CompTIA Security Plus Mock Test Q1752

Ann has read and written access to an employee database, while Joe has only read access. Ann is leaving for a conference. Which of the following types of authorization could be utilized to trigger write access for Joe when Ann is absent?

A. Mandatory access control
B. Role-based access control
C. Discretionary access control
D. Rule-based access control

Correct Answer: D
Section: Mixed Questions

CompTIA Security Plus Mock Test Q1692

An administrator has configured a new Linux server with the FTP service. Upon verifying that the service was configured correctly, the administrator has several users test the FTP service. Users report that they are able to connect to the FTP service and download their personal files, however, they cannot transfer new files to the server. Which of the following will most likely fix the uploading issue for the users?

A. Create an ACL to allow the FTP service write access to user directories
B. Set the Boolean selinux value to allow FTP home directory uploads
C. Reconfigure the ftp daemon to operate without utilizing the PSAV mode
D. Configure the FTP daemon to utilize PAM authentication pass through user permissions

Correct Answer: A
Section: Mixed Questions

CompTIA Security Plus Mock Test Q898

Joe Has read and write access to his own home directory. Joe and Ann are collaborating on a project, and Joe would like to give Ann write access to one particular file in this home directory. Which of the following types of access control would this reflect?

A. Role-based access control
B. Rule-based access control
C. Mandatory access control
D. Discretionary access control


Correct Answer: D
Section: Access Control and Identity Management

Explanation:
Discretionary access control (DAC) allows access to be granted or restricted by an object’s owner based on user identity and on the discretion of the object owner.

Incorrect Answers:
A: Basically, Role-based Access Control is based on a user’s job description.
B: Rule-based access control is used for network devices that filter traffic based on filtering rules.
C: Mandatory Access Control allows access to be granted or restricted based on the rules of classification.

References:
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 278-284