Free Access CompTIA.SYO-501.v2022-01-28.q315 Practice Test (Page 54)

Question 261

A security analyst is hardening a server with the directory services role installed. The analyst must ensure LDAP traffic cannot be monitored or sniffed and maintains compatibility with LDAP clients. Which of the following should the analyst implement to meet these requirements? (Select two.)

A.Ensure port 389 is open between the clients and the servers using the communication.

B.Generate an X.509-compliant certificate that is signed by a trusted CA.

C.Remote the LDAP directory service role from the server.

D.Ensure port 636 is open between the clients and the servers using the communication.

E.Install and configure an SSH tunnel on the LDAP server.

Question 262

A technician has been asked to document which services are running on each of a collection of 200 servers.
Which of the following tools BEST meets this need while minimizing the work required?

A.Nslookup

B.Netstat

C.Nmap

D.Netcat

Question 263

An organization has several production-critical SCADA supervisory systems that cannot follow the normal
30- day patching policy.
Which of the following BEST maximizes the protection of these systems from malicious software?

A.Configure the host firewall to ensure only the necessary applications have listening ports

B.Configure a firewall with deep packet inspection that restricts traffic to the systems.

C.Configure the systems to ensure only necessary applications are able to run.

D.Configure a separate zone for the systems and restrict access to known ports.

Question 264

A security analyst has received the following alert snippet from the HIDS appliance:

Given the above logs, which of the following is the cause of the attack?

A.There is improper Layer 2 segmentation

B.FIN, URG, and PSH flags are set in the packet header

C.The TCP ports on destination are all open

D.TCP MSS is configured improperly

Question 265

Select the appropriate attack and remediation from each drop-down list to label the corresponding attack with its remediation.
INSTRUCTIONS
Not all attacks and remediation actions will be used. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 173PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 145Adobe.AD0-E605.v2025-09-05.q50

Question 261

Question 262

Question 263

Question 264

Question 265

Download PDF File