Free Access CompTIA.SY0-501.v2022-01-24.q485 Practice Test (Page 97)

Question 476

A recent review of accounts on various systems has found that after employees passwords are required to change they are recycling the same password as before. Which of the following policies should be enforced to prevent this from happening? (Select TWO)

A.Password complexity

B.Password expiration

C.Minimum password age

D.Password history

E.Account lockouts

F.Reverse encryption

Question 477

A security administrator is reviewing the following firewall configuration after receiving reports that users are unable to connect to remote websites:

Which of the following is the MOST secure solution the security administrator can implement to fix this issue?

A.Add the following rule to the firewall: 5 PERMIT FROM:ANY TO:ANY PORT:53

B.Insert the following rule in the firewall: 25 PERMIT FROM:ANY TO:ANY PORTS:ANY

C.Replace rule number 10 with the following rule: 10 PERMIT FROM:ANY TO:ANY PORT:22

D.Remove the following rule from the firewall: 30 DENY FROM:ANY TO:ANY PORT:ANY

Question 478

An organization has the following password policies:
* Passwords must be at least 16 characters long.
* A password cannot be the same as any previous 20 passwords.
* Three failed login attempts will lock the account for five minutes.
* Passwords must have one uppercase letter, one lowercase letter, and one non-alphanumeric symbol.
A database server was recently breached, and the incident response team suspects the passwords were compromised. Users with permission on that database server were forced to change their passwords for that server. Unauthorized and suspicious logins are now being detected on a completely separate server. Which of the following is MOST likely the issue and the best solution?

A.Some users are reusing passwords for different systems; the organization should scan for password reuse across systems.

B.User passwords are not sufficiently long or complex: the organization should increase the complexity and length requirements for passwords.

C.The trust relationship between the two servers has been compromised: the organization should place each server on a separate VLAN.

D.The organization has improperly configured single sign-on; the organization should implement a RADIUS server to control account logins.

Question 479

The Chief Financial Officer (CFO) of an insurance company received an email from Ann, the company's Chief Executive Officer (CEO), requesting a transfer of $10,000 to an account. The email states Ann is on vacation and has lost her purse, containing cash and credit cards. Which of the following social-engineering techniques is the attacker using?

A.Phishing

B.Whaling

C.Typo squatting

D.Pharming

Question 480

Which of the following attackers generally possesses minimal technical knowledge to perform advanced attacks and uses widely available tools as well as publicly available information?

A.Hacktivist

B.White hat hacker

C.Script kiddle

D.Penetration tester

Other Version: 77CompTIA.Examboosts.SY0-501.v2021-11-25.by.giles.359q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 150Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50

Question 476

Question 477

Question 478

Question 479

Question 480

Download PDF File