CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
ComptiA Security+ Certification Exam Questions and answer - Part 40
1. A security engineer must install the same x.509 certificate on three different servers. The client application that connects to the server performs a check to ensure the certificate matches the host name. Which of the following should the security engineer use?
A) Wildcard certificate
B) Extended validation certificate
C) Certificate chaining
D) Certificate utilizing the SAN file
2. A security analyst is investigating a security breach. Upon inspection of the audit an access logs,the analyst notices the host was accessed and the /etc/passwd file was modified with a new entry for username - gotcha and user ID of 0. Which of the following are the MOST likely attack vector and tool the analyst should use to determine if the attack is still ongoing? (Select TWO)(Select 2answers)
A) Keylogger
B) Tracert
C) Logic bomb
D) Netstat
E) Ping
F) Backdoor
3. A procedure differs from a policy in that it:
A) describes adverse actions when violations occur.
B) is a high-level statement regarding the company's position on a topic.
C) provides step-by-step instructions for performing a task.
D) sets a minimum expected baseline of behavior.
4. A security analyst is hardening a WiFi infrastructure. The primary requirements are the following: The infrastructure must allow staff to authenticate using the most secure method. The infrastructure must allow guests to use an 'open' WiFi network that logs valid email addresses before granting access to the Internet. Given these requirements,which of the following statements BEST represents what the analyst should recommend and configure?
A) Configure a captive portal for guests and WPS for staff.
B) Configure a captive portal for staff and WEP for guests.
C) Configure a captive portal for guest and WPA2 Enterprise for staff
D) Configure a captive portal for staff and WPA for guests.
5. A security consultant is setting up a new electronic messaging platform and wants to ensure the platform supports message integrity validation. Which of the following protocols should the consultant recommend?
A) DNSSEC
B) S/MIME
C) RADIUS
D) 802.11x
A) Wildcard certificate
B) Extended validation certificate
C) Certificate chaining
D) Certificate utilizing the SAN file
2. A security analyst is investigating a security breach. Upon inspection of the audit an access logs,the analyst notices the host was accessed and the /etc/passwd file was modified with a new entry for username - gotcha and user ID of 0. Which of the following are the MOST likely attack vector and tool the analyst should use to determine if the attack is still ongoing? (Select TWO)(Select 2answers)
A) Keylogger
B) Tracert
C) Logic bomb
D) Netstat
E) Ping
F) Backdoor
3. A procedure differs from a policy in that it:
A) describes adverse actions when violations occur.
B) is a high-level statement regarding the company's position on a topic.
C) provides step-by-step instructions for performing a task.
D) sets a minimum expected baseline of behavior.
4. A security analyst is hardening a WiFi infrastructure. The primary requirements are the following: The infrastructure must allow staff to authenticate using the most secure method. The infrastructure must allow guests to use an 'open' WiFi network that logs valid email addresses before granting access to the Internet. Given these requirements,which of the following statements BEST represents what the analyst should recommend and configure?
A) Configure a captive portal for guests and WPS for staff.
B) Configure a captive portal for staff and WEP for guests.
C) Configure a captive portal for guest and WPA2 Enterprise for staff
D) Configure a captive portal for staff and WPA for guests.
5. A security consultant is setting up a new electronic messaging platform and wants to ensure the platform supports message integrity validation. Which of the following protocols should the consultant recommend?
A) DNSSEC
B) S/MIME
C) RADIUS
D) 802.11x
1. Right Answer: D
Explanation: SAN = Subject Alternate Names
2. Right Answer: D,F
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: B
Explanation:
Explanation: SAN = Subject Alternate Names
2. Right Answer: D,F
Explanation:
3. Right Answer: C
Explanation:
4. Right Answer: C
Explanation:
5. Right Answer: B
Explanation:
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment