Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home CompTIA CA1-005

CompTIA CA1-005 Exam Practice Questions (P. 2)

  • Full Access (115 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #6
A manufacturing plant is updating its IT services. During discussions, the senior management team created the following list of considerations:
• Staff turnover is high and seasonal.
• Extreme conditions often damage endpoints.
• Losses from downtime must be minimized.
• Regulatory data retention requirements exist.
Which of the following best addresses the considerations?
  1. A
    Establishing further environmental controls to limit equipment damage
  2. B
    Using a non-persistent virtual desktop interface with thin clients
  3. C
    Deploying redundant file servers and configuring database journaling
  4. D
    Maintaining an inventory of spare endpoints for rapid deployment

Correct Answer: B ?️

Question #7
A company runs a DAST scan on a web application. The tool outputs the following recommendations:
• Use Cookie prefixes.
• Content Security Policy - SameSite=strict is not set.
Which of the following vulnerabilities has the tool identified?
  1. A
    RCE
  2. B
    XSS
  3. C
    CSRF
  4. D
    TOCTOU

Correct Answer: C ?️

Question #8
A company hired an email service provider called my-email.com to deliver company emails. The company started having several issues during the migration. A security engineer is troubleshooting and observes the following configuration snippet:

Which of the following should the security engineer modify to fix the issue? (Choose two.)
  1. A
    The email CNAME record must be changed to a type A record pointing to 192.168.1.11
  2. B
    The TXT record must be changed to "v=dmarc ip4:192.168.1.10 include:my-email.com ~all"
  3. C
    The srv01 A record must be changed to a type CNAME record pointing to the email server
  4. D
    The email CNAME record must be changed to a type A record pointing to 192.168.1.10
  5. E
    The TXT record must be changed to "v=dkim ip4:192.168.1.11 include :my-email.com ~all"
  6. F
    The TXT record must be changed to "v=spf ip4:192.168.1.10 include :my-email.com ~all"
  7. G
    The srv01 A record must be changed to a type CNAME record pointing to the web01 server

Correct Answer: DF ?️

Question #9
A security analyst is reviewing the following log:

Which of the following possible events should the security analyst investigate further?
  1. A
    A macro that was prevented from running
  2. B
    A text file containing passwords that were leaked
  3. C
    A malicious file that was run in this environment
  4. D
    A PDF that exposed sensitive information improperly

Correct Answer: C ?️

Question #10
After a company discovered a zero-day vulnerability in its VPN solution, the company plans to deploy cloud-hosted resources to replace its current on-premises systems. An engineer must find an appropriate solution to facilitate trusted connectivity. Which of the following capabilities is the most relevant?
  1. A
    Container orchestration
  2. B
    Microsegmentation
  3. C
    Conditional access
  4. D
    Secure access service edge

Correct Answer: D ?️

Previous Questions Next Questions

All Pages