This page was exported from New Lead2pass Dumps PDF Version Released For Free Downloading [ ] Export date:Thu May 28 15:19:42 2020 / +0000 GMT ___________________________________________________ Title: [Lead2pass New] Lead2pass Offers Free SY0-501 Dumps Files for Free Downloading By SY0-501 Exam Expert (71-80) --------------------------------------------------- Lead2pass 2017 November New CompTIA SY0-501 Exam Dumps! 100% Free Download! 100% Pass Guaranteed! No doubt that SY0-501 exam is a worth challenging task but you should not feel hesitant against the confronting difficulties. Lead2pass is supplying the new version of SY0-501 VCE dumps now. Get a complete hold on SY0-501 exam syllabus through Lead2pass and boost up your skills. What's more, the SY0-501 dumps are the latest. It would be great helpful to your SY0-501 exam. Following questions and answers are all new published by CompTIA Official Exam Center: QUESTION 71A security analyst has been asked to perform a review of an organization's software development lifecycle. The analyst reports that the lifecycle does not contain a phase in which team members evaluate and provide critical feedback of another developer's code. Which of the following assessment techniques is BEST described in the analyst's report? A.    Architecture evaluationB.    Baseline reportingC.    Whitebox testingD.    Peer reviewAnswer: D QUESTION 72An attacker wearing a building maintenance uniform approached a company's receptionist asking for access to a secure area. The receptionist asks for identification, a building access badge and checks the company's list approved maintenance personnel prior to granting physical access to the secure are. The controls used by the receptionist are in place to prevent which of the following types of attacks? A.    TailgatingB.    Shoulder surfingC.    ImpersonationD.    Hoax Answer: C QUESTION 73A security administrator is tasked with conducting an assessment made to establish the baseline security posture of the corporate IT infrastructure. The assessment must report actual flaws and weaknesses in the infrastructure. Due to the expense of hiring outside consultants, the testing must be performed using in-house or cheaply available resource. There cannot be a possibility of any requirement being damaged in the test. Which of the following has the administrator been tasked to perform? A.    Risk transferenceB.    Penetration testC.    Threat assessmentD.    Vulnerability assessment Answer: D QUESTION 74A network administrator is attempting to troubleshoot an issue regarding certificates on a secure website. During the troubleshooting process, the network administrator notices that the web gateway proxy on the local network has signed all of the certificates on the local machine.Which of the following describes the type of attack the proxy has been legitimately programmed to perform? A.    Transitive accessB.    SpoofingC.    Man-in-the-middleD.    Replay Answer: C QUESTION 75Which of the following use the SSH protocol? A.    StelnetB.    SCPC.    SNMPD.    FTPSE.    SSLF.    SFTP Answer: BF QUESTION 76Which of the following is the GREATEST risk to a company by allowing employees to physically bring their personal smartphones to work? A.    Taking pictures of proprietary information and equipment in restricted areas.B.    Installing soft token software to connect to the company's wireless network.C.    Company cannot automate patch management on personally-owned devices.D.    Increases the attack surface by having more target devices on the company's campus Answer: A QUESTION 77Which of the following is the summary of loss for a given year? A.    MTBFB.    ALEC.    SLAD.    ARO Answer: B QUESTION 78A Security Officer on a military base needs to encrypt several smart phones that will be going into the field. Which of the following encryption solutions should be deployed in this situation? A.    Elliptic curveB.    One-time padC.    3DESD.    AES-256 Answer: D QUESTION 79An organization relies heavily on an application that has a high frequency of security updates. At present, the security team only updates the application on the first Monday of each month, even though the security updates are released as often as twice a week. Which of the following would be the BEST method of updating this application? A.    Configure testing and automate patch management for the application.B.    Configure security control testing for the application.C.    Manually apply updates for the application when they are released.D.    Configure a sandbox for testing patches before the scheduled monthly update. Answer: A QUESTION 80A technician must configure a firewall to block external DNS traffic from entering a network. Which of the following ports should they block on the firewall? A.    53B.    110C.    143D.    443 Answer: A More free Lead2pass SY0-501 exam new questions on Google Drive: Lead2pass is one of the leading exam preparation material providers. We have a complete range of exams offered by the top vendors. You can download SY0-501 dumps in PDF format on Comparing with others', our SY0-501 exam questions are more authoritative and complete. What's more, the SY0-501 dumps are the latest. We ensure you pass the SY0-501 exam easily. 2017 CompTIA SY0-501 (All 166 Q&As) exam dumps (PDF&VCE) from Lead2pass: [100% Exam Pass Guaranteed] --------------------------------------------------- Images: --------------------------------------------------- --------------------------------------------------- Post date: 2017-11-09 03:55:40 Post date GMT: 2017-11-09 03:55:40 Post modified date: 2017-11-09 03:55:40 Post modified date GMT: 2017-11-09 03:55:40 ____________________________________________________________________________________________ Export of Post and Page as text file has been powered by [ Universal Post Manager ] plugin from