Browsed by
Tag: RC0-501 exam dumps

[Latest Version] Free RC0-501 PDF Download with 100% Pass Guarantee

[Latest Version] Free RC0-501 PDF Download with 100% Pass Guarantee

Attention please! Here is the shortcut to pass your Latest RC0-501 pdf dumps exam! Get yourself well prepared for the CompTIA Security Jun 27,2022 Latest RC0-501 free download CompTIA Security Recertification Exam exam is really a hard job. But don’t worry! We We, provides the most update RC0-501 new questions. With We latest RC0-501 dumps, you’ll pass the CompTIA Security Latest RC0-501 study guide CompTIA Security Recertification Exam exam in an easy way

We Geekcert has our own expert team. They selected and published the latest RC0-501 preparation materials from Official Exam-Center.

The following are the RC0-501 free dumps. Go through and check the validity and accuracy of our RC0-501 dumps.Although questions are from RC0-501 free dumps, the validity and accuracy of the RC0-501 dumps are absolutely guaranteed.

Question 1:

A new intern in the purchasing department requires read access to shared documents. Permissions are normally controlled through a group called “Purchasing”, however, the purchasing group permissions allow write access. Which of the following would be the BEST course of action?

A. Modify all the shared files with read only permissions for the intern.

B. Create a new group that has only read permissions for the files.

C. Remove all permissions for the shared files.

D. Add the intern to the “Purchasing” group.

Correct Answer: B

Question 2:

A business has recently deployed laptops to all sales employees. The laptops will be used primarily from home offices and while traveling, and a high amount of wireless mobile use is expected. To protect the laptops while connected to untrusted wireless networks, which of the following would be the BEST method for reducing the risk of having the laptops compromised?

A. MAC filtering

B. Virtualization

C. OS hardening

D. Application white-listing

Correct Answer: C

Question 3:

Which of the fallowing security controls does an iris scanner provide?

A. Logical

B. Administrative

C. Corrective

D. Physical

E. Detective

F. Deterrent

Correct Answer: D

Question 4:

During a data breach cleanup, it is discovered that not all of the sites involved have the necessary data wiping tools. The necessary tools are quickly distributed to the required technicians, but when should this problem BEST be revisited?

A. Reporting

B. Preparation

C. Mitigation

D. Lessons Learned

Correct Answer: D

Question 5:

Joe, a technician, is working remotely with his company provided laptop at the coffee shop near his home. Joe is concerned that another patron of the coffee shop may be trying to access his laptop. Which of the following is an appropriate control to use to prevent the other patron from accessing Joe\’s laptop directly?

A. full-disk encryption

B. Host-based firewall

C. Current antivirus definitions

D. Latest OS updates

Correct Answer: B

Question 6:

An attacker uses a network sniffer to capture the packets of a transaction that adds $20 to a gift card. The attacker then user a function of the sniffer to push those packets back onto the network again, adding another $20 to the gift card. This can be done many times. Which of the following describes this type of attack?

A. Integer overflow attack

B. Smurf attack

C. Replay attack

D. Buffer overflow attack

E. Cross-site scripting attack

Correct Answer: C

Question 7:

The data backup window has expanded into the morning hours and has begun to affect production users. The main bottleneck in the process is the time it takes to replicate the backups to separate severs at the offsite data center. Which of the following uses of deduplication could be implemented to reduce the backup window?

A. Implement deduplication at the network level between the two locations

B. Implement deduplication on the storage array to reduce the amount of drive space needed

C. Implement deduplication on the server storage to reduce the data backed up

D. Implement deduplication on both the local and remote servers

Correct Answer: B

Question 8:

A penetration testing is preparing for a client engagement in which the tester must provide data that proves and validates the scanning tools\’ results. Which of the following is the best method for collecting this information?

A. Set up the scanning system\’s firewall to permit and log all outbound connections

B. Use a protocol analyzer to log all pertinent network traffic

C. Configure network flow data logging on all scanning system

D. Enable debug level logging on the scanning system and all scanning tools used.

Correct Answer: A

Question 9:

The SSID broadcast for a wireless router has been disabled but a network administrator notices that unauthorized users are accessing the wireless network. The administer has determined that attackers are still able to detect the presence of

the wireless network despite the fact the SSID has been disabled.

Which of the following would further obscure the presence of the wireless network?

A. Upgrade the encryption to WPA or WPA2

B. Create a non-zero length SSID for the wireless router

C. Reroute wireless users to a honeypot

D. Disable responses to a broadcast probe request

Correct Answer: D

Question 10:

After a merger, it was determined that several individuals could perform the tasks of a network administrator in the merged organization. Which of the following should have been performed to ensure that employees have proper access?

A. Time-of-day restrictions

B. Change management

C. Periodic auditing of user credentials

D. User rights and permission review

Correct Answer: D

Question 11:

A company exchanges information with a business partner. An annual audit of the business partner is conducted against the SLA in order to verify:

A. Performance and service delivery metrics

B. Backups are being performed and tested

C. Data ownership is being maintained and audited

D. Risk awareness is being adhered to and enforced

Correct Answer: A

Question 12:

A security administrator needs to implement a system that detects possible intrusions based upon a vendor provided list. Which of the following BEST describes this type of IDS?

A. Signature based

B. Heuristic

C. Anomaly-based

D. Behavior-based

Correct Answer: A

Question 13:

Having adequate lighting on the outside of a building is an example of which of the following security controls?

A. Deterrent

B. Compensating

C. Detective

D. Preventative

Correct Answer: A

Question 14:

During a recent audit, it was discovered that several user accounts belonging to former employees were still active and had valid VPN permissions. Which of the following would help reduce the amount of risk the organization incurs in this situation in the future?

A. Time-of-day restrictions

B. User access reviews

C. Group-based privileges

D. Change management policies

Correct Answer: B

Question 15:

A security administrator wants to implement a company-wide policy to empower data owners to manage and enforce access control rules on various resources. Which of the following should be implemented?

A. Mandatory access control

B. Discretionary access control

C. Role based access control

D. Rule-based access control

Correct Answer: B