Chapter4 - Free CompTIA Security+ Practice Exam | Anki Flashcards

Ref:📕CompTIA Security Plus Get Certified Get Ahead SY0-701 Study Guide

CompTIA Security+ (SY0-701) – Chapter 4

1 / 93

What were some of the early wireless cryptographic protocols, and why are they not recommended for use today?

A. WEP and WPA, because they are easy to exploit

B. IKE and SSH, because they are heavy on resources

C. PGP and RSA, because they are outdated and no longer used

D. AES and DES, because they are not very secure

2 / 93

Why is it a good practice to change the default SSID of an Access Point (AP)?

A. To make it easier for users to identify the network

B. To give the AP a cooler sounding name

C. It prevents attackers from guessing the make and model of the AP

D. It enables faster connection speeds

3 / 93

What is the role of an 802.1X server in a network?

A. It provides port-based authentication and prevents rogue devices from connecting.

B. It acts as a firewall to prevent unauthorized access.

C. It manages the IP addresses of all the devices connected.

D. It monitors the traffic and identifies potential threats.

4 / 93

Which of the following tunneling protocols encrypts VPN traffic using TLS over port 443?

A. IPsec

B. OpenVPN

C. Secure Socket Tunneling Protocol (SSTP)

D. OpenConnect

5 / 93

What is a disassociation attack?

A. It’s an attack where a hacker gains unauthorized access to a network by cracking the wireless password.

B. It’s an attack that involves sending a disassociation frame to the wireless access point with a spoofed MAC address of the victim.

C. It’s an attack where an attacker sends large amounts of data to a network to overwhelm it and shut it down.

D. It’s an attack where a hacker installs malware on a device on the network to gain control over it.

6 / 93

What is a true negative in IDS or IPS?

A. When an IDS or IPS sends an alarm or alert even though there is no actual attack.

B. When an IDS or IPS fails to send an alarm or alert even though an attack is active.

C. When an IDS or IPS does not send an alarm or alert, and there is no actual attack.

D. When an IDS or IPS sends an alarm or alert after recognizing an attack.

7 / 93

What is the function of the Authentication Header (AH) in IPsec?

A. It helps in encrypting the data

B. It allows the IPsec conversation hosts to authenticate with each other

C. It allows attackers to intercept the traffic

D. It creates security associations (SAs) for the VPN

8 / 93

What is one of the issues related to wireless networks mentioned in the text?

A. They are too difficult to install.

B. No one uses them.

C. They are susceptible to vulnerabilities and many users don’t understand how to properly secure them.

D. They are very expensive.

9 / 93

What is the purpose of a Wi-Fi analyzer in a site survey?

A. To analyze the temperature of the wireless network

B. To identify activity on channels within the wireless spectrum and analyze activity in the 2.4-GHz and 5-GHz frequency ranges

C. To create a physical map of the premises

D. To identify the number of users connected to the network

10 / 93

Which of the following best describes a ’false negative’ in the context of an Intrusion Detection System (IDS)?

A. It occurs when an IDS or IPS sends an alarm or alert when there is no actual attack.

B. It is when an attacker is actively attacking the network, but the system fails to detect it.

C. A true negative occurs when an IDS or IPS does not send an alarm or alert, and there is no actual attack.

D. It happens when an IDS or IPS sends an alarm or alert after recognizing an attack.

11 / 93

What is a false positive in the context of IDSs?

A. It is when an IDS fails to send an alarm or alert during an active attack.

B. It is when an IDS does not send an alarm or alert and there is no actual attack.

C. It is when an IDS sends an alarm or alert when there is no actual attack.

D. It is when an IDS sends an alarm or alert after recognizing an attack.

12 / 93

What method can an attacker use to bypass MAC filtering in a wireless network?

A. Applying a network protocol scan

B. Impersonating an allowed MAC address

C. Disabling the wireless router

D. Cracking the router password

13 / 93

What is a common method used by attackers to degrade the performance of a wireless network?

