CompTIA CAS-001 Additional Security Settings Practice Exam-2

Sample Questions:

Safety engineer is given the helpdesk between the event that DNS requests are no longer working in the office. The network team has ensured that the Layer 2 and Layer 3 connections are working. Which of the following tools would be a security engineers use to make sure the DNS server is listening on port 53?

PING

Nessus

nslookup

NMAP

None

A large organization has recently suffered massive credit card breach. During the Incident Response was guilty of a number of companies on whose fault it was that the incident took place. Where part of the event the response phase, this should be treated as controlled and productive manner?

During the detection phase,

Lessons learned during step

during the containment phase

During the preparatory phase

None

Security administrator needs to enable remote access solution for both employees and subcontractors. Management favors Remote Desktop because the ease of use. The current risk assessment is proposing to protect Windows as much as possible from direct ingress traffic exposure. Which of the following solutions should you choose?

Use a remote desktop server internal LAN, and require Active Directory integrated SSL connection for access.

Change Remote Desktop non-standard port, and take the whole complexity of the password in Active Directory.

"To share new IPSec VPN client software applicable parties. virtualize distance, Desktop Services functionality."

Set the Remote Desktop server (s) screened subnet, and implement two-factor authentication.

None

IT Manager evaluates IPS products, what would be the most effective stopping network traffic, which includes different from the content network but carry very specific types of traffic. Based on the IT Manager's requirements, which are the following types of IPS products would be best suited for use in this situation?

signature-based

Speed-based

Anomaly-based

Host-

None