CompTIA Security+ Study Questions for the Security+ Exam| 799 questions| with complete solutions| 133 Pages

Pete, a network administrator, is capturing packets on the network and notices that a large amount of the traffic on the LAN is SIP and RTP protocols. Which of the following should he do to segment that traffic from the other traffic? A. Connect the WAP to a different switch B. Create a voice VLAN C. Create a DMZ D. Set the switch ports to 802.1q mode correct answer: Answer: B Which of the following security tools can Jane, a security administrator, use to deter theft? A. Virtualization B. Cable locks C. GPS tracking D. Device encryption correct answer: Answer: B Which of the following can be implemented on a laptop hard drive to help prevent unauthorized access to data? A. Full disk encryption B. Key escrow C. Screen lock D. Data loss prevention correct answer: Answer: A Which of the following network devices allows Jane, a security technician, to perform malware inspection? A. Load balancer B. VPN concentrator C. Firewall D. NIPS correct answer: Answer: D Which of the following is a valid server-role in a Kerberos authentication system? A. Token issuing system B. Security assertion server C. Authentication agent D. Ticket granting server correct answer: Answer: D The accounting department needs access to network share A to maintain a number of financial reporting documents. The department also needs access to network share B in HR to view payroll documentation for cross-referencing items. Jane, an administrative assistant, needs access to view one document in network share A to gather data for management reports. Which of the following gives accounting and Jane the correct rights to these areas? A. Accounting should be given read/write access to network share A and read access to network share B. Jane should be given read access for the specific document on network share A. B. Accounting should be given read/write access to network share A and read access to network share B. Jane should be given read access to network share A. C. Accounting should be given full access to network share A and read access to network share B. Jane should be given read/write access for the specific document on network share A. D. Accounting should be given full access to network share A and read access to network share B. Jane should be given read/write access to network share A. correct answer: Answer: A Which of the following creates ciphertext by changing the placement of characters? A. Transposition cryptography B. Hashing C. Elliptical cryptography D. Digital signatures correct answer: Answer: A Which of the following malware types uses stealth techniques to conceal itself, cannot install itself without user interaction, and cannot automatically propagate? A. Rootkit B. Logic bomb C. Adware D. Virus correct answer: Answer: A When Pete, an employee, leaves a company, which of the following should be updated to ensure Pete's security access is reduced or eliminated? A. RSA B. CA C. PKI D. CRL correct answer: Answer: D Which of the following should Matt, an administrator, change FIRST when installing a new access point? A. SSID broadcast B. Encryption C. DHCP addresses D. Default password correct answer: Answer: D A datacenter has two rows of racks which are facing the same direction. Sara, a consultant, recommends the racks be faced away from each other. This is an example of which of the following environmental concepts? A. Fire suppression B. Raised floor implementation C. Hot and cool aisles D. Humidity controls implementation correct answer: Answer: C Which of the following password policies is the MOST effective against a brute force network attack? A. Password complexity B. Password recovery C. 30 day password expiration D. Account lockout correct answer: Answer: D Which of the following would BEST be used by Sara, the security administrator, to calculate the likelihood of an event occurring? A. SLE B. ALE C. ROI D. ARO correct answer: Answer: D Which of the following should Matt, an administrator, implement in a server room to help prevent static electricity? A. GFI electrical outlets B. Humidity controls C. ESD straps D. EMI shielding correct answer: Answer: B Sara, a company's security officer, often receives reports of unauthorized personnel having access codes to the cipher locks of secure areas in the building Sara should immediately implement which of the following? A. Acceptable Use Policy B. Physical security controls C. Technical controls D. Security awareness training correct answer: Answer: D Pete, an IT security technician, has been tasked with implementing physical security controls for his company's workstations. Which of the following BEST meets this need? A. Host-based firewalls B. Safe C. Cable locks D.