The latest CompTIA Security+ (SY0-501) certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the CompTIA Security+ (SY0-501) exam and earn CompTIA Security+ (SY0-501) certification.
Exam Question 631
A security administrator wants to implement a logon script that will prevent MITM attacks on the local LAN.
Which of the following commands should the security administrator implement within the script to accomplish this task?
A. arp – s 192.168.1.1 00-3a-d1-fa-b1-06
B. dig – x @192.168.1.1 mypc.comptia.com
C. nmap – A – T4 192.168.1.1
D. tcpdump – lnv host 192.168.1.1 or other 00:3a:d1:fa:b1:06
A. Option A
B. Option B
C. Option C
D. Option D
Correct Answer:
A. Option A
Exam Question 632
Which of the following is the BEST reason for salting a password hash before it is stored in a database?
A. To prevent duplicate values from being stored
B. To make the password retrieval process very slow
C. To protect passwords from being saved in readable format
D. To prevent users from using simple passwords for their access credentials
Correct Answer:
A. To prevent duplicate values from being stored
Exam Question 633
A web developer improves client access to the company’s REST API. Authentication needs to be tokenized but not expose the client’s password.
Which of the following methods would BEST meet the developer’s requirements?
A. SAML
B. LDAP
C. OAuth
D. Shibboleth
Correct Answer:
A. SAML
Exam Question 634
Which of the following could help detect trespassers in a secure facility? (Select TWO)
A. Faraday cages
B. Motion-detection sensors
C. Tall, chain-link fencing
D. Security guards
E. Smart cards
Correct Answer:
B. Motion-detection sensors
D. Security guards
Exam Question 635
A third-party penetration testing company was able to successfully use an ARP cache poison technique to gain root access on a server. The tester successfully moved to another server that was not in the original network.
Which of the following is the MOST likely method used to gain access to the other host?
A. Backdoor
B. Pivoting
C. Persistance
D. Logic bomp
Correct Answer:
B. Pivoting
Exam Question 636
Ann, a security administrator, wants to ensure credentials are encrypted in transit when implementing a RADIUS server for SSO.
Which of the following are needed given these requirements? (Select TWO)
A. Public key
B. Shared key
C. Elliptic curve
D. MD5
E. Private key
F. DES
Correct Answer:
A. Public key
E. Private key
Exam Question 637
Which of the following are used to increase the computing time it takes to brute force a password using an offline attack? (Select TWO)
A. XOR
B. PBKDF2
C. bcrypt
D. HMAC
E. RIPEMD
Correct Answer:
B. PBKDF2
C. bcrypt
Exam Question 638
A security administrator needs to address the following audit recommendations for a public-facing SFTP server:
- Users should be restricted to upload and download files to their own home directories only.
- Users should not be allowed to use interactive shell login.
Which of the following configuration parameters should be implemented? (Select TWO).
A. PermitTunnel
B. ChrootDirectory
C. PermitTTY
D. AllowTcpForwarding
E. IgnoreRhosts
Correct Answer:
B. ChrootDirectory
C. PermitTTY
Exam Question 639
After a security incident, management is meeting with involved employees to document the incident and its aftermath.
Which of the following BEST describes this phase of the incident response process?
A. Lessons learned
B. Recovery
C. Identification
D. Preparation
Correct Answer:
A. Lessons learned
Exam Question 640
A penetration tester is conducting an assessment on Comptia.org and runs the following command from a coffee shop while connected to the public Internet: c:\nslookup -querytype=MX comptia.org
Server: Unknown
Address: 198.51.100.45
comptia.org MX preference=10, mail exchanger = 92.68.102.33 comptia.org MX preference=20, mail exchanger = exchg1.comptia.org exchg1.comptia.org internet address = 192.168.102.67
Which of the following should the penetration tester conclude about the command output?
A. The public/private views on the Comptia.org DNS servers are misconfigured.
B. Comptia.org is running an older mail server, which may be vulnerable to exploits.
C. The DNS SPF records have not been updated for Comptia.org.
D. 192.168.102.67 is a backup mail server that may be more vulnerable to attack.
Correct Answer:
D. 192.168.102.67 is a backup mail server that may be more vulnerable to attack.