Our CompTIA SY0-401 exam questions and also answers are developed and revised by the experienced This instructors. And we preserve updated according to the latest SY0-401 syllabus. You will get the most upgraded and also reliable CompTIA CompTIA simulated exam dumps. Please preserve visiting Testking?¡¥s website constantly to find some latest SY0-401 studying materials.

2021 Feb SY0-401 pdf exam

Q541. TION NO: 74 

Which of the following can be used as an equipment theft deterrent? 

A. Screen locks 

B. GPS tracking 

C. Cable locks 

D. Whole disk encryption 

Answer:

Explanation: 

Cable locks are theft deterrent devices that can be used to tether a device to a fixed point keep smaller devices from being easy to steal. 


Q542. Which of the following access controls enforces permissions based on data labeling at specific levels? 

A. Mandatory access control 

B. Separation of duties access control 

C. Discretionary access control 

D. Role based access control 

Answer:

Explanation: 

In a MAC environment everything is assigned a classification marker. Subjects are assigned a clearance level and objects are assigned a sensitivity label. 


Q543. Several departments within a company have a business need to send high volumes of confidential information to customers via email. Which of the following is the BEST solution to mitigate unintentional exposure of confidential information? 

A. Employ encryption on all outbound emails containing confidential information. 

B. Employ exact data matching and prevent inbound emails with Data Loss Prevention. 

C. Employ hashing on all outbound emails containing confidential information. 

D. Employ exact data matching and encrypt inbound e-mails with Data Loss Prevention. 

Answer:

Explanation: 

Encryption is used to ensure the confidentiality of information and in this case the outbound email that contains the confidential information should be encrypted. 


Q544. Failure to validate the size of a variable before writing it to memory could result in which of the following application attacks? 

A. Malicious logic 

B. Cross-site scripting 

C. SQL injection 

D. Buffer overflow 

Answer:

Explanation: 


Q545. An employee recently lost a USB drive containing confidential customer data. Which of the following controls could be utilized to minimize the risk involved with the use of USB drives? 

A. DLP 

B. Asset tracking 

C. HSM 

D. Access control 

Answer:

Explanation: 

Data loss prevention (DLP) systems monitor the contents of systems (workstations, servers, and networks) to make sure that key content is not deleted or removed. They also monitor who is using the data (looking for unauthorized access) and transmitting the data. 


Up to date SY0-401 test:

Q546. Which of the following policies is implemented in order to minimize data loss or theft? 

A. PII handling 

B. Password policy 

C. Chain of custody 

D. Zero day exploits 

Answer:

Explanation: 

Although the concept of PII is old, it has become much more important as information technology and the Internet have made it easier to collect PII through breaches of internet security, network security and web browser security, leading to a profitable market in collecting and reselling PII. PII can also be exploited by criminals to stalk or steal the identity of a person, or to aid in the planning of criminal acts. Personally identifiable information (PII) is a catchall for any data that can be used to uniquely identify an individual. This data can be anything from the person’s name to a fingerprint (think biometrics), credit card number, or patient record. Thus a PII handling policy can be used to protect data. 


Q547. Prior to leaving for an extended vacation, Joe uses his mobile phone to take a picture of his family in the house living room. Joe posts the picture on a popular social media site together with the message: "Heading to our two weeks vacation to Italy." Upon returning home, Joe discovers that the house was burglarized. Which of the following is the MOST likely reason the house was burglarized if nobody knew Joe’s home address? 

A. Joe has enabled the device access control feature on his mobile phone. 

B. Joe’s home address can be easily found using the TRACEROUTE command. 

C. The picture uploaded to the social media site was geo-tagged by the mobile phone. 

D. The message posted on the social media site informs everyone the house will be empty. 

Answer:

Explanation: 

Geo-tagging is the process of embedding the GPS coordinates in image files and images taken using a smartphone or a digital camera. The geotagged information accompanying the image allows anyone to discover the precise location where the image was taken. 


Q548. ON NO: 161 

If you don’t know the MAC address of a Linux-based machine, what command-line utility can you use to ascertain it? 

A. macconfig 

B. ifconfig 

C. ipconfig 

D. config 

Answer:

Explanation: 

To find MAC address of a Unix/Linux workstation, use ifconfig or ip a. 


Q549. A recent vulnerability scan found that Telnet is enabled on all network devices. Which of the following protocols should be used instead of Telnet? 

A. SCP 

B. SSH 

C. SFTP 

D. SSL 

Answer:

Explanation: 

SSH transmits both authentication traffic and data in a secured encrypted form, whereas Telnet transmits both authentication credentials and data in clear text. 


Q550. A system administrator is setting up a file transfer server. The goal is to encrypt the user authentication and the files the user is sending using only a user ID and a key pair. Which of the following methods would achieve this goal? 

A. AES 

B. IPSec 

C. PGP 

D. SSH 

Answer:

Explanation: