CompTIA SY0-401 zertifizierungsantworten

SY0-401 Domain | % of Examination
1.0 Network Security 20%
2.0 Compliance and Operational Security 18%
3.0 Threats and Vulnerabilities 20%
4.0 Application, Data and Host Security 15%
5.0 Access Control and Identity Management 15%
6.0 Cryptography 12%
NO.1 A security technician wishes to gather and analyze all Web traffic during a particular time
period.
Which of the following represents the BEST approach to gathering the required data?
A. Configure a VPN concentrator to log all traffic destined for ports 80 and 443.
B. Configure a proxy server to log all traffic destined for ports 80 and 443.
C. Configure a switch to log all traffic destined for ports 80 and 443.
D. Configure a NIDS to log all traffic destined for ports 80 and 443.
Answer: B

CompTIA SY0-401 Prüfungsfragen SY0-401
Explanation:
A proxy server is in essence a device that acts on behalf of others and in security terms all internal
user interaction with the Internet should be controlled through a proxy server. This makes a proxy
server the best tool to gather the required data.

NO.2 Jane, an IT security technician, needs to create a way to secure company mobile devices. Which
of the following BEST meets this need?
A. Implement voice encryption, pop-up blockers, and host-based firewalls.
B. Implement firewalls, network access control, and strong passwords.
C. Implement screen locks, device encryption, and remote wipe capabilities.
D. Implement application patch management, antivirus, and locking cabinets.
Answer: C

CompTIA prüfungsfragen SY0-401 SY0-401 prüfungsfrage SY0-401 Vorbereitung SY0-401
Explanation:
Screen-lock is a security feature that requires the user to enter a password after a short period of
inactivity before they can access the system again. This feature ensures that if your device is left
unattended or is lost or stolen, it will be difficult for anyone else to access your data or applications.
Device encryption encrypts the data on the device. This feature ensures that the data on the device
cannot be accessed in a useable form should the device be stolen. Remote wipe is the process of
deleting data on a device in the event that the device is stolen. This is performed over remote
connections such as the mobile phone service or the internet connection and helps ensure that
sensitive data is not accessed by unauthorized people.

NO.3 TION NO: 134
Which of the following ports is used for SSH, by default?
A. 23
B. 32
C. 12
D. 22
Answer: D

CompTIA prüfungsfrage SY0-401 Testfagen SY0-401 prüfung SY0-401 tests
Explanation:
Secure Shell (SSH) is a cryptographic network protocol for securing data communication. It
establishes a secure channel over an insecure network in a client-server architecture, connecting an
SSH client application with an SSH server. Common applications include remote command-line login,
remote command execution, but any network service can be secured with SSH. SSH uses port 22.

NO.4 During the analysis of a PCAP file, a security analyst noticed several communications with a
remote server on port 53. Which of the following protocol types is observed in this traffic?
A. FTP
B. DNS
C. Email
D. NetBIOS
Answer: B

CompTIA Testfagen SY0-401 dumps SY0-401 Vorbereitung SY0-401 Prüfungsfrage SY0-401 testking
Explanation:
DNS (Domain Name System) uses port 53.

NO.5 Which of the following IP addresses would be hosts on the same subnet given the subnet mask
255.255.255.224? (Select TWO).
A. 10.4.4.125
B. 10.4.4.158
C. 10.4.4.165
D. 10.4.4.189
E. 10.4.4.199
Answer: C,D

CompTIA dumps deutsch SY0-401 zertifizierungsfragen SY0-401 Schulungsunterlagen
Explanation:
With the given subnet mask, a maximum number of 30 hosts between IP addresses 10.4.4.161 and
10.4.4.190 are allowed. Therefore, option C and D would be hosts on the same subnet, and the other
options would not.
References: http://www.subnetonline.com/pages/subnet-calculators/ip-subnet-calculator.php

NO.6 Which of the following firewall rules only denies DNS zone transfers?
A. deny udp any any port 53
B. deny ip any any
C. deny tcp any any port 53
D. deny all dns packets
Answer: C

CompTIA prüfungsunterlagen SY0-401 antworten SY0-401
Explanation:
DNS operates over TCP and UDP port 53. TCP port 53 is used for zone transfers.

