Updated SY0-501 Dumps V22.02 Is Great For CompTIA Security+ Certification

1. A security analyst is doing a vulnerability assessment on a database server.

A scanning tool returns the following information:

There have been several security breaches on the webserver that accesses this database. The security team is instructed to mitigate the impact of any possible breaches. The security team is also instructed to improve the security on this database by making it less vulnerable to of line attacks.

Which of the following would BEST accomplish these goals? (Choose two.)

2. A Chief Information Officer (CIO) is concerned that encryption keys might be ex filtrate d by a contractor. The CIO wants to keep control over key visibility and management.

Which of the following would be the BEST solution for the CIO to implement?

3. A security administrator receives a request from a customer for certificates to access servers securely. The customer would like a single encrypted file that supports PKCS and contains the private key.

Which of the following formats should the technician use?

4. Which of the following BEST describes the staging environment where sandbox coding and proof of concept are deployed?

5. A systems engineer is configuring a wireless network. The network must not require installation of third-party software. Mutual authentication of the client and the server must be used. The company has an internal PKI.

Which of the following configurations should the engineer choose?

6. During a company-sponsored phishing exercise, more than 25%of the employees clicked on the link embedded in the message. Of the employees who clicked the link, 75%then entered their user credentials on the website provided.

Which of the following would be the BEST way to improve the metrics for the next exercise?

7. Which of the following impacts are associated with vulnerabilities in embedded systems? (Select TWO)

8. An organization recently implemented an account lockout policy on its portal. The portal was configured to display a banner instructing locked out users to contact the helpdesk.

Which of the following tools should the security administrator use to test whether the account lockout policy is working correctly?

9. Which of the following must be configured to provide authentication between the switch and the TACACS + server?

A systems administrator is configuring a new network switch for TACACS + management and authentication.

Which of the following must be configured to provide authentication between the switch and the TACACS + server?

10. A law office has been leasing dark fiber from a local telecommunications company to connect a remote office to company headquarters. The telecommunications company has decided to discontinue its dark fiber product and is offering an MPLS connection, which the law office feels is too expensive.

Which of the following is the BEST solution for the law office?

11. A systems administrator wants to disable the use of usernames and passwords for SSH authentication and enforce key-based authentication.

Which of the following should the administrator do NEXT to enforce this new configuration?

12. Which of the following impacts are associated with vulnerabilities in embedded systems? Select TWO

13. A technician, who is managing a secure B2B connection, noticed the connection broke last night.

All networking equipment and media are functioning as expected, which leads the technician to question certain PKI components.

Which of the following should the technician use to validate this assumption? (Choose two.)

14. A penetration tester is checking to see if an internal system is vulnerable to an attack using a remote listener.

Which of the following commands should the penetration tester use to verify if this vulnerability exists? (Choose two.)

15. Which of the following BEST explains the difference between a credentialed scan and a non-credentialed scan?