for this situation? A. Dipole B. Yagi C. Sector D. Omni Answer: B
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (51-60)
QUESTION 51 A security administrator is reviewing the company’s continuity plan. The plan specifies an RTO of six hours and RPO of two days. Which of the following is the plan describing? A. Systems should be restored within six hours and no later than two days after the incident. B. Systems should be restored within […]
Free Download Latest 2014 Pass4sure&Lead2pass CompTIA SY0-401 Dumps (41-50)
QUESTION 41 A company is trying to limit the risk associated with the use of unapproved USB devices to copy documents. Which of the following would be the BEST technology control to use in this scenario? A. Content filtering B. IDS C. Audit logs D. DLP Answer: D