CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
ComptiA Security+ Certification Exam Questions and answer - Part 20
1. An analyst is using a vulnerability scanner to look for common security misconfigurations on devices. Which of the following might be identified by the scanner? (Select TWO).(Select 2answers)
A) The firewall is disabled on workstations.
B) SSH is enabled on servers.
C) Browser homepages have not been customized.
D) Default administrator credentials exist on networking hardware.
E) The OS is only set to check for updates once a day.
2. An analyst receives an alert from the SIEM showing an IP address that does not belong to the assigned network can be seen sending packets to the wrong gateway. Which of the following network devices is misconfigured and which of the following should be done to remediate the issue?
A) Firewall,implement an ACL on the interface
B) Router,place the correct subnet on the interface
C) Switch,modify the access port to trunk port
D) Proxy,add the correct transparent interface
3. An analyst wants to implement a more secure wireless authentication for office access points. Which of the following technologies allows for encrypted authentication of wireless clients over TLS?
A) PEAP
B) EAP
C) WPA2
D) RADIUS
4. An application developer has neglected to include input validation checks in the design of the company - s new web application. An employee discovers that repeatedly submitting large amounts of data,including custom code,to an application will allow the execution of the custom code at the administrator level. Which of the following BEST identifies this application attack?
A) Cross-site scripting
B) Clickjacking
C) Buffer overflow
D) Replay
5. An application developer is designing an application involving secure transports from one service to another that will pass over port 80 for a request. Which of the following secure protocols is the developer MOST likely to use?
A) FTPS
B) SFTP
C) SSL
D) LDAPS
E) SSH
A) The firewall is disabled on workstations.
B) SSH is enabled on servers.
C) Browser homepages have not been customized.
D) Default administrator credentials exist on networking hardware.
E) The OS is only set to check for updates once a day.
2. An analyst receives an alert from the SIEM showing an IP address that does not belong to the assigned network can be seen sending packets to the wrong gateway. Which of the following network devices is misconfigured and which of the following should be done to remediate the issue?
A) Firewall,implement an ACL on the interface
B) Router,place the correct subnet on the interface
C) Switch,modify the access port to trunk port
D) Proxy,add the correct transparent interface
3. An analyst wants to implement a more secure wireless authentication for office access points. Which of the following technologies allows for encrypted authentication of wireless clients over TLS?
A) PEAP
B) EAP
C) WPA2
D) RADIUS
4. An application developer has neglected to include input validation checks in the design of the company - s new web application. An employee discovers that repeatedly submitting large amounts of data,including custom code,to an application will allow the execution of the custom code at the administrator level. Which of the following BEST identifies this application attack?
A) Cross-site scripting
B) Clickjacking
C) Buffer overflow
D) Replay
5. An application developer is designing an application involving secure transports from one service to another that will pass over port 80 for a request. Which of the following secure protocols is the developer MOST likely to use?
A) FTPS
B) SFTP
C) SSL
D) LDAPS
E) SSH
1. Right Answer: A,E
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: A
Explanation: EAP by itself is only an authentication framework. PEAP (Protected Extensible Authentication Protocol) fully encapsulates EAP and is designed to work within a TLS (Transport Layer Security) tunnel that may be encrypted but is authenticated. The primary motivation behind the creation of PEAP was to help correct the deficiencies discovered within EAP since that protocol assumes that the communications channel is protected. As a result,when EAP messages are able to be discovered in the clear they do not provide the protection that was assumed when the protocol was originally authored. PEAP,EAP-TTLS,and EAP-TLS protect inner EAP authentication within SSL/TLS sessions.
4. Right Answer: C
Explanation:
5. Right Answer: C
Explanation:
Explanation:
2. Right Answer: B
Explanation:
3. Right Answer: A
Explanation: EAP by itself is only an authentication framework. PEAP (Protected Extensible Authentication Protocol) fully encapsulates EAP and is designed to work within a TLS (Transport Layer Security) tunnel that may be encrypted but is authenticated. The primary motivation behind the creation of PEAP was to help correct the deficiencies discovered within EAP since that protocol assumes that the communications channel is protected. As a result,when EAP messages are able to be discovered in the clear they do not provide the protection that was assumed when the protocol was originally authored. PEAP,EAP-TTLS,and EAP-TLS protect inner EAP authentication within SSL/TLS sessions.
4. Right Answer: C
Explanation:
5. Right Answer: C
Explanation:
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment