SY0-301 Part 2

Question

Which of the following is seen as non-secure based on its ability to only store seven uppercase characters of data making it susceptible to brute force attacks?

Answer 1

HSM device

Answer 2

Locking cabinet

Answer 3

Device encryption

Answer 4

GPS tracking

Answer 5

Secure code review

Answer 6

Patch management

Answer 7

Penetration tests

Answer 8

Enact a policy that all work files are to be password protected

Answer 9

Enact a policy banning users from bringing in personal music devices

Answer 10

Provide users with unencrypted storage devices that remain on-site

Answer 11

Disallow users from saving data to any network share

Answer 12

Dumpster diving

Answer 13

Shoulder surfing

Answer 14

Tailgating

Answer 15

Impersonation

Answer 16

Preventive

Answer 17

Protective

Answer 18

LDAP injection

Answer 19

SQL injection

Answer 20

Error and exception handling

Answer 21

Cross-site scripting

Answer 22

RSA tokens

Answer 23

Multifactor authentication

Answer 24

Document scan results for the change control board

Answer 25

Organize data based on severity and asset value

Answer 26

Examine the vulnerability data using a network analyzer

Answer 27

Update antivirus signatures and apply patches

Answer 28

ARP poisoning

Answer 29

MAC spoofing

Answer 30

pWWN spoofing

Answer 31

DNS poisoning

Answer 32

Host intrusion detection

Answer 33

Network firewall

Answer 34

Host-based firewall

Answer 35

VPN concentrator

Answer 36

Password behaviors

Answer 37

Clean desk policy

Answer 38

Data handling

Answer 39

Data disposal

Answer 40

Application hardening

Answer 41

OS hardening

Answer 42

Application patch management

Answer 43

SQL injection

Answer 44

Segmentation of each wireless user from other wireless users

Answer 45

Disallows all users from communicating directly with the AP

Answer 46

Hides the service set identifier

Answer 47

Makes the router invisible to other routers

Answer 48

IP allow any any

Answer 49

Implicit deny

Answer 50

Separation of duties

Answer 51

Time of day restrictions

Answer 52

Buffer overflow

Answer 53

XML injection

Answer 54

SQL injection

Answer 55

Distributed denial of service

Answer 56

It must use elliptical curve encryption

Answer 57

It requires a HSM file system

Answer 58

It only works when data is not highly fragmented

Answer 59

It is faster than software encryption

Answer 60

It is available on computers using TPM

Answer 61

User access control

Answer 62

Patch management

Answer 63

Intrusion prevention

Answer 64

Application hardening

Answer 65

System security categorization requirement

Answer 66

Baseline configuration development

Answer 67

Contingency planning

Answer 68

Least privilege implementation

Answer 69

Decrypting wireless messages

Answer 70

Decrypting the hash of an electronic signature

Answer 71

Bulk encryption of IP based email traffic

Answer 72

Encrypting web browser traffic

Answer 73

Passive vulnerability scan

Answer 74

Spam filter

Answer 75

Malware inspection

Answer 76

Platform as a Service

Answer 77

Software as a Service

Answer 78

Infrastructure as a Service

Answer 79

Trusted OS as a Service

Answer 80

Separation of duties

Answer 81

Time of day restrictions

Answer 82

Access control lists

Answer 83

Mandatory access control

Answer 84

Single sign-on

Answer 85

Fire suppression

Answer 86

Video monitoring

Answer 87

EMI shielding

Answer 88

Hot and cold aisles

Answer 89

Focus groups

Answer 90

Asset value

Answer 91

Best practice

Answer 92

High speed secure removable storage device

Answer 93

Third party certificate trust authority

Answer 94

Hardware chip that stores encryption keys

Answer 95

A trusted OS model

Answer 96

Key escrow

Answer 97

Recovery agent

Answer 98

Vulnerability scanning

Answer 99

Zero day attack

Answer 100

Port scanning

Answer 101

Penetration testing

Answer 102

NIPS is blocking activities from those specific websites