A. Boosting the frequency of the network

B. Transmitting noise or another radio signal on the same frequency used by the network

C. Taking control of the wireless router remotely

D. Transforming the radio signal into a visible signal

14 / 93

Where should sensors be installed if you want to monitor all attacks on your network?

A. On the Internet side of the firewall

B. On the internal side of the firewall

C. On the network appliance

D. On the individual hosts

15 / 93

What is the best protection against wireless replay attacks?

A. Use of deprecated wireless cryptographic protocols

B. Implementing WPA2 and WPA3

C. Increasing the distance between wireless devices

D. Decreasing the signal strength of the wireless network

16 / 93

Which of the following statements is correct according to the text?

A. All APs are wireless routers.

B. All wireless routers do not have any additional capabilities.

C. All wireless routers are APs.

D. Many wireless routers do not have any additional capabilities.

17 / 93

What is the primary purpose of a honeypot in a network security context?

A. To contain valuable data for the organization

B. To provide an easy target for experienced attackers

C. To deceive attackers and divert them from the live network

D. To reduce the need for security professionals

18 / 93

Which wireless security protocol is most vulnerable to attacks?

A. WPA with CCMP

B. WPA2 with TKIP

C. WPA with TKIP

D. WPA2 with CCMP

19 / 93

What is the difference between a wireless access point (AP) and a wireless router according to the CompTIA Security+ SY0-701 text?

A. All wireless routers are APs, but not all APs are wireless routers

B. All wireless access points are wireless routers

C. Wireless routers do not have routing capabilities

D. Wireless access points and wireless routers are interchangeably used terms

20 / 93

Which of the following best describes a Denial-of-Service (DoS) attack on an RFID system?

A. A bogus tag mimicking a valid one to steal valuable objects

B. Listening and collecting transmitted data by tuning into the RFID’s frequency

C. Flooding the RFID system’s frequency with noise causing disruption in normal services

D. Tracking and managing inventory using an RFID reader and tags

21 / 93

What is the main function of a honeyfile in cybersecurity?

A. It’s a useful file with valuable data that should be protected

B. It’s a placeholder that maintains system operations

C. It’s a decoy file designed to lure and deceive attackers

D. It’s a file with encrypted passwords

22 / 93

Which of the following authentication protocols was designed by Cisco as a secure replacement for Lightweight EAP (LEAP), and supports but does not require certificates?

A. RADIUS Federation

B. Protected EAP (PEAP)

C. EAP-TLS

D. EAP-FAST

23 / 93

Which of the following statements about Wi-Fi Protected Setup (WPS) is not true?

A. WPS allows users to configure wireless devices without typing in the passphrase.

B. A WPS attack typically discovers the PIN within hours and use it to discover the passphrase.

C. WPS is safe if it is used with WPA2.

D. Security experts recommend disabling WPS on all devices.

24 / 93

What is the primary difference between War Driving and War Flying?

A. War Driving involves walking or driving, while War Flying involves flying on planes or drones.

B. War Driving is a defensive mechanism, while War Flying is an offensive mechanism.

C. War Driving uses 2.4 GHz signals only, while War Flying uses 5 GHz signals only.

D. War Driving can only be used in urban areas, while War Flying can be used in both urban and rural areas.

25 / 93

What is the difference between a split tunnel and a full tunnel in the context of a VPN?

A. A split tunnel encrypts all traffic after a user has connected to a VPN while a full tunnel only encrypts traffic destined for the VPN’s private network.

B. A full tunnel encrypts all traffic after a user has connected to a VPN while a split tunnel only encrypts traffic destined for the VPN’s private network.

C. A full tunnel and a split tunnel both encrypt all traffic after a user has connected to a VPN.

D. A split tunnel and a full tunnel both only encrypt traffic destined for the VPN’s private network.

26 / 93

What is a rogue access point (rogue AP) as discussed in the text?

A. An officially authorized access point within the network

B. An access point installed within a network without official authorization

C. An access point associated with a villain or criminal

D. A legitimate access point installed by an attacker

27 / 93

What is the key difference between PEAP and EAP-TLS?

