michael smith0754
Quiz by , created more than 1 year ago

CompTIA Security+ PreTest

299
10
0
Tags
michael smith0754
Created by michael smith0754 almost 4 years ago
Close
  • CompTIA Security+

    Question 1 of 19

    1

    Which of the following security tools can Jane, a security administrator, use to deter theft?

    Select one of the following:

    • Visualization

    • Cable locks

    • GPS tracking

    • Device encryption

    Question 2 of 19

    1

    Which of the following can be implemented on a laptop hard drive to help prevent unauthorized access to data?

    Select one of the following:

    • Full disk encryption

    • Key escrow

    • Screen lock

    • Data loss prevention

    Question 3 of 19

    1

    Which of the following network devices allows Jane, a security technician, to perform malware inspection?

    Select one of the following:

    • Load balancer

    • VPN concentrator

    • Firewall

    • NIPS

    Question 4 of 19

    1

    Which of the following is a valid server-role in a Kerberos authentication system?

    Select one of the following:

    • Token issuing system

    • Security assertion server

    • Authentication agent

    • Ticket granting server

    Question 5 of 19

    1

    The accounting department needs access to network share A to maintain a number of financial reporting documents. The department also needs access to network share B in HR to view payroll documentation for cross-referencing items. Jane, an administrative assistant, needs access to view one document in network share A to gather data for management reports. Which of the following gives accounting and Jane the correct rights to these areas?

    Select one of the following:

    • Accounting should be given read/write access to network share A and read access to network share B. Jane should be given read access for the specific document on network share A.

    • Accounting should be given read/write access to network share A and read access to network share B. Jane should be given read access to network share A.

    • Accounting should be given full access to network share A and read access to network share B. Jane should be given read/write access for the specific document on network share A.

    • Accounting should be given full access to network share A and read access to network share B. Jane should be given read/write access to network share A.

    Question 6 of 19

    1

    Which of the following creates ciphertext by changing the placement of characters?

    Select one of the following:

    • Transposition cryptography

    • Hashing

    • Elliptical cryptography

    • Digital signatures

    Question 7 of 19

    1

    Which of the following malware types uses stealth techniques to conceal itself, cannot install itself without user interaction, and cannot automatically propagate?

    Select one of the following:

    • Rootkit

    • Logic bomb

    • Adware

    • Virus

    Question 8 of 19

    1

    When Pete, an employee, leaves a company, which of the following should be updated to ensure Pete's security access is reduced or eliminated?

    Select one of the following:

    • RSA

    • CA

    • PKI

    • CRL

    Question 9 of 19

    1

    Which of the following should Matt, an administrator, change FIRST when installing a new access point?

    Select one of the following:

    • SSID broadcast

    • Encryption

    • DHCP addresses

    • Default password

    Question 10 of 19

    1

    A datacenter has two rows of racks which are facing the same direction. Sara, a consultant, recommends the racks be faced away from each other. This is an example of which of the following environmental concepts?

    Select one of the following:

    • Fire suppression

    • Raised floor implementation

    • Hot and cool aisles

    • Humidity controls implementation

    Question 11 of 19

    1

    Which of the following password policies is the MOST effective against a brute force network attack?

    Select one of the following:

    • Password complexity

    • Password recovery

    • 30 day password expiration

    • Account lockout

    Question 12 of 19

    1

    Which of the following would BEST be used by Sara, the security administrator, to calculate the likelihood of an event occurring?

    Select one of the following:

    • SLE

    • ALE

    • ROI

    • ARO

    Question 13 of 19

    1

    Which of the following should Matt, an administrator, implement in a server room to help prevent static electricity?

    Select one of the following:

    • GFI electrical outlets

    • Humidity controls

    • ESD straps

    • EMI shielding

    Question 14 of 19

    1

    Sara, a company's security officer, often receives reports of unauthorized personnel having access codes to the cipher locks of secure areas in the building Sara should immediately implement which of the following?

    Select one of the following:

    • Acceptable Use Policy

    • Physical security controls

    • Technical controls

    • Security awareness training

    Question 15 of 19

    1

    Pete, an IT security technician, has been tasked with implementing physical security controls for his company's workstations. Which of the following BEST meets this need?

    Select one of the following:

    • Host-based firewalls

    • Safe

    • Cable locks

    • Remote wipe

    Question 16 of 19

    1

    Which of the following creates ciphertext by replacing one set of characters for another?

    Select one of the following:

    • Substitution cryptography

    • Elliptical cryptography

    • Digital signatures

    • Transposition cryptography

    Question 17 of 19

    1

    Sara, the IT Manager, would like to ensure that the router and switches are only available from the network administrator's workstation. Which of the following would be the MOST cost effective solution to ensure that only the network administrator can access these devices?

    Select one of the following:

    • Restrict console ports

    • Time of day restrictions

    • Implement ACLs

    • Implement an out-of-band administrative network

    Question 18 of 19

    1

    A company is performing internal security audits after a recent exploitation on one of their proprietary applications. Sara, the security auditor, is given the workstation with limited documentation regarding the application installed for the audit. Which of the following types of testing methods is this?

    Select one of the following:

    • Sandbox

    • White box

    • Black box

    • Gray box

    Question 19 of 19

    1

    A web server sitting in a secure DMZ has antivirus and anti-malware software which updates daily. The latest security patches are applied and the server does not run any database software. A day later, the web server is compromised and defaced. Which of the following is the MOST likely type of attack?

    Select one of the following:

    • Header manipulation

    • Zero day exploit

    • Session hijacking

    • SQL injection