CompTIA Security Plus Mock Test Q1680

A remote user (User1) is unable to reach a newly provisioned corporate windows workstation. The system administrator has been given the following log files from the VPN, corporate firewall and workstation host.

1680

Which of the following is preventing the remote user from being able to access the workstation?

A. Network latency is causing remote desktop service request to time out
B. User1 has been locked out due to too many failed passwords
C. Lack of network time synchronization is causing authentication mismatches
D. The workstation has been compromised and is accessing known malware sites
E. The workstation host firewall is not allowing remote desktop connections

Correct Answer: B
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1635

A system administrator wants to implement an internal communication system that will allow employees to send encrypted messages to each other. The system must also support non-repudiation. Which of the following implements all these requirements?

A. Bcrypt
B. Blowfish
C. PGP
D. SHA


Correct Answer: C
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1605

A system administrator is implementing a firewall ACL to block specific communication to and from a predefined list of IP addresses, while allowing all other communication. Which of the following rules is necessary to support this implementation?

A. Implicit allow as the last rule
B. Implicit allow as the first rule
C. Implicit deny as the first rule
D. Implicit deny as the last rule

Correct Answer: C
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1598

A system administrator must configure the company’s authentication system to ensure that users will be unable to reuse the last ten passwords within a six months period. Which of the following settings must be configured? (Select Two)

A. Minimum password age
B. Password complexity
C. Password history
D. Minimum password length
E. Multi-factor authentication
F. Do not store passwords with reversible encryption

Correct Answer: A,C
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1578

A system administrator runs a network inventory scan every Friday at 10:00 am to track the progress of a large organization’s operating system upgrade of all laptops. The system administrator discovers that some laptops are now only being reported as IP addresses. Which of the following options is MOST likely the cause of this issue?

A. HIDS
B. Host-based firewalls rules
C. All the laptops are currently turned off
D. DNS outage


Correct Answer: B
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1561

A system administrator wants to use open source software but is worried about the source code being comprised. As a part of the download and installation process, the administrator should verify the integrity of the software by:

A. Creating a digital signature of the file before installation
B. Using a secure protocol like HTTPS to download the file
C. Checking the hash against an official mirror that contains the same file
D. Encryption any connections the software makes

Correct Answer: C
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1488

A system administrator is conducting baseline audit and determines that a web server is missing several critical updates. Which of the following actions should the administrator perform first to correct the issue?

A. Open a service ticket according to the patch management plan
B. Disconnect the network interface and use the administrative management console to perform the updates
C. Perform a backup of the server and install the require patches
D. Disable the services for the web server but leave the server alone pending patch updates

Correct Answer: A
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1406

Joe the system administrator has noticed an increase in network activity from outside sources. He wishes to direct traffic to avoid possible penetration while heavily monitoring the traffic with little to no impact on the current server load. Which of the following would be BEST course of action?

A. Apply an additional firewall ruleset on the user PCs.
B. Configure several servers into a honeynet
C. Implement an IDS to protect against intrusion
D. Enable DNS logging to capture abnormal traffic

Correct Answer: B
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1381

After a few users report problems with the wireless network, a system administrator notices that a new wireless access point has been powered up in the cafeteria. The access point has the same SSID as the corporate network and is set to the same channel as nearby access points. However, the AP has not been connected to the Ethernet network. Which of the following is the MOST likely cause of the user’s wireless problems?

A. AP channel bonding
B. An evil twin attack
C. Wireless interference
D. A rogue access point

Correct Answer: B
Section: Mixed Questions