A. PEAP provides an extra layer of protection for EAP

B. EAP-TLS is one of the most secure EAP standards

C. EAP-TLS requires certificates on the 802.1X server and the clients

D. PEAP and EAP-TTLS require a certificate on the server, but not the clients

28 / 93

What does a heat map produced by a site survey tool show in a wireless network?

A. The total number of wireless devices connected to the network.

B. The data usage of each connected device.

C. The color-coded representation of wireless signals strength.

D. The password strength of the wireless network.

29 / 93

What are the cryptographic protocols used by WPA2 (IEEE 802.11i)?

A. AES and DES

B. RSA and IDEA

C. AES and CCMP

D. RSA and CCMP

30 / 93

What is a significant weakness of the Password Authentication Protocol (PAP)?

A. It requires a shared secret for authentication.

B. It sends passwords over the network in cleartext.

C. It is less secure than VPN.

D. It is primarily used with dial-up connections.

31 / 93

What is meant by ’True Positive’ in the context of Intrusion Detection Systems (IDS)?

A. It refers to when an IDS or IPS does not send an alert, and there is no actual attack.

B. It refers to when an IDS or IPS fails to send an alert even though an attack is active.

C. It occurs when an IDS or IPS sends an alarm or alert after recognizing an attack.

D. It refers to when an IDS or IPS sends an alarm or alert when there is no actual attack.

32 / 93

In IPsec, what is the benefit of using Tunnel mode over Transport mode?

A. Tunnel mode encrypts only the payload.

B. Transport mode hides the IP addresses used within a private network.

C. Tunnel mode encrypts both the payload and the packet headers, hiding internal networking addresses.

D. Tunnel mode is ideal for use within private networks exclusively.

33 / 93

How does the Challenge Handshake Authentication Protocol (CHAP) maintain security during authentication as compared to Password Authentication Protocol (PAP)?

A. CHAP sends the password over the network in plaintext.

B. CHAP encrypts the password and sends it over the network.

C. CHAP combines the shared secret with a nonce, hashes it, and sends it over the network.

D. CHAP does not use any encryption and simply sends the password over the network.

34 / 93

Where does the traffic pass through for a host-based intrusion detection system (HIDS) to monitor?

A. Through the main server

B. Through the network interface card (NIC)

C. Through the external firewall

D. Through the antivirus software

35 / 93

Which of the following statements is correct regarding Wireless Access Points (APs) and wireless routers based on the given text?

A. All APs are wireless routers.

B. Wireless routers do not have any additional capabilities other than connectivity.

C. All wireless routers are APs, but not all APs are wireless routers.

D. Wireless APs do not provide connectivity for wireless clients to a wired network.

36 / 93

What is a false positive in the context of IDS or IPS?

A. When an IDS or IPS fails to send an alarm or alert even though an attack is active

B. When an IDS or IPS does not send an alarm or alert, and there is no actual attack.

C. When an IDS or IPS sends an alarm or alert when there is no actual attack.

D. When an IDS or IPS sends an alarm or alert after recognizing an attack.

37 / 93

What does Chapter 3, ’Exploring Network Technologies and Tools’, cover?

A. Advanced security devices used to secure networks

B. Basic network technologies and protocols

C. Both basic and advanced networking technologies

D. Network troubleshooting tools

38 / 93

Which of the following protocols does NOT provide all three AAA services; authentication, authorization, and accounting?

A. RADIUS

B. TACACS+

C. Diameter

D. Kerberos

39 / 93

What is a key requirement for conducting a sniffing or eavesdropping attack on an RFID system?

A. The attacker needs to know the system frequency of the RFID

B. The attacker should have physical access to the RFID tag

C. The attacker needs to clone the RFID tag

D. The attacker should be in a range much greater than the proximity readers

40 / 93

Which EAP method requires certificates on both the server and the clients?

