Exactprep SY0-601 Questions

CompTIA Security+ Exam 2023 Questions and Answers

Question 133

Which of the following would best explain why a security analyst is running daily vulnerability scans on all corporate endpoints?

Options:

To track the status of patching installations

To find shadow IT cloud deployments

To continuously the monitor hardware inventory

To hunt for active attackers in the network

Question 134

An analyst is providing feedback on an incident that involved an unauthorized zone transfer and an on-path attack in a corporate network. The analyst's recommendation is to implement secure DNS. Which of the following would be the most beneficial result of this action?

Options:

Ensuring that data has not been modified in transit

Providing redundancy in the event of a server failure

Preventing unauthenticated clients access to the server

Allowing for IPv6-enabled hosts to leverage the server

Question 135

A systems administrator notices that one of the systems critical for processing customer transactions is running an end-of-life operating system. Which of the following techniques would increase enterprise security?

Options:

Installing HIDS on the system

Placing the system in an isolated VLAN

Decommissioning the system

Encrypting the system's hard drive

Question 136

A systems administrator set up a perimeter firewall but continues to notice suspicious connections between internal endpoints. Which of the following should be set up in order to mitigate the threat posed by the suspicious activity?

Options:

Host-based firewall

Web application firewall

Access control list

Application allow list

Winter Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CompTIA Security+ Exam 2023 Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

CompTIA

Fortinet

Microsoft

Salesforce