A new security engineer has started hardening systems. One of the hardening techniques the engineer is using involves disabling remote logins to the NAS. Users are now reporting the inability to use SCP to transfer files to the NAS, even though the data is still viewable from the users' PCs. Which of the following is the MOST likely cause of this issue?
A. Remote login was disabled in the networkd.conf instead of using the sshd.conf.
B. Network services are no longer running on the NAS.
C. SSH was turned off instead of modifying the configuration file
D. TFTP was disabled on the local hosts
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 2:
After a hardware incident, an unplanned emergency maintenance activity was conducted to rectify the issue.
Multiple alerts were generated on the SIEM during this period of time. Which of the following BEST explains what happened?
A. Multiple alerts were generated due to an attack occurring at the same time.
B. An error in the correlation rules triggered multiple alerts.
C. The unexpected traffic correlated against multiple rules, generating multiple alerts.
D. The SIEM was unable to correlate the rules, triggering the alerts.
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 3:
Which of the following BEST describes data streams that are compiled through artificial intelligence that provides insight on current cyberintrusions, phishing, and other malicious cyberactivity?
A. Intelligence fusion
B. Review reports
C. Threat feeds
D. Log reviews
正解:A
解説: (Pass4Test メンバーにのみ表示されます)
質問 4:
A company recently added a DR site and is redesigning the network. Users at the DR site are having issues browsing websites.
INSTRUCTIONS
Click on each firewall to do the following:
1. Deny cleartext web traffic
2. Ensure secure management protocols are used.
3. Resolve issues at the DR site.
The ruleset order cannot be modified due to outside constraints.
Hat any time you would like to bring back the initial state of the simulation, please dick the Reset All button.
正解:
Check the answer in explanation.
Explanation:
In Firewall 1, HTTP inbound Action should be DENY. As shown below
In Firewall 2, Management Service should be DNS, As shown below.
In Firewall 3, HTTP Inbound Action should be DENY, as shown below
質問 5:
If a current private key is compromised, which of the following would ensure it cannot be used to decrypt ail historical data?
A. Key stretching
B. Elliptic-curve cryptography
C. Perfect forward secrecy
D. Homomorphic encryption
正解:B
解説: (Pass4Test メンバーにのみ表示されます)
質問 6:
Which of the following best describes a social engineering attack that uses a targeted electronic messaging campaign aimed at a Chief Executive Officer?
A. Spear phishing
B. Whaling
C. Identity fraud
D. Impersonation
正解:B
質問 7:
Which of the following secure application development concepts aims to block verbose error messages from being shown in a user's interface?
A. Obfuscation/camouflage
B. Test environment
C. Prevent of information exposure
D. OWASP
正解:C
解説: (Pass4Test メンバーにのみ表示されます)
質問 8:
A prospective customer is interested in seeing the type of data that can be retrieved when a customer uses a company's services. An engineer at the company sends the following documentation before reviewing it:
The prospective customer is concerned. Which of the following will best resolve the concern?
A. CASB
B. Software updates
C. Data sanitization
D. Log aggregation
正解:C
Fujino -
友達にSY0-601問題集を進めてくれる。この問題集を勉強して、89%の点数を撮りました。大変嬉しいです。