A. PEAP

B. EAP-TTLS

C. EAP-FAST

D. EAP-TLS

41 / 93

What is a primary feature or capability of signature-based IDSs?

A. They detect threats by analyzing the flow of data in the network

B. They use a database of known vulnerabilities or known attack patterns to detect threats

C. They rely mainly on machine learning algorithms to detect threats

D. They prevent attacks by creating a secure barrier around the system

42 / 93

Which wireless standard uses both the 2.4 GHz and 5 GHz bands?

A. 801.11b

B. 801.11g

C. 801.11n

D. 801.11ac

43 / 93

What is the primary purpose of a honeypot in a live network?

A. To store valuable data

B. To detect previously unknown attacks

C. To provide easy access to attackers

D. To deceive attackers and divert them from the live network

44 / 93

What is the difference between the use of credentials in the Enterprise mode and PSK mode in WPA2, and which one provides the authentication?

A. Both modes use the username and password for authentication

B. Both modes use the password for authentication and not the username

C. Enterprise mode uses unique credentials for each user for authentication while PSK mode uses only a passphrase for authorization, not authentication

D. PSK mode uses a username and password for each user for authentication while Enterprise mode doesn’t provide authentication

45 / 93

What type of acknowledgment does a captive portal typically ask for when offering free Internet access?

A. Users to create a profile

B. Users to enter credit card information

C. Users to check a box agreeing to an acceptable use policy (AUP)

D. Users to pay a small fee

46 / 93

What is the difference between wireless routers and wireless access points (APs) according to the CompTIA Security+ exam study material?

A. Wireless routers and APs are completely different devices.

B. All wireless routers are APs, but not all APs are wireless routers.

C. Wireless routers do not have routing capabilities.

D. All APs are wireless routers.

47 / 93

What is the main consequence of a SYN flood attack?

A. The server stops responding to SYN/ACK packets

B. The attacker gains unauthorized access to the server

C. Resources on the server are consumed and can cause it to crash

D. The server automatically closes all open sessions

48 / 93

What is the potential threat of fake telemetry data in SCADA systems as shown in the Massachusetts example?

A. It can lead to network congestion

B. It can lead to false alarms

C. It can cause system downtime

D. It can cause excessive pressure leading to explosions

49 / 93

Which of the following represents a common type of RFID attack?

A. Spamming

B. Rerouting

C. Hacking

D. Sniffing or eavesdropping

50 / 93

What does an HTML5 VPN portal use to encrypt its sessions?

A. SSH

B. PGP

C. SSL

D. TLS

51 / 93

What is a captive portal and how can it be used as an alternative to IEEE 802.1X?

A. It is a network management solution that redirects users to a splash page before granting them access to the Internet.

B. It is a type of firewall that controls access to the Internet based on the IP address of the user.

C. It is a type of VPN that requires authentication before allowing access to the network.

D. It is a hardware device that controls access to the network based on the physical address of the user’s device.

52 / 93

Why is physical security important for Access Points (APs)?

A. Unauthorized devices can be connected to APs by attackers to collect network traffic

B. Attackers can share the network access with outsiders

C. Attackers can hack into the AP and retrieve information

D. Attackers can change the bandwidth provided by the AP

53 / 93

What is a main benefit of using IPsec’s Tunnel mode over Transport mode?

A. Tunnel mode encrypts only the payload, not the packet headers.

B. The IP addresses that are used within the internal network are encrypted.

C. IPsec’s Tunnel mode doesn’t use Internet Key Exchange (IKE).

D. Tunnel mode uses protocol number 50 for encryption.

54 / 93

What is one of the major benefits of using a centralized RADIUS server as compared to separate databases for each VPN server?

A. It allows downloading of large files more speedily

B. It decreases the need for separate shared secrets

C. It eliminates the need for use-specific VPN servers

D. It cuts down on labor and potential errors associated with updating multiple databases

55 / 93

What is the main vulnerability of WEP protocol that makes it easy to crack?

