CompTIA Security Plus Mock Test Q664

Several users report to the administrator that they are having issues downloading files from the file server. Which of the following assessment tools can be used to determine if there is an issue with the file server?

A. MAC filter list
B. Recovery agent
C. Baselines
D. Access list

Correct Answer: C
Section: Threats and Vulnerabilities

Explanation:
The standard configuration on a server is known as the baseline. In this question, we can see if anything has changed on the file server by comparing its current configuration with the
baseline.
The IT baseline protection approach is a methodology to identify and implement computer security measures in an organization. The aim is the achievement of an adequate and
appropriate level of security for IT systems. This is known as a baseline.
A baseline report compares the current status of network systems in terms of security updates, performance or other metrics to a predefined set of standards (the baseline).

Incorrect Answers:
A: A MAC filter list is a list of allowed or disallowed MAC addresses on a device that uses MAC filtering, for example, a network switch or a wireless access point. It is not used to
determine if there is an issue with a file server.
B: A recovery agent is a ‘master’ account that can recover access to files or other encrypted data in the event of a lost or corrupted digital certificate. In the example of EFS (Encrypted
File System), the recovery agent can unencrypt encrypted files if the user’s certificate that was used to encrypt the files is unavailable. A recovery agent is not used to determine if
there is an issue with a file server.
D: An access list is a list of authorized users or computers allowed to access a resource. It is not used to determine if there is an issue with a file server.

References:
http://en.wikipedia.org/wiki/IT_baseline_protection