web analytics
Lead2pass SY0-401

  • [April 2018] Official SY0-401 Exam Preparation Download From Lead2pass 1868q

    Pass SY0-401 Exam By Exercising Lead2pass Latest SY0-401 VCE And PDF Dumps:

    https://www.lead2pass.com/sy0-401.html

    QUESTION 21
    The security administrator needs to manage traffic on a layer 3 device to support FTP from a new remote site. Which of the following would need to be implemented?

    A.    Implicit deny
    B.    VLAN management
    C.    Port security
    D.    Access control lists (more…)

  • [March 2018] Lead2pass Free CompTIA SY0-401 Braindumps VCE Updated 1868q

    Lead2pass Latest SY0-401 Free Dumps Guarantee SY0-401 Certification Exam 100% Success:

    https://www.lead2pass.com/sy0-401.html

    QUESTION 11
    An administrator would like to review the effectiveness of existing security in the enterprise. Which of the following would be the BEST place to start?

    A.    Review past security incidents and their resolution
    B.    Rewrite the existing security policy
    C.    Implement an intrusion prevention system
    D.    Install honey pot systems

    Answer: C
    Explanation:
    The main functions of intrusion prevention systems are to identify malicious activity, log information about this activity, attempt to block/stop it, and report it

    QUESTION 12
    A company has proprietary mission critical devices connected to their network which are configured remotely by both employees and approved customers. The administrator wants to monitor device security without changing their baseline configuration.
    Which of the following should be implemented to secure the devices without risking availability?

    A.    Host-based firewall
    B.    IDS
    C.    IPS
    D.    Honeypot

    Answer: B
    Explanation:
    An intrusion detection system (IDS) is a device or software application that monitors network or system activities for malicious activities or policy violations and produces reports to a management station. IDS come in a variety of “flavors” and approach the goal of detecting suspicious traffic in different ways. There are network based (NIDS) and host based (HIDS) intrusion detection systems. Some systems may attempt to stop an intrusion attempt but this is neither required nor expected of a monitoring system. Intrusion detection and prevention systems (IDPS) are primarily focused on identifying possible incidents, logging information about them, and reporting attempts. In addition, organizations use IDPSes for other purposes, such as identifying problems with security policies, documenting existing threats and deterring individuals from violating security policies. IDPSes have become a necessary addition to the security infrastructure of nearly every organization.
    IDPSes typically record information related to observed events, notify security administrators of important observed events and produce reports. Many IDPSes can also respond to a detected threat by attempting to prevent it from succeeding. They use several response techniques, which involve the IDPS stopping the attack itself, changing the security environment (e.g. reconfiguring a firewall) or changing the attack’s content.

    QUESTION 13
    Lab Sim – Configure the Firewall
    Task: Configure the firewall (fill out the table) to allow these four rules:

    – Only allow the Accounting computer to have HTTPS access to the Administrative server.
    – Only allow the HR computer to be able to communicate with the Server 2 System over SCP.
    – Allow the IT computer to have access to both the Administrative Server 1 and Administrative Server 2

    131
    132

    Answer:
    Use the following answer for this simulation task.
    Below table has all the answers required for this question.

    133

    Explanation:
    Firewall rules act like ACLs, and they are used to dictate what traffic can pass between the firewall and the internal network. Three possible actions can be taken based on the rule’s criteria:

    Block the connection
    Allow the connection
    Allow the connection only if it is secured

    TCP is responsible for providing a reliable, one-to-one, connection-oriented session.
    TCP establishes a connection and ensures that the other end receives any packets sent.
    Two hosts communicate packet results with each other. TCP also ensures that packets are decoded and sequenced properly. This connection is persistent during the session.
    When the session ends, the connection is torn down.
    UDP provides an unreliable connectionless communication method between hosts.
    UDP is considered a best-effort protocol, but it’s considerably faster than TCP.
    The sessions don’t establish a synchronized session like the kind used in TCP, and UDP doesn’t guarantee error-free communications.
    The primary purpose of UDP is to send small packets of information.
    The application is responsible for acknowledging the correct reception of the data.
    Port 22 is used by both SSH and SCP with UDP.
    Port 443 is used for secure web connections ?HTTPS and is a TCP port.
    Thus to make sure only the Accounting computer has HTTPS access to the Administrative server you should use TCP port 443 and set the rule to allow communication between 10.4.255.10/24 (Accounting) and 10.4.255.101 (Administrative server1) Thus to make sure that only the HR computer has access to Server2 over SCP you need use of TCP port 22 and set the rule to allow communication between 10.4.255.10/23 (HR) and 10.4.255.2 (server2)
    Thus to make sure that the IT computer can access both the Administrative servers you need to use a port and accompanying port number and set the rule to allow communication between:
    10.4.255.10.25 (IT computer) and 10.4.255.101 (Administrative server1)
    10.4.255.10.25 (IT computer) and 10.4.255.102 (Administrative server2)

