401 SEC+ Exam Guaranteed Pass: Complete Solutions & Graded Questions with Correct Answers

401 SEC+ Exam Guaranteed Pass: Complete
Solutions & Graded Questions with Correct
Answers Tailored for Top Grades
Account lockout is a mitigation strategy used by Jane, the administrator, to combat which
of the following attacks? (Select TWO).

A. Spoofing

B. Man-in-the-middle

C. Dictionary

D. Brute force

E. Privilege escalation - -correct ans- -



A file on a Linux server has default permissions of rw-rw-r--. The system administrator has
verified that Ann, a user, is not a member of the group owner of the file. Which of the
following should be modified to assure that Ann has read access to the file?

A. User ownership information for the file in question

B. Directory permissions on the parent directory of the file in question

C. Group memberships for the group owner of the file in question

D. The file system access control list (FACL) for the file in question - -correct ans- -Answer:
C



Explanation:

The file permissions according to the file system access control list (FACL) are rw-rw-r--.

The first 'rw-' are the file owner permissions (read and write).

The second 'rw-' are the group permissions (read and write) for the group that has been
assigned the file.

The third 'r--' is the All Users permissions; in this case read only.

,To enable Ann to access the file, we should add Ann to the group that has been assigned to
the file.



Topic 6, Cryptography



Which of the following protocols uses an asymmetric key to open a session and then
establishes a symmetric key for the remainder of the session?

A. SFTP

B. HTTPS

C. TFTP

D. TLS - -correct ans- -Answer: D



Explanation:

SSL establishes a session using asymmetric encryption and maintains the session using
symmetric encryption.



A company uses PGP to ensure that sensitive email is protected. Which of the following
types of cryptography is being used here for the key exchange?

A. Symmetric

B. Session-based

C. Hashing

D. Asymmetric - -correct ans- -Answer: A



Explanation:

PGP combines symmetric-key encryption and public-key encryption. The message is
encrypted using a symmetric encryption algorithm, which requires a symmetric key. Each
symmetric key is used only once and is also called a session key.

, Which of the following is true about asymmetric encryption?

A. A message encrypted with the private key can be decrypted by the same key

B. A message encrypted with the public key can be decrypted with a shared key.

C. A message encrypted with a shared key, can be decrypted by the same key.

D. A message encrypted with the public key can be decrypted with the private key. - -
correct ans- -Answer: D



Explanation:

Asymmetric algorithms use two keys to encrypt and decrypt data. These asymmetric keys
are referred to as the public key and the private key. The sender uses the public key to
encrypt a message, and the receiver uses the private key to decrypt the message; what one
key does, the other one undoes



Encryption used by RADIUS is BEST described as:

A. Quantum

B. Elliptical curve

C. Asymmetric

D. Symmetric - -correct ans- -Answer: D



Explanation:

The RADIUS server uses a symmetric encryption method.

Note: Symmetric algorithms require both ends of an encrypted message to have the same
key and processing algorithms. Symmetric algorithms generate a secret key that must be
protected.



Symmetric encryption utilizes __________, while asymmetric encryption utilizes _________.

A. Public keys, one time

B. Shared keys, private keys