Latest CompTIA Security+ SY0-401 dumps pdf practice materials and study guides, and youtube demo free update from leads4pass. Get the best CompTIA Security+ SY0-401 dumps pdf and vce training materials. https://www.leads4pass.com/sy0-401.html dumps pdf practice files. leads4pass offers latest CompTIA Security+ SY0-401 dumps exam questions and answers, pass CompTIA SY0-401 exam test easily at first attempt.
Latest CompTIA SY0-401 dumps pdf questions and answers: https://drive.google.com/open?id=0B_7qiYkH83VRMEhpY1lTQnR4NDA
Latest CompTIA 220-902 dumps pdf questions and answers: https://drive.google.com/open?id=0B_7qiYkH83VROWdYZWlIRGdZbVU
Vendor: CompTIA
Certifications: Security+
Exam Name: CompTIA Security+ Certification Exam
Exam Code: SY0-401
Total Questions: 1776 Q&As
QUESTION 1
The IT department has installed new wireless access points but discovers that the signal extends far into the parking lot. Which of the following actions should be taken to correct this?
A. Disable the SSID broadcasting
B. Configure the access points so that MAC filtering is not used
C. Implement WEP encryption on the access points
D. Lower the power for office coverage only
Correct Answer: D
QUESTION 2
A security guard has informed the Chief information Security Officer that a person with a tablet has been walking around the building. The guard also noticed strange white markings in different areas of the parking lot. The person is attempting which of the following types of attacks?
A. Jamming
B. War chalking
C. Packet sniffing
D. Near field communication
Correct Answer: B
QUESTION 3
Several employee accounts appear to have been cracked by an attacker. Which of the following should the security administrator implement to mitigate password cracking attacks? SY0-401 dumps (Select TWO).
A. Increase password complexity
B. Deploy an IDS to capture suspicious logins
C. Implement password history
D. Implement monitoring of logins
E. Implement password expiration
F. Increase password length
Correct Answer: AF
QUESTION 4
To ensure compatibility with their flagship product, the security engineer is tasked to recommend an encryption cipher that will be compatible with the majority of third party software and hardware vendors.
Which of the following should be recommended?
A. SHA
B. MD5
C. Blowfish
D. AES
Correct Answer: D
QUESTION 5
A security Operations Center was scanning a subnet for infections and found a contaminated machine. SY0-401 pdf
One of the administrators disabled the switch port that the machine was connected to, and informed a local technician of the infection. Which of the following steps did the administrator perform?
A. Escalation
B. Identification
C. Notification
D. Quarantine
E. Preparation
Correct Answer: CD
QUESTION 6
While setting up a secure wireless corporate network, which of the following should Pete, an administrator, avoid implementing?
A. EAP-TLS
B. PEAP
C. WEP
D. WPA
Correct Answer: C
QUESTION 7
A risk assessment team is concerned about hosting data with a cloud service provider (CSP) which of the following findings would justify this concern?
A. The CPS utilizes encryption for data at rest and in motion
B. The CSP takes into account multinational privacy concerns
C. The financial review indicates the company is a startup
D. SLA state service tickets will be resolved in less than 15 minutes
Correct Answer: B
QUESTION 8
Which of the following protocols uses an asymmetric key to open a session and then establishes a symmetric key for the remainder of the session?
A. SFTP
B. HTTPS
C. TFTP
D. TLS
Correct Answer: D
QUESTION 9
A small IT security form has an internal network composed of laptops, servers, and printers. The network has both wired and wireless segments and supports VPN access from remote sites. To protect the network from internal and external threats, including social engineering attacks, the company decides to implement stringent security controls. SY0-401 dumps Which of the following lists is the BEST combination of security controls to implement?
A. Disable SSID broadcast, require full disk encryption on servers, laptop, and personally owned electronic devices, enable MAC filtering on WAPs, require photographic ID to enter the building.
B. Enable port security; divide the network into segments for servers, laptops, public and remote users; apply ACLs to all network equipment; enable MAC filtering on WAPs; and require two-factor authentication for network access.
C. Divide the network into segments for servers, laptops, public and remote users; require the use of one time pads for network key exchange and access; enable MAC filtering ACLs on all servers.
D. Enable SSID broadcast on a honeynet; install monitoring software on all corporate equipment’ install CCTVs to deter social engineering; enable SE Linux in permissive mode.
Correct Answer: B
QUESTION 10
A computer on a company network was infected with a zero-day exploit after an employee accidently opened an email that contained malicious content. The employee recognized the email as malicious and was attempting to delete it, but accidently opened it. Which of the following should be done to prevent this scenario from occurring again in the future?
A. Install host-based firewalls on all computers that have an email client installed
B. Set the email program default to open messages in plain text
C. Install end-point protection on all computers that access web email
D. Create new email spam filters to delete all messages from that sender
Correct Answer: C
Reference: https://www.leads4pass.com/sy0-401.html dumps pdf questions and answers free update.
Watch the video to learn more:
https://youtu.be/Ti0gVvsg5eI