    QUESTION 14
    Hotspot Question
    The security administrator has installed a new firewall which implements an implicit DENY policy by default Click on the firewall and configure it to allow ONLY the following communication.

    1. The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks.
    2. The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port
    3. The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port.

    Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit.

    141

    142

    Answer:

    143

    Explanation:
    Implicit deny is the default security stance that says if you aren’t specifically granted access or privileges for a resource, you’re denied access by default.
    Rule #1 allows the Accounting workstation to ONLY access the web server on the public network over the default HTTPS port, which is TCP port 443.
    Rule #2 allows the HR workstation to ONLY communicate with the Financial server over the default SCP port, which is TCP Port 22
    Rule #3 & Rule #4 allow the Admin workstation to ONLY access the Financial and Purchasing servers located on the secure network over the default TFTP port, which is Port 69.

    QUESTION 15
    Which of the following firewall rules only denies DNS zone transfers?

    A.    deny udp any any port 53
    B.    deny ip any any
    C.    deny tcp any any port 53
    D.    deny all dns packets

    Answer: C
    Explanation:
    DNS operates over TCP and UDP port 53. TCP port 53 is used for zone transfers.

    QUESTION 16
    A security administrator suspects that an increase in the amount of TFTP traffic on the network is due to unauthorized file transfers, and wants to configure a firewall to block all TFTP traffic.
    Which of the following would accomplish this task?

    A.    Deny TCP port 68
    B.    Deny TCP port 69
    C.    Deny UDP port 68
    D.    Deny UDP port 69

    Answer: D
    Explanation:
    Trivial File Transfer Protocol (TFTP) is a simple file-exchange protocol that doesn’t require authentication. It operates on UDP port 69.

    QUESTION 17
    Sara, a security technician, has received notice that a vendor coming in for a presentation will require access to a server outside of the network. Currently, users are only able to access remote sites through a VPN connection. How could Sara BEST accommodate the vendor?

    A.    Allow incoming IPSec traffic into the vendor’s IP address.
    B.    Set up a VPN account for the vendor, allowing access to the remote site.
    C.    Turn off the firewall while the vendor is in the office, allowing access to the remote site.
    D.    Write a firewall rule to allow the vendor to have access to the remote site.

    Answer: D
    Explanation:
    Firewall rules are used to define what traffic is able pass between the firewall and the internal network. Firewall rules block the connection, allow the connection, or allow the connection only if it is secured. Firewall rules can be applied to inbound traffic or outbound traffic and any type of network.

    QUESTION 18
    A technician is deploying virtual machines for multiple customers on a single physical host to reduce power consumption in a data center. Which of the following should be recommended to isolate the VMs from one another?

    A.    Implement a virtual firewall
    B.    Install HIPS on each VM
    C.    Virtual switches with VLANs
    D.    Develop a patch management guide

    Answer: C
    Explanation:
    A virtual local area network (VLAN) is a hardware-imposed network segmentation created by switches. VLANs are used for traffic management. VLANs can be used to isolate traffic between network segments.

    QUESTION 19
    A router has a single Ethernet connection to a switch. In the router configuration, the Ethernet interface has three sub-interfaces, each configured with ACLs applied to them and 802.1q trunks.
    Which of the following is MOST likely the reason for the sub-interfaces?

    A.    The network uses the subnet of 255.255.255.128.
    B.    The switch has several VLANs configured on it.
    C.    The sub-interfaces are configured for VoIP traffic.
    D.    The sub-interfaces each implement quality of service.

    Answer: B
    Explanation:
    A subinterface is a division of one physical interface into multiple logical interfaces. Routers commonly employ subinterfaces for a variety of purposes, most common of these are for routing traffic between VLANs. Also, IEEE 802.1Q is the networking standard that supports virtual LANs (VLANs) on an Ethernet network.

