CompTIA Security Plus Architecture and Design Part 7
L2TP
You have been instructed to find a VPN solution for your company. Your company uses TACACS+ for remote access. Which of the following would be the best VPN solution for your company?
Firewall
38. Which device would most likely process the following rules? PERMIT IP ANY EQ 443 DENY IP ANY ANY
Fail open
Daniel is responsible for physical security in his company. All external doors have electronic smart card access. In an emergency such as a power failure, how should the doors fail?
Deadbolt
Carole is concerned about security for her server room. She wants the most secure lock she can find for the server room door. Which of the following would be the best choice for her?
Publish that certificate in the CRL.
David is responsible for cryptographic keys in his company. What is the best way to deauthorize a public key?
Implement protected cabling.
Donald is responsible for networking for a defense contractor. He is concerned that emanations from UTP cable could reveal classified information. Which of the following would be his most effective way to address this?
Implement port mirroring for that segment.
Emily manages the IDS/IPS for her network. She has an NIPS installed and properly configured. It is not detecting obvious attacks on one specific network segment. She has verified that the NIPS is properly configured and working properly. What would be the most efficient way for her to address this?
Store the drives in a secure cabinet.
Fred is responsible for physical security in his company. He wants to find a good way to protect the USB thumb drives that have BitLocker keys stored on them. Which of the following would be the best solution for this situation?
Infrared-sensing camera
Gerard is responsible for physical security at his company. He is considering using cameras that would detect a burglar entering the building at night. Which of the following would be most useful in accomplishing this goal?
Proxy server
Ixxia is responsible for security at a mid-sized company. She wants to prevent users on her network from visiting job-hunting sites while at work. Which of the following would be the best device to accomplish this goal?
Security practices of the web application vendor
Jacob is the CIO for a mid-sized company. His company has very good security policies and procedures. The company has outsourced its web application development to a well-known web programming company. Which of the following should be the most important security issue for Jacob to address?
RAID 6
Juanita is responsible for servers in her company. She is looking for a fault-tolerant solution that can handle two drives failing. Which of the following should she select?
Roll the server back to the last known good state.
Mike is a network administrator for an e-commerce company. There have been several updates to the operating system, the web server software, and the web application, all within the last 24 hours. It appears that one of these updates has caused a significant security problem. What would be the best approach for Mike to take to correct this problem?
FAR
Molly is implementing biometrics in her company. Which of the following should be her biggest concern?
Type C
Thomas is trying to select the right fire extinguisher for his company's server room. Which of the following would be his best choice?
Block EMI
Tim is implementing a Faraday cage around his server room. What is the primary purpose of a Faraday cage?
40% to 60%
What is the ideal humidity range for a server room?
Use a master image that is properly configured and image all workstations from that.
You are a network administrator for a mid-sized company. You need all workstations to have the same configuration. What would be the best way for you to accomplish this?
Load balancing
You are responsible for an e-commerce site. The site is hosted in a cluster. Which of the following techniques would be best in assuring availability?
Smart card access
You are working for a large company. You are trying to find a solution that will provide controlled physical access to the building and record every employee who enters the building. Which of the following would be the best for you to implement?