Try our new practice tests feature: configure your own test including the number of questions, objectives and time limits

CompTIA Security Plus SY0 401 Test 6

This free CompTIA Security+ practice exam covers basic knowledge in the field of Information Systems Security. To pass the CompTIA Security+ exam, a candidate will need knowledge in Network Security, Compliance and operational security, threats and vulnerabilities, access control and identity management, cryptography, and application, data, and host security. This free practice test will test your knowledge and readiness for the CompTIA Security+ Examination.

  • Questions: 20
  • Time: 60 seconds per question (0 hours, 20 minutes, 0 seconds)

A list of permissions on a router that determines who can access specific areas of a network, is known as what?

  • ACL
  • OEM
  • Firewall
  • FAQ

Which of the following describes the most secure firewall configuration?

  • Deny all UPD, allow all TCP
  • Deny all protocols, allow TCP/IP
  • Deny all, with exceptions for required applications and ports
  • Allow all, deny malicious applications and ports

Which authentication protocol periodically verifies a client with a 3-way handshake?

  • PAP
  • SSO
  • Kerberos
  • CHAP

Which of the following is a Denial of Service attack using a succession of TCP Handshake requests?

  • Smurf Attack
  • Xmas Attack
  • SYN Flood
  • Phishing

Which of the following protocols is used to encrypt emails?

  • HTTPS
  • PGP
  • SMAP
  • SMTP

Which of the following is a common synonym for a Protocol Analyzer?

  • Packet Sniffer
  • Port scanner
  • Intelligent HUB
  • layer 3 switch

Which of the following is an example of multi-factor authentication?

  • Pin number and smart card
  • Fingerprint and iris scan
  • Password and pin
  • Smart card and ID badge

Which of the following is a computer hardware component that can process and store cryptographic keys?

  • HCL
  • TPM
  • WPA2
  • EULA

True or False: It is good practice to disable unused or publicly accessible network ports?

  • True
  • False

SHA and MD5 are examples of which of the following?

  • Hashing algorithms
  • Encryption algorithms
  • Tunneling protocols
  • HIPS

A server on your network needs to be accessed by external users. The content of the server should be publicly available and does not contain any confidential information. Where should you place it?

  • DMZ
  • Intranet
  • Behind the firewall and NAT service
  • Behind an IPsec tunneling firewall

Which option will provide short-term system availability in case of loss or failure?

  • RAID 5
  • Full disk encryption
  • RAID 0
  • Cold Site

Which of the following is a protocol that prevents loops in layer 2 switching devices?

  • HVAC
  • TCP
  • RDP
  • STP

When converted into binary, how many bits are present in an IPv4 Address?

  • 48
  • 128
  • 32
  • 64

Which of the following STOPS attacks on a host system?

  • HIDS
  • NIDS
  • NIPS
  • HIPS

Which of the following choices properly defines the term war chalking?

  • Marking open WiFi access points
  • Port Scanning a wifi network
  • Cracking a WEP2 WiFi encryption
  • Driving in a vehicle and scanning for open WiFi access points

Which port is used by telnet?

  • 22
  • 20
  • 23
  • 21

Which of the following is an access control method, which is based of a persons job?

  • RBAC
  • HMAC
  • DAC
  • MAC

What is the default port of Kerberos?

  • 443
  • 88
  • 8080
  • 22

What port is used for HTTPS?

  • 80
  • 69
  • 443
  • 8080