Try our new practice tests feature: configure your own test including the number of questions, objectives and time limits

CompTIA Security Plus SY0 401 Test 6

This free CompTIA Security+ practice exam covers basic knowledge in the field of Information Systems Security. To pass the CompTIA Security+ exam, a candidate will need knowledge in Network Security, Compliance and operational security, threats and vulnerabilities, access control and identity management, cryptography, and application, data, and host security. This free practice test will test your knowledge and readiness for the CompTIA Security+ Examination.

  • Questions: 20
  • Time: 60 seconds per question (0 hours, 20 minutes, 0 seconds)

Which of the following STOPS attacks on a host system?

  • NIDS
  • NIPS
  • HIDS
  • HIPS

Which of the following choices properly defines the term war chalking?

  • Driving in a vehicle and scanning for open WiFi access points
  • Marking open WiFi access points
  • Cracking a WEP2 WiFi encryption
  • Port Scanning a wifi network

Which of the following is a common synonym for a Protocol Analyzer?

  • layer 3 switch
  • Packet Sniffer
  • Port scanner
  • Intelligent HUB

When converted into binary, how many bits are present in an IPv4 Address?

  • 32
  • 64
  • 128
  • 48

SHA and MD5 are examples of which of the following?

  • Hashing algorithms
  • Encryption algorithms
  • HIPS
  • Tunneling protocols

Which of the following is a Denial of Service attack using a succession of TCP Handshake requests?

  • Phishing
  • Smurf Attack
  • Xmas Attack
  • SYN Flood

A list of permissions on a router that determines who can access specific areas of a network, is known as what?

  • ACL
  • FAQ
  • OEM
  • Firewall

Which of the following describes the most secure firewall configuration?

  • Allow all, deny malicious applications and ports
  • Deny all UPD, allow all TCP
  • Deny all protocols, allow TCP/IP
  • Deny all, with exceptions for required applications and ports

Which port is used by telnet?

  • 23
  • 22
  • 21
  • 20

Which of the following is a computer hardware component that can process and store cryptographic keys?

  • HCL
  • WPA2
  • EULA
  • TPM

True or False: It is good practice to disable unused or publicly accessible network ports?

  • True
  • False

Which of the following is an example of multi-factor authentication?

  • Fingerprint and iris scan
  • Password and pin
  • Smart card and ID badge
  • Pin number and smart card

Which of the following is a protocol that prevents loops in layer 2 switching devices?

  • STP
  • RDP
  • TCP
  • HVAC

Which option will provide short-term system availability in case of loss or failure?

  • RAID 0
  • Full disk encryption
  • RAID 5
  • Cold Site

What is the default port of Kerberos?

  • 8080
  • 22
  • 443
  • 88

Which of the following is an access control method, which is based of a persons job?

  • HMAC
  • MAC
  • DAC
  • RBAC

What port is used for HTTPS?

  • 80
  • 69
  • 8080
  • 443

Which authentication protocol periodically verifies a client with a 3-way handshake?

  • PAP
  • SSO
  • CHAP
  • Kerberos

Which of the following protocols is used to encrypt emails?

  • SMTP
  • SMAP
  • PGP

A server on your network needs to be accessed by external users. The content of the server should be publicly available and does not contain any confidential information. Where should you place it?

  • DMZ
  • Intranet
  • Behind the firewall and NAT service
  • Behind an IPsec tunneling firewall