[Free] 2019(Oct) EnsurePass CompTIA SY0-501 Dumps with VCE and PDF 131-140

Get Full Version of the Exam
http://www.EnsurePass.com/SY0-501.html

Question No.131

To reduce disk consumption, an organization#39;s legal department has recently approved a new policy setting the data retention period for sent email at six months. Which of the following is the

BEST way to ensure this goal is met?

  1. Create a daily encrypted backup of the relevant emails.

  2. Configure the email server to delete the relevant emails.

  3. Migrate the relevant emails into an quot;Archivedquot; folder.

  4. Implement automatic disk compression on email servers.

Correct Answer: A

Question No.132

Which of the following are methods to implement HA in a web application server environment? (Select two.)

  1. Load balancers

  2. Application layer firewalls

  3. Reverse proxies

  4. VPN concentrators

  5. Routers

Correct Answer: AB

Question No.133

Which of the following must be intact for evidence to be admissible in court?

  1. Chain of custody

  2. Order of violation

  3. Legal hold

  4. Preservation

Correct Answer: A

Question No.134

A system administrator is reviewing the following information from a compromised server.

image

Given the above information, which of the following processes was MOST likely exploited via remote buffer overflow attack?

  1. Apache

  2. LSASS

  3. MySQL

  4. TFTP

Correct Answer: A

Question No.135

When considering a third-party cloud service provider, which of the following criteria would be the BEST to include in the security assessment process? (Select two.)

  1. Use of performance analytics

  2. Adherence to regulatory compliance

  3. Data retention policies

  4. Size of the corporation

  5. Breadth of applications support

Correct Answer: BC

Question No.136

When identifying a company#39;s most valuable assets as part of a BIA, which of the following should be the FIRST priority?

  1. Life

  2. Intellectual property

  3. Sensitive data

  4. Public reputation

Correct Answer: A

Question No.137

A director of IR is reviewing a report regarding several recent breaches. The director compiles the following statistics

image

Initial IR engagement time frame

image

image

Length of time before an executive management notice went out Average IR phase completion

The director wants to use the data to shorten the response time. Which of the following would accomplish this?

  1. CSIRT

  2. Containment phase

  3. Escalation notifications

  4. Tabletop exercise

Correct Answer: D

Question No.138

Adhering to a layered security approach, a controlled access facility employs security guards who verify the authorization of all personnel entering the facility. Which of the following terms BEST describes the security control being employed?

  1. Administrative

  2. Corrective

  3. Deterrent

  4. Compensating

Correct Answer: C

Question No.139

A member of the admins group reports being unable to modify the quot;changesquot; file on a server. The permissions on the file are as follows:

Permissions User Group File

rwxrw-r Admins Admins changes

Based on the output above, which of the following BEST explains why the user is unable to modify the quot;changesquot; file?

  1. The SELinux mode on the server is set to quot;enforcing.quot;

  2. The SELinux mode on the server is set to quot;permissive.quot;

  3. An FACL has been added to the permissions for the file.

  4. The admins group does not have adequate permissions to access the file.

Correct Answer: C

Question No.140

A security analyst is hardening a web server, which should allow a secure certificate-based session using the organization#39;s PKI infrastructure. The web server should also utilize the latest security techniques and standards. Given this set of requirements, which of the following techniques should the analyst implement to BEST meet these requirements? (Select two.)

  1. Install an X- 509-compliant certificate.

  2. Implement a CRL using an authorized CA.

  3. Enable and configure TLS on the server.

  4. Install a certificate signed by a public CA.

  5. Configure the web server to use a host header.

Correct Answer: AC

Get Full Version of the Exam
SY0-501 Dumps
SY0-501 VCE and PDF

Leave a Comment

Your email address will not be published. Required fields are marked *