About the SY0-401 study guide, reliability can not be ignored. SY0-401 study guide of GetCertKey are specially designed. It can maximize the efficiency of your work. We are the best worldwide materials provider about this exam.
Exam Code: SY0-401 study guideExam Name: CompTIA Security+ Certification
One year free update, No help, Full refund!
SY0-401 study guide Exam Tests Total Q&A: 1750 Questions and Answers
Last Update: 12-28,2015
SY0-401 study guide Practice Exam Detail: SY0-401 study guide Exam Tests
NO.1 TION NO: 134
Which of the following ports is used for SSH, by default?
A. 12
B. 23
C. 32
D. 22
Answer: D
Explanation:
Secure Shell (SSH) is a cryptographic network protocol for securing data communication. It
establishes a secure channel over an insecure network in a client-server architecture, connecting an
SSH client application with an SSH server. Common applications include remote command-line login,
remote command execution, but any network service can be secured with SSH. SSH uses port 22.
NO.2 After a recent internal audit, the security administrator was tasked to ensure that all
credentials must be changed within 90 days, cannot be repeated, and cannot contain any dictionary
words or patterns. All credentials will remain enabled regardless of the number of attempts made.
Which of the following types of user account options were enforced? (Select TWO).
A. Password complexity
B. User assigned privileges
C. Group based privileges
D. Lockout
E. Disablement
F. Password expiration
G. Recovery
Answer: A,F
SY0-401 study guide Actual Test SY0-401 study guide test
Explanation:
Password complexity often requires the use of a minimum of three out of four standard character
types for a password. The more characters in a password that includes some character type
complexity, the more resistant it is to password-cracking techniques. In most cases, passwords are
set to expire every 90 days.
NO.3 Which of the following should a security technician implement to identify untrusted
certificates?
A. CRL
B. PKI
C. CA
D. Recovery agent
Answer: A
SY0-401 study guide
Explanation:
Untrusted certificates and keys are revoked and put into the CRL. Note: The CRL (Certificate
revocation list) is exactly what its name implies: a list of subscribers paired with digital certificate
status. The list enumerates revoked certificates along with the reason(s) for revocation. The dates of
certificate issue, and the entities that issued them, are also included.
NO.4 Which of the following firewall rules only denies DNS zone transfers?
A. deny all dns packets
B. deny udp any any port 53
C. deny ip any any
D. deny tcp any any port 53
Answer: D
SY0-401 study guide Study Guide
Explanation:
DNS operates over TCP and UDP port 53. TCP port 53 is used for zone transfers.
NO.5 During the analysis of a PCAP file, a security analyst noticed several communications with a
remote server on port 53. Which of the following protocol types is observed in this traffic?
A. Email
B. DNS
C. FTP
D. NetBIOS
Answer: B
SY0-401 study guide Actual Test
Explanation:
DNS (Domain Name System) uses port 53.
NO.6 RADIUS provides which of the following?
A. Authentication, Authorization, Availability
B. Authentication, Authorization, Auditing
C. Authentication, Accounting, Auditing
D. Authentication, Authorization, Accounting
Answer: D
Explanation:
The Remote Authentication Dial In User Service (RADIUS) networking protocol offers centralized
Authentication, Authorization, and Accounting (AAA) management for users who make use of a
network service. It is for this reason that A, B, and C: are incorrect.
References: http://en.wikipedia.org/wiki/RADIUS
NO.7 An organization is recovering data following a datacenter outage and determines that backup
copies of files containing personal information were stored in an unsecure location, because the
sensitivity was unknown. Which of the following activities should occur to prevent this in the future?
A. Data classification
B. Qualitative assessment
C. Quantitative assessment
D. Business continuity planning
Answer: A
SY0-401 exam dumps
Explanation:
Information classification is done by confidentiality and comprises of three categories, namely: public
use, internal use and restricted use. Knowing how to apply these categories and matching it up with
the appropriate data handling will address the situation of the data 'unknown sensitivity'
NO.8 Which of the following transportation encryption protocols should be used to ensure maximum
security between a web browser and a web server?
A. RSA
B. TLS
C. SSHv1
D. SSLv2
Answer: B
Explanation:
HTTP Secure HTTP Secure (HTTPS) is the protocol used for "secure" web pages that users should see
when they must enter personal information such as credit card numbers, passwords, and other
identifiers. It combines HTTP with SSL/TLS to provide encrypted communication. Transport Layer
Security (TLS) is a security protocol that expands upon SSL. Many industry analysts predict that TLS
will replace SSL, and it is also referred to as SSL 3.1.
GetCertKey offer the latest 1z1-425 exam material and high-quality 102-400 pdf questions & answers. Our 70-487 VCE testing engine and C_TFIN52_66 study guide can help you pass the real exam. High-quality MB7-702 dumps training materials can 100% guarantee you pass the exam faster and easier. Pass the exam to obtain certification is so simple.