Try our new practice tests feature: configure your own test including the number of questions, objectives and time limits

CompTIA Security Plus SY0 401 Test 6

This free CompTIA Security+ practice exam covers basic knowledge in the field of Information Systems Security. To pass the CompTIA Security+ exam, a candidate will need knowledge in Network Security, Compliance and operational security, threats and vulnerabilities, access control and identity management, cryptography, and application, data, and host security. This free practice test will test your knowledge and readiness for the CompTIA Security+ Examination.

  • Questions: 20
  • Time: 60 seconds per question (0 hours, 20 minutes, 0 seconds)

Which of the following is a computer hardware component that can process and store cryptographic keys?

  • EULA
  • TPM
  • HCL
  • WPA2

Which of the following is an access control method, which is based of a persons job?

  • RBAC
  • DAC
  • MAC
  • HMAC

A server on your network needs to be accessed by external users. The content of the server should be publicly available and does not contain any confidential information. Where should you place it?

  • Intranet
  • Behind the firewall and NAT service
  • DMZ
  • Behind an IPsec tunneling firewall

Which of the following is an example of multi-factor authentication?

  • Password and pin
  • Fingerprint and iris scan
  • Smart card and ID badge
  • Pin number and smart card

What is the default port of Kerberos?

  • 8080
  • 88
  • 22
  • 443

Which of the following is a protocol that prevents loops in layer 2 switching devices?

  • STP
  • HVAC
  • TCP
  • RDP

Which port is used by telnet?

  • 22
  • 20
  • 23
  • 21

True or False: It is good practice to disable unused or publicly accessible network ports?

  • False
  • True

Which of the following describes the most secure firewall configuration?

  • Deny all, with exceptions for required applications and ports
  • Deny all UPD, allow all TCP
  • Allow all, deny malicious applications and ports
  • Deny all protocols, allow TCP/IP

Which of the following choices properly defines the term war chalking?

  • Marking open WiFi access points
  • Port Scanning a wifi network
  • Cracking a WEP2 WiFi encryption
  • Driving in a vehicle and scanning for open WiFi access points

Which of the following is a Denial of Service attack using a succession of TCP Handshake requests?

  • Xmas Attack
  • Smurf Attack
  • SYN Flood
  • Phishing

A list of permissions on a router that determines who can access specific areas of a network, is known as what?

  • Firewall
  • ACL
  • FAQ
  • OEM

Which authentication protocol periodically verifies a client with a 3-way handshake?

  • Kerberos
  • CHAP
  • PAP
  • SSO

Which of the following STOPS attacks on a host system?

  • HIDS
  • NIDS
  • NIPS
  • HIPS

SHA and MD5 are examples of which of the following?

  • Hashing algorithms
  • Tunneling protocols
  • HIPS
  • Encryption algorithms

Which of the following is a common synonym for a Protocol Analyzer?

  • layer 3 switch
  • Packet Sniffer
  • Intelligent HUB
  • Port scanner

What port is used for HTTPS?

  • 8080
  • 80
  • 69
  • 443

Which option will provide short-term system availability in case of loss or failure?

  • Cold Site
  • RAID 0
  • Full disk encryption
  • RAID 5

Which of the following protocols is used to encrypt emails?

  • SMTP
  • SMAP
  • HTTPS
  • PGP

When converted into binary, how many bits are present in an IPv4 Address?

  • 64
  • 32
  • 128
  • 48