Comptia sy0 501 - Study guides, Class notes & Summaries

Port number of HTTP - Answer- TCP 80 Port number of DNS Query - Answer- UDP 53 Port number of DNS Zone Transfer - Answer- TCP 53 Port number of HTTPS - Answer- TCP 443 Port number of Secure POP - Answer- 995 Port number of Secure IMAP - Answer- 993 Port number of SSL/TLS - Answer- 443 Port number of SFTP - Answer- 22 Port number of LDAPS - Answer- 636 Port number of SSH - Answer- 22 Port number of SNMP - Answer- 161 Key

encryption A reversible process of converting data such that to a third party the data is nothing more than a random binary string. decryption Makes encrypted data readable. cryptography The science of encrypting and decrypting data. encryption The process of converting plaintext information into ciphertext information. plaintext Any form of easily readable binary data. ciphertext Any form of encrypted binary data. code A representation of an enti...

Security Policy Awareness Purpose - Answer- To enhance security by: - Improving awareness of the need to protect system resources - Developing skills/knowledge so computer uses can perform their jobs more securely End User Training - Answer- - Purpose, explanation, importance of adhering to security policy/procedures - Training should be initial, periodic, and ongoing Role Based Training - Answer- Specialized training that is customized to the specific role that an employee holds in the...

Authentication CORRECT ANSWERS: When a person's identity is established with proof and confirmed by a system Authorization CORRECT ANSWERS: When a user is given access to certain data or areas of a building Accounting CORRECT ANSWERS: The tracking of data, computer usage, and network resources What is information security? CORRECT ANSWERS: A. Information security (also called computer security) is the act of protecting data and information from unauthorized access, unlawful modific...

What is malware? CORRECT ANSWERS: malicious software What are the types and methods of Malware? CORRECT ANSWERS: 1. Viruses 2. Crypto-malware, Ransomware 3. Worms 4. Trojan Horse 5. Rootkit 6. Keylogger 7. Adware/Spyware 8. Botnet What is the CIA of computer security? CORRECT ANSWERS: 1. Confidentiality 2. Integrity 3. Availability What is the AAA of computer security? CORRECT ANSWERS: 1. Authentication 2. Authorization 3. Accounting Organization uses the CIA principle...

Which device relieves the CPU from encryption and decryption processing? A. HSM B. TPM C. SSL D. SED CORRECT ANSWERS: A. HSM A technician installs a Linux virtual machine from the installation media and then applies the latest operating system patches. What else should be done to harden the installation? A. Configure a host-based firewall B. Rename the administrator account C. Disable unnecessary services D. Patch the installation CORRECT ANSWERS: A. Configure a host-based fire...

Which option is not a well-known personal cloud service? CORRECT ANSWERS: Kali. Which system should be used in medium to larger organizations to manage mobile app software? CORRECT ANSWERS: MDM. Which statement is false concerning personnel issues? CORRECT ANSWERS: Safely terminate employees through e-mail or sms whenever possible. Reduction in baseline deviation can be accomplished by using disk quotas, provisioned service usage quotas, and acceptable use policies. Select if this i...

Which client-server protocol enables a remote access server to communicate with a central server to authenticate dial-in users and authorize their access to systems? CORRECT ANSWERS: RADIUS Which Kerberos-trusted third party service, familiar with all systems and trusted by all, guarantees privacy and data integrity? CORRECT ANSWERS: KDC Which statement is not true about OAuth 2.0? CORRECT ANSWERS: It is a proprietary framework that allows any application complete access to an HTTPS ser...

Cloud Computing CORRECT ANSWERS: A system in which all computer programs and data is stored on a central server owned by a company (e.g. Google) and accessed virtually Hyperconvergence CORRECT ANSWERS: Allows providers to fully integrate the storage, network, and servers VDI CORRECT ANSWERS: Virtual Desktop Infrastructure. Allows a provider to offer a full desktop OS to a user from a centralized server Secure Enclave CORRECT ANSWERS: Utilizes to distinct areas where data can be stor...

What is HIDS? CORRECT ANSWERS: Host-based Intrusion Detection System What is a personal firewall? CORRECT ANSWERS: an application that protects an individual computer from unwanted Internet traffic, by way of a set of rules and policies What is a pop-up blocker? CORRECT ANSWERS: An application/add-on on a web browser that blocks pop-up windows that usually contain advertisements What is ad filtering? CORRECT ANSWERS: Pop-up blocking What are content filters? CORRECT ANSWERS: Ind...