[Free] 2019(Oct) EnsurePass CompTIA SY0-501 Dumps with VCE and PDF 131-140
Get Full Version of the Exam
http://www.EnsurePass.com/SY0-501.html
Question No.131
To reduce disk consumption, an organization#39;s legal department has recently approved a new policy setting the data retention period for sent email at six months. Which of the following is the
BEST way to ensure this goal is met?
-
Create a daily encrypted backup of the relevant emails.
-
Configure the email server to delete the relevant emails.
-
Migrate the relevant emails into an quot;Archivedquot; folder.
-
Implement automatic disk compression on email servers.
Correct Answer: A
Question No.132
Which of the following are methods to implement HA in a web application server environment? (Select two.)
-
Load balancers
-
Application layer firewalls
-
Reverse proxies
-
VPN concentrators
-
Routers
Correct Answer: AB
Question No.133
Which of the following must be intact for evidence to be admissible in court?
-
Chain of custody
-
Order of violation
-
Legal hold
-
Preservation
Correct Answer: A
Question No.134
A system administrator is reviewing the following information from a compromised server.
Given the above information, which of the following processes was MOST likely exploited via remote buffer overflow attack?
-
Apache
-
LSASS
-
MySQL
-
TFTP
Correct Answer: A
Question No.135
When considering a third-party cloud service provider, which of the following criteria would be the BEST to include in the security assessment process? (Select two.)
-
Use of performance analytics
-
Adherence to regulatory compliance
-
Data retention policies
-
Size of the corporation
-
Breadth of applications support
Correct Answer: BC
Question No.136
When identifying a company#39;s most valuable assets as part of a BIA, which of the following should be the FIRST priority?
-
Life
-
Intellectual property
-
Sensitive data
-
Public reputation
Correct Answer: A
Question No.137
A director of IR is reviewing a report regarding several recent breaches. The director compiles the following statistics
Initial IR engagement time frame
Length of time before an executive management notice went out Average IR phase completion
The director wants to use the data to shorten the response time. Which of the following would accomplish this?
-
CSIRT
-
Containment phase
-
Escalation notifications
-
Tabletop exercise
Correct Answer: D
Question No.138
Adhering to a layered security approach, a controlled access facility employs security guards who verify the authorization of all personnel entering the facility. Which of the following terms BEST describes the security control being employed?
-
Administrative
-
Corrective
-
Deterrent
-
Compensating
Correct Answer: C
Question No.139
A member of the admins group reports being unable to modify the quot;changesquot; file on a server. The permissions on the file are as follows:
Permissions User Group File
rwxrw-r Admins Admins changes
Based on the output above, which of the following BEST explains why the user is unable to modify the quot;changesquot; file?
-
The SELinux mode on the server is set to quot;enforcing.quot;
-
The SELinux mode on the server is set to quot;permissive.quot;
-
An FACL has been added to the permissions for the file.
-
The admins group does not have adequate permissions to access the file.
Correct Answer: C
Question No.140
A security analyst is hardening a web server, which should allow a secure certificate-based session using the organization#39;s PKI infrastructure. The web server should also utilize the latest security techniques and standards. Given this set of requirements, which of the following techniques should the analyst implement to BEST meet these requirements? (Select two.)
-
Install an X- 509-compliant certificate.
-
Implement a CRL using an authorized CA.
-
Enable and configure TLS on the server.
-
Install a certificate signed by a public CA.
-
Configure the web server to use a host header.
Correct Answer: AC
Get Full Version of the Exam
SY0-501 Dumps
SY0-501 VCE and PDF