CompTIA SY0-601 Practice Test - Questions Answers, Page 38

Which of the following would most likely include language prohibiting end users from accessing personal email from a company device?

Which of the following describes software on network hardware that needs to be updated on a rou- tine basis to help address possible vulnerabilities?

Which of the following would be best to ensure data is saved to a location on a server, is easily scaled, and is centrally monitored?

A penetration tester was able to compromise a host using previously captured network traffic. Which of the following is the result of this action?

An organization needs to implement more stringent controls over administrator/root credentials and service accounts. Requirements for the project include:

* Check-in/checkout of credentials

* The ability to use but not know the password

* Automated password changes

* Logging of access to credentials

Which of the following solutions would meet the requirements?

The application development team is in the final stages of developing a new healthcare application. The team has requested copies of current PHI records to perform the final testing. Which of the following would be the best way to safeguard this information without impeding the testing process?

The alert indicates an attacker entered thousands of characters into the text box of a web form. The web form was intended for legitimate customers to enter their phone numbers. Which of the attacks has most likely occurred?

A security administrator recently used an internal CA to issue a certificate to a public application. A user tries to reach the application but receives a message stating, “Your connection is not private." Which of the following is the best way to fix this issue?

A network security manager wants to implement periodic events that will test the security team's preparedness for incidents in a controlled and scripted manner, Which of the following concepts describes this scenario?