Practice Quiz

CompTIA Security+ Exam Prep - Question List

Select how would you like to study

Study Mode Free Daily Question Test Mode
101. What is the first line of defense for a network’s security and is another name for a locked-down system?
  1. Firewall Architecture
  2. Dual-homed Firewall
  3. Bastion Host
  4. Screened Host
See answer
102. Which of the following specifies why Shared Key authentication is considered a security risk?
  1. Access points transmit unencrypted challenge text and receive the same challenge text encrypted with the WEP key
  2. Keys are shared broadcasted to all network nodes
  3. A hacker can sniff the keys with a protocol analyzer
  4. All computers use identical WEP keys
See answer
103. Why is SSID filtering not considered a secure form of access control?
  1. SSID is uni-casted in the clear to every access point beacon by default.
  2. The SSID of a wireless LAN client must match the SSID on the access point in order for the client to authenticate and associate to the access point.
  3. SSID of a network can be easily found out using a protocol analyzer.
  4. SSID encryption is easy to decrypt using freeware utilities.
See answer
104. Why should access points be connected to switches instead of hubs?
  1. Hubs are faster than switches and can handle high-utilization networks.
  2. Hubs are full duplex and switches are only half duplex.
  3. Hubs are broadcast devices and pose an unnecessary security risk.
  4. Access points are not capable of full-duplex mode.
See answer
105. Which of the following wireless LAN user authentication methods provides maximum security?
  1. Device independent user names and passwords
  2. SSID
  3. MAC addresses
  4. SSID and MAC address
See answer

Select how would you like to study

Study Mode Free Daily Question Test Mode