Free Access CompTIA.CAS-003.v2022-08-15.q472 Practice Test (Page 25)

Question 116

A managed service provider is designing a log aggregation service for customers who no longer want tomanage an internal SIEM infrastructure. The provider expects that customers will send all types of logs to them, and that log files could contain very sensitive entries. Customers have indicated they want on-premises and cloud-based infrastructure logs tobe stored in this new service. An engineer, who is designing the new service, is deciding how to segment customers. Which of the following is the BEST statement for the engineer to take into consideration?

A.Single-tenancy is often more expensive and has less efficient resource utilization. Multi-tenancy may increase the risk of cross-customer exposure in the event of service vulnerabilities.

B.The managed service provider should outsource security of the platform to an existing cloud company.
This willallow the new log service to be launched faster and with well-tested security controls.

C.The most secure design approach would be to give customers on-premises appliances, install agents on endpoints, and then remotely manage the service via a VPN.

D.Due to the likelihood of large log volumes, the service provider should use a multi-tenancy model for the data storage tier, enable data deduplication for storage cost efficiencies, and encrypt data at rest.

Question 117

A security consultant is conducting a penetration test against a customer enterprise local comprises local hosts and cloud-based servers The hosting service employs a multitenancy model with elastic provisioning to meet customer demand The customer runs multiple virtualized servers on each provisioned cloud host. The security consultant is able to obtain multiple sets of administrator credentials without penetrating the customer network. Which of the following is the MOST likely risk the tester exploited?

A.VM escape attacks against the customer network hypervisors

B.The ability to scrape data remnants in a multitenancy environment

C.Offline attacks against the cloud security broker service

D.Data-at-rest encryption misconfiguration and repeated key usage

Question 118

While investigating suspicious activity on a server, a security administrator runs the following report:

In addition, the administrator notices changes to the /etc/shadow file that were not listed in the report. Which of the following BEST describe this scenario? (Choose two.)

A.An attacker compromised the server and may have used a collision hash in the MD5 algorithm to hide the changes to the /etc/shadow file

B.An attacker compromised the server and may have also compromised the file integrity database to hide the changes to the /etc/shadow file

C.An attacker compromised the server and may have installed a rootkit to always generate valid MD5 hashes to hide the changes to the /etc/shadow file

D.An attacker compromised the server and may have used MD5 collision hashes to generate valid passwords, allowing further access to administrator accounts on the server

E.An attacker compromised the server and may have used SELinux mandatory access controls to hide the changes to the /etc/shadow file

Question 119

An accountant at a small business is trying to understand the value of a server to determine if the business can afford to buy another server for DR. The risk manager only provided the accountant with the SLE of $24,000, ARO of 20% and the exposure factor of 25%. Which of the following is the correct asset value calculated by the accountant?

A.$4,800

B.$24,000

C.$96,000

D.$120,000

Question 120

An architect was recently hired by a power utility to increase the security posture of the company's power generation and distribution sites. Upon review, the architect identifies legacy hardware with highly vulnerable and unsupported software driving critical operations. These systems must exchange data with each other, be highly synchronized, and pull from the Internet time sources. Which of the following architectural decisions would BEST reduce the likelihood of a successful attack without harming operational capability? (Choose two.)

A.Isolate the systems on their own network

B.Install a firewall and IDS between systems and the LAN

C.Employ own stratum-0 and stratum-1 NTP servers

D.Upgrade the software on critical systems

E.Configure the systems to use government-hosted NTP servers

Other Version: 7489CompTIA.CAS-003.v2022-09-22.q535; 4321CompTIA.CAS-003.v2022-05-05.q206; 2991CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 105HP.HPE0-V27.v2025-09-11.q78; 119Oracle.1Z0-1057-23.v2025-09-10.q47; 153Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 133SAP.C-S4EWM-2023.v2025-09-08.q83; 167TheSecOpsGroup.CNSP.v2025-09-08.q20; 232CFAInstitute.ESG-Investing.v2025-09-08.q173; 214PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 154Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 116

Question 117

Question 118

Question 119

Question 120

Download PDF File