363q.pdf - CS0-001.prepaway.premium.exam.363q Number CS0-001 Passing Score 800 Time Limit 120 min File Version 10.0 CS0-001 CompTIA CSA Certification

363q.pdf - CS0-001.prepaway.premium.exam.363q Number...

This preview shows page 1 - 11 out of 206 pages.

CS0-001.prepaway.premium.exam.363q Number : CS0-001 Passing Score : 800 Time Limit : 120 min File Version : 10.0 CS0-001 CompTIA CSA+ Certification Exam Version 10.0
Image of page 1
Exam A QUESTION 1 SIMULATION The developers recently deployed new code to three web servers. A daily automated external device scan report shows server vulnerabilities that are failing items according to PCI DSS. If the vulnerability is not valid, the analyst must take the proper steps to get the scan clean. If the vulnerability is valid, the analyst must remediate the finding. After reviewing the information provided in the network diagram, select the STEP 2 tab to complete the simulation by selecting the correct Validation Result and Remediation Action for each server listed using the drop-down options. Instructions STEP 1: Review the information provided in the network diagram. STEP 2: Given the scenario, determine which remediation action is required to address the vulnerability. If at any time you would like to bring back the initial state of the simulation, please select the Reset All button .
Image of page 2
Image of page 3
Image of page 4
Image of page 5
Image of page 6
Image of page 7
Correct Answer: See the answer below Section: (none) Explanation Explanation/Reference: Explanation: WEB_SERVER01: VALID – IMPLEMENT SSL/TLS WEB_SERVER02: VALID – SET SECURE ATTRIBUTE WHEN COOKIE SHOULD SENT VIA HTTPS ONLY WEB_SERVER03: VALID – IMPLEMENT CA SIGNED CERTIFICATE
Image of page 8
QUESTION 2 DRAG DROP You suspect that multiple unrelated security events have occurred on several nodes on a corporate network. You must review all logs and correlate events when necessary to discover each security event by clicking on each node. Only select corrective actions if the logs shown a security event that needs remediation. Drag and drop the appropriate corrective actions to mitigate the specific security event occurring on each affected device. Instructions: The Web Server, Database Server, IDS, Development PC, Accounting PC and Marketing PC are clickable. Some actions may not be required and each actions can only be used once per node. The corrective action order is not important. If at any time you would like to bring back the initial state of the simulation, please select the Reset button. When you have completed the simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue. Select and Place:
Image of page 9
Correct Answer: Section: (none) Explanation Explanation/Reference: QUESTION 3 HOTSPOT A security analyst suspects that a workstation may be beaconing to a command and control server. Inspect the logs from the company’s web proxy server and the firewall to determine the best course of action to take in order to neutralize the threat with minimum impact to the organization. Instructions: Modify the firewall ACL, using the Firewall ACL form to mitigate the issue.
Image of page 10
Image of page 11

You've reached the end of your free preview.

Want to read all 206 pages?

  • Fall '19

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern

Stuck? We have tutors online 24/7 who can help you get unstuck.
A+ icon
Ask Expert Tutors You can ask You can ask You can ask (will expire )
Answers in as fast as 15 minutes
A+ icon
Ask Expert Tutors