    QUESTION 20
    Joe, a technician at the local power plant, notices that several turbines had ramp up in cycles during the week. Further investigation by the system engineering team determined that a timed .exe file had been uploaded to the system control console during a visit by international contractors. Which of the following actions should Joe recommend?

    A.    Create a VLAN for the SCADA
    B.    Enable PKI for the MainFrame
    C.    Implement patch management
    D.    Implement stronger WPA2 Wireless

    Answer: A
    Explanation:
    VLANs are used for traffic management. VLANs can be used to isolate traffic between network segments. This can be accomplished by not defining a route between different VLANs or by specifying a deny filter between certain VLANs (or certain members of a VLAN). Any network segment that doesn’t need to communicate with another in order to accomplish a work task/function shouldn’t be able to do so.

    SY0-401 dumps full version (PDF&VCE): https://www.lead2pass.com/sy0-401.html

    Large amount of free SY0-401 exam questions on Google Drive: https://drive.google.com/open?id=0B3Syig5i8gpDLXZsWm9MWmh0a0E

    You may also need:

    SY0-501 exam dumps: https://drive.google.com/open?id=1Hm6GQHDVOsEnyhNf3EHqIGEtor5IUsfu

  • [January 2018] Lead2pass Provides Free SY0-401 Exam Dumps PDF 1868q

    Lead2pass Provides Latest Exam SY0-401 Dumps VCE For Free Downloading:

    https://www.lead2pass.com/sy0-401.html

    QUESTION 1
    Which of the following should be deployed to prevent the transmission of malicious traffic between virtual machines hosted on a singular physical device on a network?

    A.    HIPS on each virtual machine
    B.    NIPS on the network
    C.    NIDS on the network
    D.    HIDS on each virtual machine

    (more…)

  • [Lead2pass New] Latest Lead2pass SY0-401 Exam Free SY0-401 Dumps Download (751-775)

    Took the SY0-401 exams yesterday and scored 9xx. Lead2pass SY0-401 exam dumps are valid. Almost all of the multiple choice came out.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 751
    Which of the following protocols provides transport security for virtual terminal emulation?

    A.    TLS
    B.    SSH
    C.    SCP
    D.    S/MIME

    (more…)

  • [Lead2pass New] Latest Lead2pass SY0-401 Exam Free SY0-401 Dumps Download (726-750)

    I passed the SY0-401 exam today with 9xx. Lead2pass SY0-401 exam question is valid. Thank you all and special thanks to Lead2pass.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 726
    Which of the following MUST Matt, a security administrator, implement to verify both the integrity and authenticity of a message while requiring a shared secret?

    A.    RIPEMD
    B.    MD5
    C.    SHA
    D.    HMAC

    (more…)

  • [Lead2pass New] Latest Lead2pass SY0-401 Exam Free SY0-401 Dumps Download (701-725)

    This Lead2pass SY0-401 braindumps still valid, I got 979/1000 today. Thanks to Lead2pass.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 701
    All of the following are valid cryptographic hash functions EXCEPT:

    A.    RIPEMD.
    B.    RC4.
    C.    SHA-512.
    D.    MD4.

    (more…)

  • [Lead2pass New] Latest Lead2pass SY0-401 Exam Free SY0-401 Dumps Download (676-700)

    At Lead2pass, we provide thoroughly reviewed CompTIA SY0-401 training resources which are the best for clearing SY0-401 test, and to get certified by CompTIA SY0-401.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 676
    Several employee accounts appear to have been cracked by an attacker.
    Which of the following should the security administrator implement to mitigate password cracking attacks? (Select TWO).

    A.    Increase password complexity
    B.    Deploy an IDS to capture suspicious logins
    C.    Implement password history
    D.    Implement monitoring of logins
    E.    Implement password expiration
    F.    Increase password length (more…)

  • [Lead2pass New] Free Share Of Lead2pass SY0-401 VCE And PDF Dumps (651-675)

    Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    Lead2pass has updated the latest version of CompTIA SY0-401 exam, which is a hot exam of CompTIA certification. It is Lead2pass CompTIA SY0-401 exam dumps that give you confidence to pass this certification exam in first attempt and with maximized score.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 651
    A security administrator wants to check user password complexity.
    Which of the following is the BEST tool to use?

