CompTIA Security Plus Mock Test Q958

Account lockout is a mitigation strategy used by Jane, the administrator, to combat which of the following attacks? (Select TWO).

A. Spoofing
B. Man-in-the-middle
C. Dictionary
D. Brute force
E. Privilege escalation

Correct Answer: C,D
Section: Access Control and Identity Management

Explanation:
Account lockout is a useful method for slowing down online password-guessing attacks. A dictionary attack performs password guessing by making use of a pre-existing list of likely
passwords. A brute-force attack is intended to try every possible valid combination of characters to create possible passwords in the attempt to discover the specific passwords used
by user accounts.

Incorrect Answers:
A: Spoofing is the act of falsifying data by changing the source addresses of network packets.
B: A man-in-the-middle attack is a type of communications eavesdropping attack.
E: Privilege escalation is a breach of authorization restrictions and may be a breach of authentication.

References:
https://www.ultimatewindowssecurity.com/wiki/WindowsSecuritySettings/Account-Lockout-Policy
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 168, 173, 176, 319