A. It uses a very large initialization vector (IV)

B. It does not use any initialization vector (IV)

C. It does not reuse keys

D. It uses a small initialization vector (IV) and reuses keys

56 / 93

What is a primary security concern when using direct access VPNs over a public network?

A. High costs associated with leased lines

B. Lack of availability of VPN services

C. Unauthorized disclosure of encapsulated and encrypted traffic

D. Difficulty of establishing the VPN connection

57 / 93

What role must be enabled to create a VPN on a Windows server?

A. Network Access Server role

B. Direct Access VPN role

C. Screened Subnet role

D. VPN Access Server role

58 / 93

What is unique about using the PSK mode with WPA2, as opposed to Enterprise mode?

A. PSK mode doesn’t provide anonymous access.

B. PSK mode is more secure than Enterprise mode.

C. PSK mode does not provide authentication

D. PSK mode uses an 802.1X server for authentication.

59 / 93

Which EAP method provides an extra layer of protection for the usual EAP method by encapsulating and encrypting the EAP conversation in a Transport Layer Security (TLS) tunnel?

A. EAP-FAST

B. PEAP

C. EAP-TLS

D. EAP-TTLS

60 / 93

Where does a VPN server typically send a user’s log-in credentials for validation?

A. To the host on the Internet

B. To the internal RADIUS server

C. Straight to the LDAP server

D. Back to the client’s computer

61 / 93

What are the limitations of a Network-based Intrusion Detection System (NIDS)?

A. It can decode encoded traffic

B. It can assess threats on individual systems and workstations

C. It can monitor encrypted and non-encrypted network traffic

D. It cannot detect anomalies on individual systems or decrypt encrypted traffic

62 / 93

What is the official default port for a RADIUS server in the context of WPA2 Enterprise mode?

A. 1645

B. 1812

C. 802.1

D. 381

63 / 93

What is the difference between Bluesnarfing and Bluebugging?

A. Bluesnarfing is when an attacker sends unsolicited messages to a Bluetooth device while Bluebugging is when an attacker accesses unauthorized information.

B. Bluesnarfing allows the attacker to listen in on phone conversations, while Bluebugging allows the attacker to gain full access and install a backdoor on the device.

C. Bluesnarfing refers to unauthorized access to or theft of information from a Bluetooth device, while Bluebugging also involves installing a backdoor in addition to gaining full access to the device.

D. Bluesnarfing and Bluebugging are the same – both involve exploiting Bluetooth devices to gain unauthorized access to information.

64 / 93

Which of the following best describes the action of a ’bluebugging’ attack?

A. Sending unsolicited messages to nearby Bluetooth devices

B. Unauthorized access to, or theft of information from, a Bluetooth device

C. Install a backdoor after gaining full access to a Bluetooth device, allowing the attacker to listen in on conversations and access other functionality of the phone

D. Block Bluetooth attacks by placing devices into conductive metal lockboxes

65 / 93

What is the main difference between Intrusion Detection Systems (IDSs) and Intrusion Prevention Systems (IPSs)?

A. IDSs detect potential attacks and IPSs prevent them

B. IDSs and IPSs use different monitoring and detection methods

C. IDSs analyze network traffic and IPSs do not

D. IDSs and IPSs are used for different systems

66 / 93

What is one of the goals of a honeypot?

A. To provide valuable data for attackers.

B. To provide an easy target for attackers to compromise live systems.

C. To allow security professionals to observe an attacker’s techniques.

D. To invite experienced attackers to exploit its vulnerabilities.

67 / 93

What is Bluejacking in the context of Bluetooth device attacks?

A. It refers to the unauthorized access to, or theft of information from, a Bluetooth device

B. It is the practice of sending unsolicited messages to nearby Bluetooth devices

C. It involves installing a backdoor on the victim’s device and gaining full access to the device functions

D. It is the process of forcibly pairing with other Bluetooth devices without consent

68 / 93

What is the primary purpose of MAC cloning in a security context?