    A.    Password history
    B.    Password logging
    C.    Password cracker
    D.    Password hashing

    (more…)

  • [Lead2pass New] Free Share Of Lead2pass SY0-401 VCE And PDF Dumps (626-650)

    Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    How to 100% pass SY0-401 exam? Lead2pass SY0-401 dump is unparalleled in quality and is 100% guaranteed to make you pass SY0-401 exam. All the SY0-401 exam questions are the latest. Here are some free share of CompTIA SY0-401 dumps.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 626
    The company’s sales team plans to work late to provide the Chief Executive Officer (CEO) with a special report of sales before the quarter ends. After working for several hours, the team finds they cannot save or print the reports.
    Which of the following controls is preventing them from completing their work?

    A.    Discretionary access control
    B.    Role-based access control
    C.    Time of Day access control
    D.    Mandatory access control

    (more…)

  • [Lead2pass New] Free Share Of Lead2pass SY0-401 VCE And PDF Dumps (601-625)

    Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    The SY0-401 braindumps are the latest, authenticated by expert and covering each and every aspect of SY0-401 exam. Comparing with others, our exam questions are rich in variety. We offer PDF dumps and SY0-401 VCE dumps. Welcome to choose.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 601
    Which of the following is an authentication and accounting service that uses TCP for connecting to routers and switches?

    A.    DIAMETER
    B.    RADIUS
    C.    TACACS+
    D.    Kerberos

    (more…)

  • [Lead2pass New] Free Share Of Lead2pass SY0-401 VCE And PDF Dumps (576-600)

    Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    How to 100% pass SY0-401 exam? Lead2pass provides the guaranteed SY0-401 exam dumps to boost up your confidence in SY0-401 exam. Successful candidates have provided their reviews about our SY0-401 dumps. Now Lead2pass supplying the new version of SY0-401 VCE and PDF dumps. We ensure our SY0-401 exam questions are the most complete and authoritative compared with others’, which will ensure your SY0-401 exam pass.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 576
    Which of the following hardware based encryption devices is used as a part of multi-factor authentication to access a secured computing system?

    A.    Database encryption
    B.    USB encryption
    C.    Whole disk encryption
    D.    TPM

    (more…)

  • [Lead2pass New] Free Share Of Lead2pass SY0-401 VCE And PDF Dumps (551-575)

    Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    Test your preparation for CompTIA SY0-401 with these actual SY0-401 new questions below. Exam questions are a sure method to validate one’s preparation for actual certification exam.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 551
    Which of the following can be used to maintain a higher level of security in a SAN by allowing isolation of mis-configurations or faults?

    A.    VLAN
    B.    Protocol security
    C.    Port security
    D.    VSAN

    (more…)

  • [Lead2pass New] Free Share Of Lead2pass SY0-401 VCE And PDF Dumps (526-550)

    Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    Lead2pass is constantly updating SY0-401 exam dumps. We will provide our customers with the latest and the most accurate exam questions and answers that cover a comprehensive knowledge point, which will help you easily prepare for SY0-401 exam and successfully pass your exam. You just need to spend 20-30 hours on studying the exam dumps.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 526
    Which of the following technical controls helps to prevent Smartphones from connecting to a corporate network?

    A.    Application white listing
    B.    Remote wiping
    C.    Acceptable use policy
    D.    Mobile device management

    (more…)

  • [Lead2pass New] Free Share Of Lead2pass SY0-401 VCE And PDF Dumps (501-525)

    Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    In recent years, many people choose to take CompTIA SY0-401 certification exam which can make you get the CompTIA certificate and that is the passport to get a better job and get promotions. How to prepare for CompTIA SY0-401 exam and get the certificate? Please refer to CompTIA SY0-401 exam questions and answers on Lead2pass.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 501
    Which of the following is a common coding error in which boundary checking is not performed?

    A.    Input validation
    B.    Fuzzing
    C.    Secure coding
    D.    Cross-site scripting

    (more…)

  • [Lead2pass Professional] 2017 Updated Lead2pass CompTIA SY0-401 Exam Questions (476-500)

    Lead2pass 2017 September New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    Our PDF dumps of SY0-401 exam is designed to ensure everything which you need to pass your exam successfully. At Lead2pass, we have a completely customer oriented policy. We invite the professionals who have rich experience and expert knowledge of the IT certification industry to guarantee the PDF details precisely and logically. Our customers’ time is a precious concern for us. This requires us to provide you the products that can be utilized most efficiently.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 476
    Ann, a security analyst, is preparing for an upcoming security audit. To ensure that she identifies unapplied security controls and patches without attacking or compromising the system, Ann would use which of the following?

