CompTIA Security+ Cert Prep #57 (25)

comptia-security-cert-prep-57-25

Exit

Question 1 of 1

Time Left

244309

120

block

A website is breached, exposing the usernames and MD5 password hashes of its entire user base. Many of these passwords are later cracked using rainbow tables. Which of the following actions could have helped prevent the use of rainbow tables on the password hashes?

Select the correct answer(s).

(0/0)

244310

120

none

Joe a network administrator is setting up a virtualization host that has additional storage requirements. Which of the following protocols should be used to connect the device to the company SAN? (Select Two)

Select the correct answer(s).

(0/0)

244311

120

none

A security administrator finds that an intermediate CA within the company was recently breached. The certificates held on this system were lost during the attack, and it is suspected that the attackers had full access to the system. Which of the following is the NEXT action to take in this scenario?

Select the correct answer(s).

(0/0)

244312

120

none

A recent online password audit has identified that stale accounts are at risk to brute force attacks. Which the following controls would best mitigate this risk?

Select the correct answer(s).

(0/0)

244313

120

none

The security administrator generates a key pair and sends one key inside a rest file to a third party. The third party sends back a signed file. In this scenario, the file sent by the administrator is a:

Select the correct answer(s).

(0/0)

244314

120

none

Joe, a security technician, is configuring two new firewalls through the web on each. Each time Joe connects, there is a warning message in the browser window about the certificate being untrusted. Which of the following will allow Joe to configure a certificate for the firewall so that firewall administrators are able to connect both firewalls without experiencing the warning message?

Select the correct answer(s).

(0/0)

244315

120

none

A company has had their web application become unavailable several times in the past few months due to increased demand. Which of the following should the company perform to increase availability?

Select the correct answer(s).

(0/0)

244316

120

none

A system administrator wants to prevent password compromises from offline password attacks. Which of the following controls should be configured to BEST accomplish this task? (Select TWO)

Select the correct answer(s).

(0/0)

244317

120

none

A company recently experienced several security breaches that resulted in confidential data being infiltrated form the network. The forensic investigation revealed that the data breaches were caused by an insider accessing files that resided in shared folders who then encrypted the data and sent it to contacts via third party email. Management is concerned that other employees may also be sending confidential files outside of the company to the same organization. Management has requested that the IT department implement a solution that will allow them to: Track access and sue of files marked confidential, provide documentation that can be sued for investigations, prevent employees from sending confidential data via secure third party email, identify other employees that may be involved in these activities. Which of the following would be the best choice to implement to meet the above requirements?

Select the correct answer(s).

(0/0)

244318

120

none

Which of the following BEST describes malware that tracks a user’s web browsing habits and injects the attacker’s advertisements into unrelated web pages? (Select TWO)

Select the correct answer(s).

(0/0)

244319

120

none

The chief security officer (CSO) has issued a new policy to restrict generic or shared accounts on company systems. Which of the following sections of the policy requirements will have the most impact on generic and shared accounts?

Select the correct answer(s).

(0/0)

244320

120

none

Joe an end user has received a virus detection warning. Which of the following is the first course of action that should be taken?

Select the correct answer(s).

(0/0)

244321

120

none

A company has several public conference room areas with exposed network outlets. In the past, unauthorized visitors and vendors have used the outlets for internet access. The help desk manager does not want the outlets to be disabled due to the number of training sessions in the conference room and the amount of time it takes to get the ports either patched in or enabled. Which of the following is the best option for meeting this goal?

Select the correct answer(s).

(0/0)

244322

120

none

An attacker unplugs the access point at a coffee shop. The attacker then runs software to make a laptop look like an access point and advertises the same network as the coffee shop normally does. Which of the following describes this type of attack?

Select the correct answer(s).

(0/0)

244323

120

none

A network administrator argues that WPA2 encryption is not needed, as MAC filtering is enabled on the access point. Which of the following would show the administrator that wpa2 is also needed?

CompTIA Security+ Cert Prep #57 (25)

Question 1 of 1

Time Left

A website is breached, exposing the usernames and MD5 password hashes of its entire user base. Many of these passwords are later cracked using rainbow tables. Which of the following actions could have helped prevent the use of rainbow tables on the password hashes?

Select the correct answer(s).

(0/0)

Joe a network administrator is setting up a virtualization host that has additional storage requirements. Which of the following protocols should be used to connect the device to the company SAN? (Select Two)

Select the correct answer(s).

(0/0)

Select the correct answer(s).

(0/0)

A recent online password audit has identified that stale accounts are at risk to brute force attacks. Which the following controls would best mitigate this risk?

Select the correct answer(s).

(0/0)

The security administrator generates a key pair and sends one key inside a rest file to a third party. The third party sends back a signed file. In this scenario, the file sent by the administrator is a:

Select the correct answer(s).

(0/0)

Select the correct answer(s).

(0/0)

A company has had their web application become unavailable several times in the past few months due to increased demand. Which of the following should the company perform to increase availability?

Select the correct answer(s).

(0/0)

A system administrator wants to prevent password compromises from offline password attacks. Which of the following controls should be configured to BEST accomplish this task? (Select TWO)

Select the correct answer(s).

(0/0)

Select the correct answer(s).

(0/0)

Which of the following BEST describes malware that tracks a user’s web browsing habits and injects the attacker’s advertisements into unrelated web pages? (Select TWO)

Select the correct answer(s).

(0/0)

The chief security officer (CSO) has issued a new policy to restrict generic or shared accounts on company systems. Which of the following sections of the policy requirements will have the most impact on generic and shared accounts?

Select the correct answer(s).

(0/0)

Joe an end user has received a virus detection warning. Which of the following is the first course of action that should be taken?

Select the correct answer(s).

(0/0)

Select the correct answer(s).

(0/0)

An attacker unplugs the access point at a coffee shop. The attacker then runs software to make a laptop look like an access point and advertises the same network as the coffee shop normally does. Which of the following describes this type of attack?

Select the correct answer(s).

(0/0)

A network administrator argues that WPA2 encryption is not needed, as MAC filtering is enabled on the access point. Which of the following would show the administrator that wpa2 is also needed?

Select the correct answer(s).

(0/0)

Results

Correct

0

Incorrect

0

Skipped

0

Overall Percentage

0%

Rate Quiz