A. To resolve connectivity issues on small home or office networks

B. To use the same MAC address on multiple devices

C. To bypass MAC filtering by pretending to be an authorized system

D. To change the IP address of a system

69 / 93

What is the primary purpose of a captive portal in the context of paid internet access?

A. To authenticate users

B. To display advertisements

C. To track user activity

D. To block adult content

70 / 93

What is the purpose of reporting based on rules within an Intrusion Detection System (IDS)?

A. To segregate alarms and alerts based on severity

B. To send automatic email reports to the specified admin account

C. To allow administrators to configure rules based on organizational requirements

D. To only report actual issues and attacks

71 / 93

Which of the following describes the operation of a RADIUS server in WPA2 Enterprise mode?

A. It grants access to all users without need for authentication.

B. It uses a pre-shared key for anonymous access without individual authentication.

C. It requires users to authenticate with unique credentials, and blocks access if proper credentials are not provided.

D. It operates in cleartext, without any security and allows anyone to access the network.

72 / 93

What does a Replay attack in the context of RFID systems refer to?

A. Jamming the RFID system’s frequency

B. Interpreting the data collected from the RFID system

C. Transmitting data to the reader from a much greater distance

D. Configuring a bogus tag to mimic the tag attached to a valuable object

73 / 93

What does a healthy Network Access Control (NAC) client typically require?

A. Outdated operating system

B. Disabled firewall

C. Out-of-date antivirus software

D. Up-to-date operating system with all patches and fixes, enabled firewall, and up-to-date antivirus software

74 / 93

Why is L2TP not used by itself for VPN traffic?

A. L2TP does not allow for tunneling

B. L2TP provides too much encryption

C. L2TP does not provide any encryption

D. L2TP can only be used with IPsec

75 / 93

What is the primary difference between IPS and IDS systems?

A. An IPS can only detect attacks, while an IDS can react to and prevent attacks.

B. An IDS processes all network traffic and can block malicious activity, while an IPS simply monitors the traffic.

C. An IPS can detect, react to, and prevent attacks, while an IDS only monitors and responds to attacks after they’ve commenced.

D. An IDS is always referred to as active, while an IPS is referred to as passive.

76 / 93

What makes Protected EAP (PEAP) different from other authentication protocols?

A. PEAP requires a certificate on the server and the clients

B. PEAP provides an extra layer of protection by encapsulating and encrypting the EAP conversation in a Transport Layer Security (TLS) tunnel.

C. PEAP doesn’t require any kind of certificate.

D. PEAP is not based on EAP protocol.

77 / 93

What are the two essential security benefits that TACACS+ provides over RADIUS?

A. TACACS+ encrypts only the password by default and uses single challenge and response

B. TACACS+ encrypts the entire authentication process and uses multiple challenges and responses

C. TACACS+ doesn’t encrypt the authentication process and uses multiple challenges and responses

D. TACACS+ encrypts only the password by default and doesn’t use challenges and responses

78 / 93

What are the two primary detection methods used for attack detection in an IDS (Intrusion detection system)?

A. Signature-based and file-based

B. Anomaly-based and virus-based

C. Behavior-based and anomaly-based

D. Signature-based and anomaly-based

79 / 93

What is the main purpose of RADIUS Federation in 802.1X servers?

A. To provide an extra layer of protection for EAP

B. To enable a federation using 802.1X and RADIUS servers, allowing users to log on once and access shared resources with the other entity without logging on again

C. To replace Lightweight EAP with a more secure option

D. To allow systems to use older authentication methods within a TLS tunnel

80 / 93

Which version of an NAC agent is mistakenly referred to as an ’agentless’ capability by some NAC vendors according to the text?

A. Permanent agent

B. Dissolvable agent

C. Persistent NAC agent

D. Vulnerability scanner

81 / 93

What is the primary purpose of a captive portal?

A. To provide free internet access

B. To force users using web browsers to complete a certain process before allowing network access

C. To serve as an alternative to IEEE 802.1X

D. To collect user data

82 / 93

What is a primary indication of a Near Field Communication (NFC) attack?

