JK0-018 Exam Training Practice Tests (CompTIA Security+ Certification)]

Question 1

Ann, a security technician, is reviewing the IDS log files. She notices a large number of alerts for multicast packets from the switches on the network. After investigation, she discovers that this is normal activity for her network. Which of the following BEST describes these results?

A. False positives B. True positives C. False negatives D. True negatives

Correct Answer: A

Question 2

Which of the following does Jane, a software developer, need to do after compiling the source code of a program to attest the authorship of the binary?

A. Append the source code to the binary B. Place Jane's name in the binary metadata C. Use Jane's private key to sign the binary D. Use Jane's public key to sign the binary

Correct Answer: C

Question 3

Which of the following BEST describes a protective countermeasure for SQL injection?

A. Installing an IDS to monitor network traffic B. Eliminating cross-site scripting vulnerabilities C. Validating user input in web applications D. Placing a firewall between the Internet and database servers

Correct Answer: C

Question 4

Which of the following should an administrator implement to research current attack methodologies?

A. Design reviews B. Code reviews C. Vulnerability scanner D. Honeypot

Correct Answer: D

Question 5

Which of the following would a security administrator implement in order to discover comprehensive security threats on a network?

A. Design reviews B. Baseline reporting C. Code review D. Vulnerability scan

Correct Answer: D

Question 6

Jane, a security administrator, has been tasked with explaining authentication services to the company's management team. The company runs an active directory infrastructure. Which of the following solutions BEST relates to the host authentication protocol within the company's environment?

A. TACACS+ B. LDAP C. Least privilege D. Kerberos

Correct Answer: D

Question 7

Sara, the Chief Security Officer (CSO), has had four security breaches during the past two years. Each breach has cost the company $3,000. A third party vendor has offered to repair the security hole in the system for $25,000. The breached system is scheduled to be replaced in five years.
Which of the following should Sara do to address the risk?

A. Mitigate the risk saving $10,000. B. Accept the risk saving $10,000. C. Transfer the risk saving $5,000. D. Ignore the risk saving $5,000.

Correct Answer: C

Question 8

A third party application has the ability to maintain its own user accounts or it may use single sign-on. To use single sign-on, the application is requesting the following information: OU=Users, DC=Domain, DC=COM. This application is requesting which of the following authentication services?

A. TACACS+ B. LDAP C. Kerberos D. RADIUS

Correct Answer: B

Question 9

Company A sends a PGP encrypted file to company B.
If company A used company B's public key to encrypt the file, which of the following should be used to decrypt data at company B?

A. Public key B. Registration C. CRLs D. Private key

Correct Answer: D

Question 10

Which of the following is the MOST important step for preserving evidence during forensic procedures?

A. Involve law enforcement B. Record the time of the incident C. Chain of custody D. Report within one hour of discovery

Correct Answer: C

Question 11

Which of the following is used to certify intermediate authorities in a large PKI deployment?

A. Root user B. Recovery agent C. Key escrow D. Root CA

Correct Answer: D

Question 12

Pete needs to open ports on the firewall to allow for secure transmission of files. Which of the following ports should be opened on the firewall?

A. UDP 69 B. TCP 23 C. TCP 22 D. TCP 21

Correct Answer: C

CompTIA Security+ Certification - JK0-018 Exam Practice Test