Free Sharing Lead2pass Exam Dumps

Free Download All The Latest Cisco, Microsoft, CompTIA, Oracle, VCP, CISSP Questions And Answers

Free Online Latest 2014 Pass4sure&Lead2pass CompTIA SY0-301 Dumps (11-20)

QUESTION 11
A security administrator wants to check user password complexity. Which of the following is the BEST tool to use?

A.    Password history
B.    Password logging
C.    Password cracker
D.    Password hashing

Answer: C

QUESTION 12
Certificates are used for: (Select TWO).

A.    Client authentication.
B.    WEP encryption.
C.    Access control lists.
D.    Code signing.
E.    Password hashing.

Answer: AD

QUESTION 13
Which of the following is a hardware based encryption device?

A.    EFS
B.    TrueCrypt
C.    TPM
D.    SLE

Answer: C

QUESTION 14
Which of the following BEST describes a protective countermeasure for SQL injection?

A.    Eliminating cross-site scripting vulnerabilities
B.    Installing an IDS to monitor network traffic
C.    Validating user input in web applications
D.    Placing a firewall between the Internet and database servers

Answer: C

QUESTION 15
Which of the following MOST interferes with network-based detection techniques?

A.    Mime-encoding
B.    SSL
C.    FTP
D.    Anonymous email accounts

Answer: B

QUESTION 16
A certificate authority takes which of the following actions in PKI?

A.    Signs and verifies all infrastructure messages
B.    Issues and signs all private keys
C.    Publishes key escrow lists to CRLs
D.    Issues and signs all root certificates

Answer: D

QUESTION 17
Use of a smart card to authenticate remote servers remains MOST susceptible to which of the following attacks?

A.    Malicious code on the local system
B.    Shoulder surfing
C.    Brute force certificate cracking
D.    Distributed dictionary attacks

Answer: A

QUESTION 18
Separation of duties is often implemented between developers and administrators in order to separate which of the following?

A.    More experienced employees from less experienced employees
B.    Changes to program code and the ability to deploy to production
C.    Upper level management users from standard development employees
D.    The network access layer from the application access layer

Answer: B

QUESTION 19
A security administrator needs to update the OS on all the switches in the company. Which of the following MUST be done before any actual switch configuration is performed?

A.    The request needs to be sent to the incident management team.
B.    The request needs to be approved through the incident management process.
C.    The request needs to be approved through the change management process.
D.    The request needs to be sent to the change management team.

Answer: C

QUESTION 20
Jane, an individual, has recently been calling various financial offices pretending to be another person to gain financial information. Which of the following attacks is being described?

A.    Phishing
B.    Tailgating
C.    Pharming
D.    Vishing

Answer: D

If you want to pass CompTIA SY0-301 successfully, donot missing to read latest lead2pass CompTIA SY0-301 practice exams.
If you can master all lead2pass questions you will able to pass 100% guaranteed.

http://www.lead2pass.com/SY0-301.html

Lead2pass Testking Pass4sure Actualtests Others
$99.99 $124.99 $125.99 $189 $29.99-$49.99
Up-to-Dated
Real Questions
Error Correction
Printable PDF
Premium VCE
VCE Simulator
One Time Purchase
Instant Download
Unlimited Install
100% Pass Guarantee
100% Money Back