Answer 103

NIDS is blocking activities from those specific websites

Answer 104

The firewall is blocking web activity

Answer 105

The router is denying all traffic from those sites

Answer 106

SSID broadcast

Answer 107

MAC filtering

Answer 108

AP isolation

Answer 109

Password complexity requirements

Answer 110

Phishing techniques

Answer 111

Handling PII

Answer 112

Tailgating techniques

Answer 113

public key

Answer 114

recovery agent

Answer 115

key escrow account

Answer 116

private key

Answer 117

To passively test security controls within the enterprise

Answer 118

To provide training to white hat attackers

Answer 119

To identify all vulnerabilities and weaknesses within the enterprise

Answer 120

To determine the potential impact of a threat against the enterprise

Answer 121

Digital signatures

Answer 122

Transport encryption

Answer 123

Steganography

Answer 124

Apply a security control which ties specific ports to end-device MAC addresses and prevents additional devices from being connected to the network

Answer 125

Apply a security control which ties specific networks to end-device IP addresses and prevents new devices from being connected to the network

Answer 126

Apply a security control which ties specific ports to end-device MAC addresses and prevents all devices from being connected to the network

Answer 127

Apply a security control which ties specific ports to end-device IP addresses and prevents mobile devices from being connected to the network

Answer 128

Exception handling

Answer 129

Cross-site request forgery

Answer 130

Cross-site scripting

Answer 131

Accounting transferring confidential staff details via SFTP to the payroll department

Answer 132

Back office staff accessing and updating details on the mainframe via SSH

Answer 133

Encrypted backup tapes left unattended at reception for offsite storage

Answer 134

Developers copying data from production to the test environments via a USB stick

Answer 135

Availability

Answer 136

Biometrics

Answer 137

Confidentiality

Answer 138

A system that stops an attack in progress

Answer 139

A system that allows an attack to be identified

Answer 140

A system that logs the attack for later analysis

Answer 141

A system that serves as a honeypot

Answer 142

An attacker inside the company is performing a bluejacking attack on the user's laptop

Answer 143

Another user's Bluetooth device is causing interference with the Bluetooth on the laptop

Answer 144

The new access point was mis-configured and is interfering with another nearby access point

Answer 145

The attacker that breached the nearby company is in the parking lot implementing a war driving attack

Answer 146

mitigation

Answer 147

acceptance

Answer 148

elimination

Answer 149

transference

Answer 150

Change the server's SSL key and add the previous key to the CRL

Answer 151

Install a host-based firewall

Answer 152

Install missing security updates for the operating system

Answer 153

Add input validation to forms

Answer 154

The PC has become part of a botnet

Answer 155

The PC has become infected with spyware

Answer 156

The PC has become a spam host

Answer 157

The PC has become infected with adware

Answer 158

Disable unnecessary accounts

Answer 159

Print baseline configuration

Answer 160

Enable access lists

Answer 161

Disable unused ports

	Erstellt von Brooks Thornhill vor fast 8 Jahre

Nächster

SY0-301 Part 2

Beschreibung

Zusammenfassung der Ressource

Frage 1

Frage 2

Frage 3

Frage 4

Frage 5

Frage 6

Frage 7

Frage 8

Frage 9

Frage 10

Frage 11

Frage 12

Frage 13

Frage 14

Frage 15

Frage 16

Frage 17

Frage 18

Frage 19

Frage 20

Frage 21

Frage 22

Frage 23

Frage 24

Frage 25

Frage 26

Frage 27

Frage 28

Frage 29

Frage 30

Frage 31

Frage 32

Frage 33

Frage 34

Frage 35

Frage 36

Frage 37

Frage 38

Frage 39

Frage 40

Frage 41

Frage 42

Frage 43

Frage 44

Frage 45

Frage 46

Frage 47

Frage 48

Frage 49

Frage 50

ähnlicher Inhalt