CS0-001 – CompTIA CSA+ Certification Exam

Loading demo links...

Showing 10–12 of 20 questions

Question 10

A security administrator determines several months after the first instance that a local privileged user has been routinely logging into a server interactively as “root” and browsing the Internet. The administrator determines this by performing an annual review of the security logs on that server. For which of the following security architecture areas should the administrator recommend review and modification? (Choose two.)

Select all that apply, then click Submit answer.

○
Log aggregation and analysis
○
Software assurance
○
Encryption
○
Acceptable use policies
○
Password complexity
○
Network isolation and separation

Question 11

A security analyst notices PII has been copied from the customer database to an anonymous FTP server in the DMZ. Firewall logs indicate the customer database has not been accessed from anonymous FTP server. Which of the following departments should make a decision about pursuing further investigation? (Choose two.)

Select an option, then click Submit answer.

○
Human resources
○
Public relations
○
Legal
○
Executive management
○
IT management

Question 12

A system administrator is doing network reconnaissance of a company’s external network to determine the vulnerability of various services that are running. Sending some sample traffic to the external host, the administrator obtains the following packet capture:

Based on the output, which of the following services should be further tested for vulnerabilities?

Select an option, then click Submit answer.

○
SSH
○
HTTP
○
SMB
○
HTTPS

← Prev 1 2 3 4 5 6 7 Next →

Page 4 of 7

Sale Ends In

2h 0m 0s