CompTIA SY0-501 Security+ Take Ten Challenge #3Step 1 of 1010%3-1: On which of the following would you most likely find an SoC? Load balancer Database server Firewall SCADA Media player 3-2: A system administrator uses a PIN to unlock the door to the data center. Which of these best describes this authentication factor? Something you have Something you are Something you do Somewhere you are Something you know 3-3: A piece of manufacturing equipment is no longer sold, and individual parts for the equipment are no longer available. Which of the following would best describe the lifetime of this equipment? MTTR RTO MTTF MTBF RPO 3-4: A system administrator would like to validate all domain name resolution requests made to the corporate web server. Which of the following would provide this functionality? HTTPS SNMPv3 IPsec DNSSEC SSH 3-5: A web server administrator for a large data center needs to store all of the HTTPS encryption keys on a secure storage device. Which of the following would be the best choice for this task? TPM HSM FTPS UEFI FDE 3-6: Sam, a user in the accounting department, has created a spreadsheet containing employee expense report summaries. Sam assigns file permissions that allows Rodney to read and modify the file. No other permissions are added to the file. What type of access control is in use? Discretionary access control Role-based access control Mandatory access control Rule-based access control Attribute-based access control 3-7: A security administrator is upgrading all of their physical key door locks to electronic versions. What type of control would best describe this security feature? Preventive Deterrent Compensating Detective Corrective 3-8: A system administrator has downloaded an important operating system image from a third-party web site. The administrator would like to validate that the downloaded image is identical to the version on the web site. Which of the following would provide this capability? ECB 3DES SHA-2 RC4 Diffie-Hellman 3-9: A non-salted database of password hashes was stolen from a company, and the list of usernames and plaintext passwords was posted to the Internet a week later. How did the thieves obtain the passwords? Hashing Man-in-the-middle Driver manipulation Phishing Brute force 3-10: Which of these would be the best way to determine the version of a web server running on a remote device? netstat Steganography tool Banner grabber ping Honeypot
