CompTIA SY0-701 CompTIA Security+ Online Training

Question #81

Which of the following vulnerabilities is exploited when an attacker overwrites a register with a malicious address?

A . VM escape
B . SQL injection
C . Buffer overflow
D . Race condition

Question #82

Which of the following would be the best way to handle a critical business application that is running on a legacy server?

A . Segmentation
B . Isolation
C . Hardening
D . Decommissioning

Reveal Solution Hide Solution

Correct Answer: C
C

Explanation:

A legacy server is a server that is running outdated or unsupported software or hardware, which may pose security risks and compatibility issues. A critical business application is an application that is essential for the operation and continuity of the business, such as accounting, payroll, or inventory management. A legacy server running a critical business application may be difficult to replace or upgrade, but it should not be left unsecured or exposed to potential threats.

One of the best ways to handle a legacy server running a critical business application is to harden it. Hardening is the process of applying security measures and configurations to a system to reduce its attack surface and vulnerability.

Hardening a legacy server may involve steps such as:

Applying patches and updates to the operating system and the application, if available Removing or disabling unnecessary services, features, or accounts

Configuring firewall rules and network access control lists to restrict inbound and outbound traffic Enabling encryption and authentication for data transmission and storage

Implementing logging and monitoring tools to detect and respond to anomalous or malicious activity Performing regular backups and testing of the system and the application

Hardening a legacy server can help protect the critical business application from unauthorized access, modification, or disruption, while maintaining its functionality and availability. However, hardening a legacy server is not a permanent solution, and it may not be sufficient to address all the security issues and challenges posed by the outdated or unsupported system. Therefore, it is advisable to plan for the eventual decommissioning or migration of the legacy server to a more secure and modern platform, as soon as possible.

Reference: CompTIA Security+ SY0-701 Certification Study Guide, Chapter 3: Architecture and Design, Section 3.2: Secure System Design, Page 133 1; CompTIA Security+ Certification Exam Objectives, Domain 3: Architecture and Design, Objective 3.2: Explain the importance of secure system design, Subobjective: Legacy systems 2

Question #83

Which of the following describes the process of concealing code or text inside a graphical image?

A . Symmetric encryption
B . Hashing
C . Data masking
D . Steganography

Reveal Solution Hide Solution

Question #84

After a company was compromised, customers initiated a lawsuit. The company’s attorneys have requested that the security team initiate a legal hold in response to the lawsuit.

Which of the following describes the action the security team will most likely be required to take?

A . Retain the emails between the security team and affected customers for 30 days.
B . Retain any communications related to the security breach until further notice.
C . Retain any communications between security members during the breach response.
D . Retain all emails from the company to affected customers for an indefinite period of time.

Reveal Solution Hide Solution

Question #85

A network manager wants to protect the company’s VPN by implementing multifactor authentication that uses:

. Something you know

. Something you have

. Something you are

Which of the following would accomplish the manager’s goal?

A . Domain name, PKI, GeolP lookup
B . VPN IP address, company ID, facial structure
C . Password, authentication token, thumbprint
D . Company URL, TLS certificate, home address

Reveal Solution Hide Solution

Question #86

A security manager created new documentation to use in response to various types of security incidents.

Which of the following is the next step the manager should take?

A . Set the maximum data retention policy.
B . Securely store the documents on an air-gapped network.
C . Review the documents’ data classification policy.
D . Conduct a tabletop exercise with the team.

Reveal Solution Hide Solution

Question #87

Users at a company are reporting they are unable to access the URL for a new retail website because it is flagged as gambling and is being blocked.

Which of the following changes would allow users to access the site?

A . Creating a firewall rule to allow HTTPS traffic
B . Configuring the IPS to allow shopping
C . Tuning the DLP rule that detects credit card data
D . Updating the categorization in the content filter

Reveal Solution Hide Solution

Question #88

An administrator discovers that some files on a database server were recently encrypted. The administrator sees from the security logs that the data was last accessed by a domain user.

Which of the following best describes the type of attack that occurred?

A . Insider threat
B . Social engineering
C . Watering-hole
D . Unauthorized attacker

Reveal Solution Hide Solution

Question #89

Which of the following automation use cases would best enhance the security posture of an organization by rapidly updating permissions when employees leave a company?

A . Provisioning resources
B . Disabling access
C . Reviewing change approvals
D . Escalating permission requests

Reveal Solution Hide Solution

Question #90

Which of the following must be considered when designing a high-availability network? (Select two).

A . Ease of recovery
B . Ability to patch
C . Physical isolation
D . Responsiveness
E . Attack surface
F . Extensible authentication

Reveal Solution Hide Solution