NO.7 A network inventory discovery application requires non-privileged access to all hosts on a
network for inventory of installed applications. A service account is created by the network inventory
discovery application for accessing all hosts. Which of the following is the MOST efficient method for
granting the account non-privileged access to the hosts?
A. Implement Group Policy to add the account to the users group on the hosts
B. Add the account to the Domain Administrator group
C. Add the account to the Users group on the hosts
D. Implement Group Policy to add the account to the Power Users group on the hosts.
Answer: A

CompTIA dumps deutsch SY0-401 Antworten SY0-401 zertifizierungsantworten SY0-401
Explanation:
Group Policy is an infrastructure that allows you to implement specific configurations for users and
computers. Group Policy settings are contained in Group Policy objects (GPOs), which are linked to
the following Active Directory directory service containers: sites, domains, or organizational units
(OUs). This means that if the GPO is linked to the domain, all Users groups in the domain will include
the service account.

NO.8 RADIUS provides which of the following?
A. Authentication, Authorization, Availability
B. Authentication, Authorization, Auditing
C. Authentication, Accounting, Auditing
D. Authentication, Authorization, Accounting
Answer: D

CompTIA Prüfungsfragen SY0-401 SY0-401
Explanation:
The Remote Authentication Dial In User Service (RADIUS) networking protocol offers centralized
Authentication, Authorization, and Accounting (AAA) management for users who make use of a
network service. It is for this reason that A, B, and C: are incorrect.
References: http://en.wikipedia.org/wiki/RADIUS

Wenn Sie die Unterlagen von ZertPruefung kaufen, bekommen Sie einjährigen kostlosen Aktualisierungsservice. Sie können auch an uns E-Mails schreiben, die neuesten Prüfungsunterlagen zu fordern. Und ZertPruefung kann Ihnen die Aktualisierungsservice innerhalb einem Jahr bieten, obwohl Sie diese Prüfung erfolgsreich machen.
Viele Kandidaten, die sich auf die CompTIA SY0-401 Zertifizierungsprüfung vorbereiten, haben auf anderen Websites auch die Online-Ressourcen zur CompTIA SY0-401 Zertifizierungsprüfung gesehen. Wir versprechen, das Sie zum ersten Mal mit unseren Schulungsunterlagen die CompTIA SY0-401 Zertifizierungsprüfung bestehen können.

Exam Code: SY0-401
Prüfungsname: CompTIA Security+ Certification
Aktulisiert: 13-08-2015, SY0-401 Prüfungsunterlagen
Nummer: 1150 Q&As

SY0-401 fragen beantworten : SY0-401 Prüfungsunterlagen

Leute aus verschiedenen Bereichen bemühen sich um ihre Zukunft. Bemühen Sie sich auch um Erhöhung Ihrer Fähigkeit? Bekommen Sie die CompTIA SY0-401 zertifizierung? Wie viel wissen Sie über CompTIA SY0-401 Zertifizierungsprüfung? Was sollen Sie machen, wenn Sie nicht genug Kenntnisse für SY0-401 prüfung beherrschen? Machen Sie sich keine Sorge. ZertPruefung kann Ihnen Hilfe bieten.
ZertPruefung bietet Ihnen die neusten C_TCRM20_71 exam Unterlagen und FC0-U51 pdf Fragen & Antworten mit hoher Qualität. Unser M2010-719 zertifizierung und VCP-550 prüfung Lernführung können Ihnen hilfen, die aktuellen Prüfungen zu bestehen. Hochqualitative C4090-456 dumps Training Unterlagen können Ihnen gewährleisten, leichter und schneller, diese Prüfung zu bestehen. Es ist sehr einfach für Sie, die Zertifizierung zu bekommen.

Artikel Link: http://www.zertpruefung.de/SY0-401_exam.html