SY0-301 Part 3

A security administrator is asked to email an employee their password. Which of the following account policies
MUST be set to ensure the employee changes their password promptly?

Which of the following is the BEST way to mitigate data loss if a portable device is compromised?

Data can potentially be stolen from a disk encrypted, screen-lock protected, smartphone by which of the
following?

A purpose of LDAP authentication services is:

Which of the following allows an attacker to identify vulnerabilities within a closed source software application?

Which of the following should the security administrator look at FIRST when implementing an AP to gain more
coverage?

Which of the following elements of PKI are found in a browser's trusted root CA?

Which of the following protocols should be blocked at the network perimeter to prevent host enumeration by
sweep devices?

Which of the following security threats does shredding mitigate?

A thumbprint scanner is used to test which of the following aspects of human authentication?

Which of the following protocols requires the use of a CA based authentication process?

Which of the following is specific to a buffer overflow attack?

An existing application has never been assessed from a security perspective. Which of the following is the
BEST assessment technique in order to identify the application's security posture?

A security administrator with full administrative rights on the network is forced to change roles on a quarterly
basis with another security administrator. Which of the following describes this form of access control?

DRPs should contain which of the following?

Which of the following is a security threat that hides itself within another piece of executable software?

A user was trying to update an open file but when they tried to access the file they were denied. Which of the
following would explain why the user could not access the file?

Which of the following organizational documentation describes step by step how tasks or job functions should
be conducted?

According to company policy an administrator must logically keep the Human Resources department separated
from the Accounting department. Which of the following would be the simplest way to accomplish this?

Which of the following is the MOST common logical access control method?

Which of the following access control methods could the administrator implement because of constant hiring of
new personnel?

After a period of high employee turnover, which of the following should be implemented?

Multiple web servers are fed from a load balancer. Which of the following is this an example of?

An instance where an IDS identifies legitimate traffic as malicious activity is called which of the following?

Which of the following sends unsolicited messages to another user cell phone via Bluetooth?

Which of the following network protocols facilitates hiding internal addresses from the Internet?

An administrator wishes to deploy an IPSec VPN connection between two routers across a WAN. The
administrator wants to ensure that the VPN is encrypted in the most secure fashion possible. Which of the
following BEST identifies the correct IPSec mode and the proper configuration?

A company wants to ensure that users only use their accounts between 8AM and 6PM Monday thru Friday.
Which of the following access control methods would be MOST effective for this purpose?

Which of the following sends data packets to various IP ports on a host to determine the responsive ports?

Which of the following would be a benefit of testing a program of an unknown source on a virtual machine?

A company has a problem with users inadvertently posting company information on the Internet. Which of the
following is the BEST method for the company to address it?

Which of the following describes what has occurred after a user has successfully gained access to a secure
system?

Which of the following is a benefit of applying operating system service packs, patches, and hotfixes?

Which of the following standards encodes messages blocks of 64-bit and uses 56 bits for the encryption key?

A user reports that after searching the Internet for office supplies and visiting one of the search engine results
websites, they began receiving unsolicited pop-ups on subsequent website visits. Which of the following is the
MOST likely cause of the unsolicited pop-ups?

Which of the following encryption methods uses prime number factoring to obtain its strength?

An administrator is required to keep certain workstations free of malware at all times, but those workstations
need to be able to access any Internet site. Which of the following solutions would be the BEST choice?

A network administrator places a firewall between a file server and the public Internet and another firewall
between the file server and the company internal servers. This is an example of which of the following design
elements?

Which of the following redundancy planning concepts is generally the MOST expensive?

Which of the following behavior-based security appliances are used to block suspicious activity from entering
the network?

Which of the following design elements could be set to only allow machines on the network if they are current
with patches and antivirus definitions?

Which of the following would be implemented to detect attacks on an individual system?

Which of the following logs would MOST likely indicate that there is an ongoing brute force attack against a
server local administrator account?

Which of the following is a best practice for coding applications in a secure manner?

Which of the following may be an indication of a possible system compromise?

Which of the following authentication methods would MOST likely prevent an attacker from being able to
successfully deploy a replay attack?

Which of the following allows an attacker to manipulate files by using the least significant bit(s) to secretly
embed data?