[2021] SYO-501 PDF Questions - Perfect Prospect To Go With Prep4SureReview Practice Exam
CompTIA SYO-501 Pdf Questions - Outstanding Practice To your Exam
NEW QUESTION 118
A user receives a security alert pop-up from the host-based IDS, and a few minutes later notices a document on the desktop has disappeared and in its place is an odd filename with no icon image. When clicking on this icon, the user receives a system notification that it cannot find the correct program to use to open this file.
Which of the following types of malware has MOST likely targeted this workstation?
- A. Spyware
- B. Rootkit
- C. Remote-access Trojan
- D. Ransomware
Answer: D
NEW QUESTION 119
A company wants to host a publicly available server that performs the following functions:
* Evaluates MX record lookup
* Can perform authenticated requests for A and AAA records
* Uses RRSIG
Which of the following should the company use to fulfill the above requirements?
- A. LDAPS
- B. DNSSEC
- C. dig
- D. SFTP
- E. nslookup
Answer: B
Explanation:
Explanation
DNS Security Extensions (DNSSEC) provides, among other things, cryptographic authenticity of responses using Resource Record Signatures (RRSIG) and authenticated denial of existence using Next-Secure (NSEC) and Hashed-NSEC records (NSEC3).
NEW QUESTION 120
A security administrator wants to implement strong security on the company smart phones and terminal servers located in the data center.
Drag and drop the applicable controls to each asset types?
Instructions: Controls can be used multiple times and not all placeholders need to be filled. When you have completed the simulation, please select the Done button to submit.
Answer:
Explanation:
Explanation
NEW QUESTION 121
You have been tasked with designing a security plan for your company. Drag and drop the appropriate security controls on the floor plan.
Instructions: All objects must be used and all place holders must be filled. Order does not matter. When you have completed the simulation, please select the Done button to submit.
Answer:
Explanation:
Explanation
Cable locks - Adding a cable lock between a laptop and a desk prevents someone from picking it up and walking away Proximity badge + reader Safe is a hardware/physical security measure Mantrap can be used to control access to sensitive areas. CCTV can be used as video surveillance.
Biometric reader can be used to control and prevent unauthorized access. Locking cabinets can be used to protect backup media, documentation and other physical artifacts.
NEW QUESTION 122
A company wants to host a publicly available server that performs the following functions:
* Evaluates MX record lookup
* Can perform authenticated requests for A and AAA records
* Uses RRSIG
Which of the following should the company use to fulfill the above requirements?
- A. LDAPS
- B. DNSSEC
- C. SFTP
- D. dig
- E. nslookup
Answer: D
NEW QUESTION 123
CORRECT TEXT
You have just received some room and WiFi access control recommendations from a security consulting company. Click on each building to bring up available security controls.
Please implement the following requirements:
* The Chief Executive Officer's (CEO) office had multiple redundant security measures installed on the door to the office. Remove unnecessary redundancies to deploy three- factor authentication, while retaining the expensive iris render.
* The Public Cafe has wireless available to customers. You need to secure the WAP with WPA and place a passphrase on the customer receipts.
* In the Data Center you need to include authentication from the "something you know" category and take advantage of the existing smartcard reader on the door.
* In the Help Desk Office you need to require single factor authentication through the use of physical tokens given to guests by the receptionist.
* The PII Office has redundant security measures in place. You need to eliminate the redundancy while maintaining three-factor authentication and retaining the more expensive controls.
Instructions: The original security controls for each office can be reset at anytime by selecting the Reset button. Once you have met the above requirements for each office, select the Save button.
When you have completed the entire simulation, please select the Done button to submit.
Once the simulation is submitted, please select the Next button to continue.




Answer:
Explanation:
Please refer to the Explanation part to solve this sim.
Explanation:
Use the following to get this sim work as :



NEW QUESTION 124
A security administrator has been tasked with improving the overall security posture related to desktop machines on the network. An auditor has recently that several machines with confidential customer information displayed in the screens are left unattended during the course of the day.
Which of the following could the security administrator implement to reduce the risk associated with the finding?
