Free Sharing Lead2pass Exam Dumps

Free Download All The Latest Cisco, Microsoft, CompTIA, Oracle, VCP, CISSP Questions And Answers

Free Online Latest 2014 Pass4sure&Lead2pass CompTIA SY0-301 Dumps (101-110)

QUESTION 101
Which of the following protocols allows for secure transfer of files? (Select TWO).

A.    ICMP
B.    SNMP
C.    SFTP
D.    SCP
E.    TFTP

Answer: CD

QUESTION 102
Which of the following passwords is the LEAST complex?

A.    MyTrain!45
B.    Mytr@in!!
C.    MyTr@in12
D.    MyTr@in#8

Answer: B

QUESTION 103
During a penetration test from the Internet, Jane, the system administrator, was able to establish a connection to an internal router, but not successfully log in to it. Which ports and protocols are MOST likely to be open on the firewall? (Select FOUR).

A.    21
B.    22
C.    23
D.    69
E.    3389
F.    SSH
G.    Terminal services
H.    Rlogin
I.    Rsync
J.    Telnet

Answer: BCFJ

QUESTION 104
Which of the following is an application security coding problem?

A.    Error and exception handling
B.    Patch management
C.    Application hardening
D.    Application fuzzing

Answer: A

QUESTION 105
An IT security technician needs to establish host based security for company workstations. Which of the following will BEST meet this requirement?

A.    Implement IIS hardening by restricting service accounts.
B.    Implement database hardening by applying vendor guidelines.
C.    Implement perimeter firewall rules to restrict access.
D.    Implement OS hardening by applying GPOs.

Answer: D

QUESTION 106
Which of the following is the MOST specific plan for various problems that can arise within a system?

A.    Business Continuity Plan
B.    Continuity of Operation Plan
C.    Disaster Recovery Plan
D.    IT Contingency Plan

Answer: D

QUESTION 107
Which of the following BEST describes the weakness in WEP encryption?

A.    The initialization vector of WEP uses a crack-able RC4 encryption algorithm.
Once enough packets are captured an XOR operation can be performed and the asymmetric keys
can be derived.
B.    The WEP key is stored in plain text and split in portions across 224 packets of random data.
Once enough packets are sniffed the IV portion of the packets can be removed leaving the plain text key.
C.    The WEP key has a weak MD4 hashing algorithm used.
A simple rainbow table can be used to generate key possibilities due to MD4 collisions.
D.    The WEP key is stored with a very small pool of random numbers to make the cipher text.
As the random numbers are often reused it becomes easy to derive the remaining WEP key.

Answer: D

QUESTION 108
Sara, the Chief Security Officer (CSO), has had four security breaches during the past two years. Each breach has cost the company $3,000. A third party vendor has offered to repair the security hole in the system for $25,000. The breached system is scheduled to be replaced in five years. Which of the following should Sara do to address the risk?

A.    Accept the risk saving $10,000.
B.    Ignore the risk saving $5,000.
C.    Mitigate the risk saving $10,000.
D.    Transfer the risk saving $5,000.

Answer: D

QUESTION 109
Which of the following is an authentication and accounting service that uses TCP for connecting to routers and switches?

A.    DIAMETER
B.    RADIUS
C.    TACACS+
D.    Kerberos

Answer: C

QUESTION 110
Which of the following can BEST help prevent cross-site scripting attacks and buffer overflows on a production system?

A.    Input validation
B.    Network intrusion detection system
C.    Anomaly-based HIDS
D.    Peer review

Answer: A

If you want to pass CompTIA SY0-301 successfully, donot missing to read latest lead2pass CompTIA SY0-301 exam questions.
If you can master all lead2pass questions you will able to pass 100% guaranteed.

http://www.lead2pass.com/SY0-301.html

Lead2pass Testking Pass4sure Actualtests Others
$99.99 $124.99 $125.99 $189 $29.99-$49.99
Up-to-Dated
Real Questions
Error Correction
Printable PDF
Premium VCE
VCE Simulator
One Time Purchase
Instant Download
Unlimited Install
100% Pass Guarantee
100% Money Back