SY0-201修正版.docVIP

Exam : CompTIA SY0-201 Title : CompTIA Security+(2008 Edition) Exam Version : Which of the following devices would be used to gain access to a secure network without affecting network connectivity? 下面哪个设备将被使用于获得访问一个可靠的网络而没有影响网络连接？ A. Router 路由 B. Vampire tap刺穿式搭接器 C. Firewall 防火墙 D. Fiber-optic splicer 光纤接合器 Answer: B A technician needs to ensure that all major software revisions have been installed on a critical network machine. Which of the following must they install to complete this task? 技术人员必须要保证所有的重要软件修正版被安装到一个关键的网络机器上，下面那些必须要安装以完成这个任务？ A. HIDS 基于主机的入侵检测系统 B. Hotfixes 热修复补丁 C. Patches 补丁 D. Service packs 服务补丁集 Answer: D Which of the following can increase risk? (Select TWO). 下面那个能增加风险？ A. Vulnerability脆弱性 B. Mantrap是一种“贮蜜罐”式的入侵检测系统，它被设计成引诱攻击者进入其中并对其行为进行分析。 C. Configuration baselines D. Threat source 威胁来源 E. Mandatory vacations 强制休假 Answer: AD Which of the following is the MOST secure way to encrypt traffic and authenticate users on a wireless network? 在一个无线网络中下列那个加密流量和鉴定用户是最安全的？ A. WPA2 encryption using a RADIUS server 加密使用一个RADIUS（远程身份验证拨号用户服务器） B. WEP encryption using a pre-shared key (PSK) C. WEP encryption using a RADIUS server D. WPA2 encryption using a pre-shared key (PSK) 预共享密钥 Answer: A Which of the following is the MOST appropriate way to set permissions on the server log that records logins and logouts? 下面那个是最合适的组来设置登录和退出的权限在服务器日志记录里？ 给记录 登录和退出的服务器日志设置权限，以下哪种方式最合适? A. Developers group full control 开发组 B. Users group full control C. Power users group full control D. Security group full control 安全组全控制 Answer: D Which of the following is MOST likely to be an issue when turning on all auditing functions within a system? 下面那个最可能的一个问题当打开所有审核功能在一个系统里？ 在一个系统里所有的审核功能都被打开，以下方式哪种是最有可能的？ A. Flooding the network with all of the log information 泛滥的网络日志信息 B. Lack of support for standardized log review tools 没有支持标准日志浏览工具 C. Too much information to review太多信息被浏览 D. Too many available log aggregation tools 太多的可用日志集合工具 Answer: C