- A. Implement a clean desk policy
- B. Install privacy screens on monitors
- C. Enable group policy based screensaver timeouts
- D. Security training to prevent shoulder surfing
Answer: C
NEW QUESTION 125
A junior systems administrator noticed that one of two hard drives in a server room had a red error notification.
The administrator removed the hard drive to replace it but was unaware that the server was configured in an array. Which of the following configurations would ensure no data is lost?
- A. RAID 0
- B. RAID 2
- C. RAID 1
- D. RAID 3
Answer: C
NEW QUESTION 126
Drag and drop the correct protocol to its default port.
Answer:
Explanation:
Explanation
FTP uses TCP port 21. Telnet uses port 23.
SSH uses TCP port 22.
All protocols encrypted by SSH, including SFTP, SHTTP, SCP, SExec, and slogin, also use TCP port 22.
Secure Copy Protocol (SCP) is a secure file-transfer facility based on SSH and Remote Copy Protocol (RCP).
Secure FTP (SFTP) is a secured alternative to standard File Transfer Protocol (FTP). SMTP uses TCP port 25.
Port 69 is used by TFTP.
SNMP
makes use of UDP ports 161 and 162. http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
NEW QUESTION 127
A network administrator was concerned during an audit that users were able to use the same password the day after a password change policy took effect. The following settings are in place:
Which of the following settings would prevent users from able to immediately reuse the same passwords?
- A. Password length greater than ten characters
- B. Minimum password age of five days
- C. Complex passwords must be used
- D. Password history of ten passwords
Answer: B
NEW QUESTION 128
A software developer wants to ensure that the application is verifying that a key is valid before establishing SSL connections with random remote hosts on the Internet.
Which of the following should be used in the code? (Choose two.)
- A. OCSP
- B. Escrowed keys
- C. Software code private key
- D. Remote server public key
- E. SSL symmetric encryption key
Answer: A,C
Explanation:
Explanation/Reference:
NEW QUESTION 129
A forensic analyst is asked to respond to an ongoing network attack on a server. Place the items in the list below in the correct order in which the forensic analyst should preserve them.
Answer:
Explanation:
Explanation:
When dealing with multiple issues, address them in order of volatility (OOV); always deal with the most volatile first. Volatility can be thought of as the amount of time that you have to collect certain data before a window of opportunity is gone. Naturally, in an investigation you want to collect everything, but some data will exist longer than others, and you cannot possibly collect all of it once. As an example, the OOV in an investigation may be RAM, hard drive data, CDs/DVDs, and printouts.
Order of volatility: Capture system images as a snapshot of what exists, look at network traffic and logs, capture any relevant video/screenshots/hashes, record time offset on the systems, talk to witnesses, and track total man-hours and expenses associated with the investigation.
NEW QUESTION 130
Select the appropriate attack and remediation from each drop-down list to label the corresponding attack with its remediation.
INSTRUCTIONS
Not all attacks and remediation actions will be used. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Answer:
Explanation:
Use the following settings for answer this simulation question.
NEW QUESTION 131
A systems administrator is reviewing the following information from a compromised server:
Given the above information, which of the following processes was MOST likely exploited via a remote buffer overflow attack?
- A. TFTP
- B. LSASS
- C. Apache
- D. MySQL
Answer: C
NEW QUESTION 132
A coding error has been discovered on a customer-facing website. The error causes each request to return confidential PHI data for the incorrect organization. The IT department is unable to identify the specific customers who are affected. As a result, all customers must be notified of the potential breach. Which of the following would allow the team to determine the scope of future incidents?
- A. Application fuzzing
- B. Intrusion detection system
- C. Monthly vulnerability scans
- D. Database access monitoring
Answer: A
Explanation:
Explanation
Fuzzing is a way of finding bugs using automation. It involves providing a wide range of invalid and unexpected data into an application application for exceptions. The invalid data used to fuzz an application could be crafted for a specific purpose, or randomly generated.
NEW QUESTION 133
......
Online Questions - Outstanding Practice To your SYO-501 Exam: https://www.prep4surereview.com/SYO-501-latest-braindumps.html
Practice To SYO-501 - Prep4SureReview Remarkable Practice On your CompTIA Security+ Certification Exam Exam: https://drive.google.com/open?id=1KWKLsHGcRmGuYi-n-fYn0sYacLbg7gTs
