Free Access to CompTIA.SYO-501.v2022-03-09.q467 with Valid Practice Test (Page 26)

Question 121

A black hat hacker is enumerating a network and wants to remain covert during the process. The hacker initiates a vulnerability scan. Given the task at hand the requirement of being covert, which of the following statements BEST indicates that the vulnerability scan meets these requirements?

A.The vulnerability scanner is performing in network sniffer mode.
B.The vulnerability scanner is performing an authenticated scan.
C.The vulnerability scanner is performing banner grabbing.
D.The vulnerability scanner is performing local file integrity checks.

Question 122

After correctly configuring a new wireless enabled thermostat to control the temperature of the company's meeting room, Joe, a network administrator determines that the thermostat is not connecting to the internet-based control system. Joe verifies that the thermostat received the expected network parameters and it is associated with the AP. Additionally, the other wireless mobile devices connected to the same wireless network are functioning properly. The network administrator verified that the thermostat works when tested at his residence.
Which of the following is the MOST likely reason the thermostat is not connecting to the internet?

A.The thermostat is using the incorrect encryption algorithm
B.the WPA2 shared likely is incorrect
C.The company implements a captive portal
D.The company's DHCP server scope is full

Question 123

Which of the following are examples of two-factor authentication? (Select THREE)

A.Proximity reader and password
B.Smart card and PIN
C.User ID and password
D.Smart card and ID badge
E.Voice recognition and fingerprint
F.Password and TOTP

Question 124

Joe a website administrator believes he owns the intellectual property for a company invention and has
been replacing image files on the company's public facing website in the DMZ. Joe is using steganography
to hide stolen data.
Which of the following controls can be implemented to mitigate this type of inside threat?

A.Stateful inspection firewall
B.Digital signatures
C.File integrity monitoring
D.Access controls
E.Change management

Question 125

Task: Configure the firewall (fill out the table) to allow these four rules:
Only allow the Accounting computer to have HTTPS access to the Administrative server.
Only allow the HR computer to be able to communicate with the Server 2 System over SCP.
Allow the IT computer to have access to both the Administrative Server 1 and Administrative Server 2

Correct Answer:

Use the following answer for this simulation task. Below table has all the answers required for this question.
Firewall rules act like ACLs, and they are used to dictate what traffic can pass between the firewall and the internal network.
Three possible actions can be taken based on the rule's criteria: Block the connection Allow the connection Allow the connection only if it is secured TCP is responsible for providing a reliable, one-to-one, connection-oriented session. TCP establishes a connection and ensures that the other end receives any packets sent.
Two hosts communicate packet results with each other.
TCP also ensures that packets are decoded and sequenced properly.
This connection is persistent during the session.
When the session ends, the connection is torn down.
UDP provides an unreliable connectionless communication method between hosts.
UDP is considered a best-effort protocol, but it's considerably faster than TCP.
The sessions don't establish a synchronized session like the kind used in TCP, and UDP doesn't guarantee error-free communications.
The primary purpose of UDP is to send small packets of information.
The application is responsible for acknowledging the correct reception of the dat a.
Port 22 is used by both SSH and SCP with UDP.
Port 443 is used for secure web connections?
HTTPS and is a TCP port.
Thus to make sure only the Accounting computer has HTTPS access to the Administrative server you should use TCP port 443 and set the rule to allow communication between 10.4.255.10/24 (Accounting) and 10.4.255.101 (Administrative server1) Thus to make sure that only the HR computer has access to Server2 over SCP you need use of TCP port 22 and set the rule to allow communication between 10.4.255.10/23 (HR) and 10.4.255.2 (server2) Thus to make sure that the IT computer can access both the Administrative servers you need to use a port and accompanying port number and set the rule to allow communication between: 10.4.255.10.25 (IT computer) and 10.4.255.101 (Administrative server1) 10.4.255.10.25 (IT computer) and 10.4.255.102 (Administrative server2)

Question 121

Question 122

Question 123

Question 124

Question 125

Download PDF File