Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. SK0-005

Free CompTIA SK0-005 Exam Braindumps (page: 41)

Page 18 of 92
PDF with 540 Questions

A server administrator was asked to build a storage array with the highest possible capacity.
Which of the following RAID levels should the administrator choose?

  1. RAID 0
  2. RAID 1
  3. RAID 5
  4. RAID 6

Answer(s): A

Explanation:

The RAID level that provides the highest possible capacity for a storage array is RAID 0. RAID 0 is a type of RAID level that provides performance enhancement by using striping. Striping means dividing data into blocks and distributing them across multiple disks to increase speed and capacity. RAID 0 does not provide any fault tolerance or redundancy, as it does not use any parity or mirroring techniques. RAID 0 uses all of the available disk space for data storage, without losing any space for overhead. Therefore, RAID 0 provides the highest possible capacity for a storage array, but also has the highest risk of data loss.


Reference:

https://www.thinkmate.com/inside/articles/what-is-raid



A technician needs to deploy an operating system that would optimize server resources.
Which of the following server installation methods would BEST meet this requirement?

  1. Full
  2. Bare metal
  3. Core
  4. GUI

Answer(s): C

Explanation:

The server installation method that would optimize server resources is core. Core is a minimal installation option that is available for some operating systems, such as Windows Server and Linux. Core installs only the essential components and features of the operating system, without any graphical user interface (GUI) or other unnecessary services or applications. Core reduces the disk footprint, memory usage, CPU consumption, and attack surface of the server, making it more efficient and secure. Core can be managed remotely using command-line tools, PowerShell, or GUI tools.


Reference:

https://docs.microsoft.com/en-us/windows-server/administration/performance-tuning/hardware/



A company's IDS has identified outbound traffic from one of the web servers coming over port 389 to an outside address. This server only hosts websites. The company's SOC administrator has asked a technician to harden this server.
Which of the following would be the BEST way to complete this request?

  1. Disable port 389 on the server
  2. Move traffic from port 389 to port 443
  3. Move traffic from port 389 to port 637
  4. Enable port 389 for web traffic

Answer(s): A

Explanation:

The best way to complete the request to harden the server is to disable port 389 on the server. Port 389 is the default port used by LDAP (Lightweight Directory Access Protocol), which is a protocol that allows access and modification of directory services over a network. LDAP can be used for authentication, authorization, or information retrieval purposes. However, LDAP does not encrypt its data by default, which can expose sensitive information or credentials to attackers who can intercept or modify the network traffic. Therefore, port 389 should be disabled on a web server that only hosts websites and does not need LDAP functionality. Alternatively, port 636 can be used instead of port 389 to enable LDAPS (LDAP over SSL/TLS), which encrypts the data using SSL/TLS certificates.



Which of the following would be BEST to help protect an organization against social engineering?

  1. More complex passwords
  2. Recurring training and support
  3. Single sign-on
  4. An updated code of conduct to enforce social media

Answer(s): B

Explanation:

The best way to protect an organization against social engineering is to provide recurring training and support. Social engineering is a type of attack that exploits human psychology and behavior to manipulate people into divulging confidential information or performing malicious actions. Social engineering can take various forms, such as phishing emails, phone calls, impersonation, baiting, or quid pro quo. The best defense against social engineering is to educate and empower the employees to recognize and avoid common social engineering techniques and report any suspicious activities or incidents. Recurring training and support can help raise awareness and reinforce best practices among the employees.






Post your Comments and Discuss CompTIA SK0-005 exam prep with other Community members:

SK0-005 Exam Discussions & Posts