CompTIA Security Plus Mock Test Q1602

An administrator wants to provide onboard hardware based cryptographic processing and secure key storage for full-disk encryption. Which of the following should the administrator use to fulfil the requirements?

A. AES
B. TPM
C. FDE
D. PAM

Correct Answer: B
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1597

While responding to an incident on a new Windows server, the administrator needs to disable unused services. Which of the following commands can be used to see processes that are listening on a TCP port?

A. IPCONFIG
B. Netstat
C. PSINFO
D. Net session

Correct Answer: B
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1589

An administrator needs to protect against downgrade attacks due to various vulnerabilities in SSL/TLS. Which of the following actions should be performed? (Select TWO)

A. Set minimum protocol supported
B. Request a new certificate from the CA
C. Configure cipher order
D. Disable flash cookie support
E. Re-key the SSL certificate
F. Add the old certificate to the CRL

Correct Answer: C,E
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1574

An administrator is hardening systems and wants to disable unnecessary services. One Linux server hosts files used by a Windows web server on another machine. The Linux server is only used for secure file transfer, but requires a share for the Windows web server as well. The administrator sees the following output from a netstat -1p command:

1574

Which of the following processes can the administrator kill without risking impact to the purpose and function of the Linux or Windows servers? (Select Three)

A. 1488
B. 1680
C. 2120
D. 2121
E. 2680
F. 8217


Correct Answer: A,D,F
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1557

An administrator deploys a WPA2 Enterprise wireless network with EAP-PEAP-MSCHAPv2. The deployment is successful and company laptops are able to connect automatically with no user intervention. A year later, the company begins to deploy phones with wireless capabilities. Users report that they are receiving a warning when they attempt to connect to the wireless network from their phones. Which of the following is the MOST likely cause of the warning message?

A. Mutual authentication on the phone is not compatible with the wireless network
B. The phones do not support WPA2 Enterprise wireless networks
C. User certificates were not deployed to the phones
D. The phones’ built in web browser is not compatible with the wireless network
E. Self-signed certificates were used on the RADIUS servers

Correct Answer: B
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1554

A corporate wireless guest network uses an open SSID with a captive portal to authenticate guest users. Guests can obtain their portal password at the service desk. A security consultant alerts the administrator that the captive portal is easily bypassed, as long as one other wireless guest user is on the network. Which of the following attacks did the security consultant use?

A. ARP poisoning
B. DNS cache poisoning
C. MAC spoofing
D. Rouge DHCP server

Correct Answer: C
Section: Mixed Questions