    A.    Vulnerability scanning
    B.    SQL injection
    C.    Penetration testing
    D.    Antivirus update

    (more…)

  • [Lead2pass Professional] 2017 Updated Lead2pass CompTIA SY0-401 Exam Questions (451-475)

    Lead2pass 2017 September New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    Good news, Lead2pass has updated the SY0-401 exam dumps. With all the questions and answers in your hands, you will pass the CompTIA SY0-401 exam easily.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 451
    Which of the following would a security administrator implement in order to identify a problem between two applications that are not communicating properly?

    A.    Protocol analyzer
    B.    Baseline report
    C.    Risk assessment
    D.    Vulnerability scan

    (more…)

  • [Lead2pass Professional] 2017 Updated Lead2pass CompTIA SY0-401 Exam Questions (426-450)

    Lead2pass 2017 September New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    Lead2pass provides 100% pass SY0-401 exam questions and answers for your CompTIA SY0-401 exam. We provide CompTIA SY0-401 exam questions from Lead2pass dumps and answers for the training of SY0-401 practice test.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 426
    A vulnerability assessment indicates that a router can be accessed from default port 80 and default port 22. Which of the following should be executed on the router to prevent access via these ports? (Select TWO).

    A.    FTP service should be disabled
    B.    HTTPS service should be disabled
    C.    SSH service should be disabled
    D.    HTTP service should disabled
    E.    Telnet service should be disabled

    (more…)

  • [Lead2pass Professional] 2017 Updated Lead2pass CompTIA SY0-401 Exam Questions (401-425)

    Lead2pass 2017 September New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    I’m currently studying for CompTIA exam SY0-401. I do enjoy studying for exams. It’s hard, but it’s an excellent forcing function. I learn bits and pieces here and there now and then about this and that, but when I have an exam schedule for a set date, I have to study! And not only do I put in more hours, but I follow a more systematic approach. In this article, I’m going to share Lead2pass braindumps in case you too are studying and this method works for you.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 401
    An attacker attempted to compromise a web form by inserting the following input into the username field: admin)(|(password=*))
    Which of the following types of attacks was attempted?

    A.    SQL injection
    B.    Cross-site scripting
    C.    Command injection
    D.    LDAP injection

    (more…)

  • [Lead2pass Professional] 2017 Updated Lead2pass CompTIA SY0-401 Exam Questions (376-400)

    Lead2pass 2017 September New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    We are all well aware that a major problem in the IT industry is that there is a lack of quality study materials. Our exam preparation material provides you everything you will need to take a certification examination. Our CompTIA SY0-401 Exam will provide you with exam questions with verified answers that reflect the actual exam. These questions and answers provide you with the experience of taking the actual test. High quality and value for the SY0-401 Exam. 100% guarantee to pass your CompTIA SY0-401 exam and get your CompTIA certification.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 376
    A user commuting to work via public transport received an offensive image on their smart phone from another commuter. Which of the following attacks MOST likely took place?

    A.    War chalking
    B.    Bluejacking
    C.    War driving
    D.    Bluesnarfing

    (more…)

  • [Lead2pass Professional] 2017 Updated Lead2pass CompTIA SY0-401 Exam Questions (351-375)

    Lead2pass 2017 September New CompTIA SY0-401 Exam Dumps!

    100% Free Download! 100% Pass Guaranteed!

    Lead2pass SY0-401 braindumps including the exam questions and the answer, completed by our senior IT lecturers and the CompTIA product experts, include the current newest SY0-401 exam questions.

    Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

    QUESTION 351
    Ann, an employee, is cleaning out her desk and disposes of paperwork containing confidential customer information in a recycle bin without shredding it first. This is MOST likely to increase the risk of loss from which of the following attacks?

    A.    Shoulder surfing
    B.    Dumpster diving
    C.    Tailgating
    D.    Spoofing

    (more…)

  • Pages: 1 2
Posts navigation