CompTIA Security Plus Mock Test Q330

Why would a technician use a password cracker?

A. To look for weak passwords on the network
B. To change a user’s passwords when they leave the company
C. To enforce password complexity requirements
D. To change users passwords if they have forgotten them


Correct Answer: A
Section: Compliance and Operational Security

Explanation:
A password cracker will be able to expose weak passwords on a network.

Incorrect Answers:
B: Changing users’ passwords when they leave the company is not advisable – why not just eliminate their passwords to mitigate risk.
C: Enforcing password complexity would make the password stronger and not easily crackable.
D: If users happen to forget their passwords, then they should request a change in password rather than a technician using a password cracker.

References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, p. 407