A. Smartphones not recognizing each other

B. Difficulty in waving the card over the reader

C. Unauthorized charges on a credit card statement

D. The NFC device cannot download data

83 / 93

What is the purpose of a honeynet in cyber security?

A. To act as a backup system when the primary network fails

B. To deceive attackers and prevent them from attacking the live network

C. To provide extra processing power for the primary network

D. To support administrators in routine maintenance tasks

84 / 93

Which of the following accurately describes the term ’Bluesnarfing’?

A. It’s the practice of sending unsolicited messages to nearby Bluetooth devices

B. It refers to the unauthorized access to, or theft of information from, a Bluetooth device

C. It includes gaining full access to a Bluetooth device and installing a backdoor

D. It’s the method of blocking Bluetooth attacks using metal lockboxes acting as Faraday cages

85 / 93

What is the main difference between an Omni and directional antenna?

A. Omnidirectional antennas transmit and receive signals in one direction while directional antennas transmit in all directions.

B. Omnidirectional antennas can transmit and receive signals over great distances while directional antennas have limited range.

C. Omnidirectional antennas transmit and receive signals in all directions while directional antennas transmit in one direction.

D. Omnidirectional and directional antennas both transmit and receive signals in one direction.

86 / 93

Which of the following statements about PAP (Password Authentication Protocol) and CHAP (Challenge Handshake Authentication Protocol) is correct?

A. Only PAP is used for VPN authentication.

B. Only CHAP is used for VPN authentication.

C. PAP sends passwords over a network in cleartext.

D. CHAP sends passwords over a network in cleartext.

87 / 93

Which cryptographic protocol does WPA3 use instead of the Pre-shared Key (PSK) used with WPA2?

A. CCMP based on AES

B. Diffie–Hellman key exchange

C. Simultaneous Authentication of Equals (SAE)

D. Wi-Fi Protected Setup (WPS)

88 / 93

What is a key advantage of the site-to-site VPN model as compared to a traditional remote access VPN?

A. It connects users directly to the VPN server

B. It requires no additional steps from the user

C. It provides faster connection speeds

D. It requires users to be aware of the process

89 / 93

What is one significant characteristic of the EAP-TTLS authentication protocol?

A. It requires certificates on both the server and the clients

B. It is a secure replacement for Lightweight EAP (LEAP)

C. It allows systems to use some older authentication methods such as Password Authentication Protocol (PAP) within a TLS tunnel

D. It does not require a certificate on the server

90 / 93

Which of the following is the BEST description of an Evil Twin in network security?

A. It is a legitimate access point with a strong signal strength.

B. It is a rogue access point using a different SSID than the legitimate access point to capture and exfiltrate data.

C. It is a rogue access point that uses the same (or similar) SSID as a legitimate access point to trick users into connecting with it.

D. It is a software that mimics the legitimate Wi-Fi network to trick users.

91 / 93

What differentiates an always-on VPN from an on-demand VPN?

A. Always-on VPNs require manual initiation each time a user wants to connect to the Internet.

B. Always-on VPNs are only suitable for home users.

C. Always-on VPNs create a connection as soon as the user’s device connects to the Internet.

D. On-demand VPNs are the ones that maintain the connection while always-on VPNs don’t.

92 / 93

What is one method of performing a site survey when planning and deploying a wireless network?

A. Using a Wi-Fi-enabled smartphone

B. Using a Wi-Fi analyzer

C. Using a VPN network

D. Using a Virtual Machine

93 / 93

What describes a key way in which heuristic/behavioral detection systems operate?

A. They identify issues based strictly on known anomalies.

B. They monitor network traffic without any baseline for comparison.

C. They compare current network behavior against a baseline of normal operating conditions to detect potential attacks.

D. They strictly rely on vendor-released patches to detect security issues.

Your score is

Share the Post:

Sign up to get your FREE CompTIA Security+ deck!

Email issues? [ [email protected] ]

Boost your IT skills with our free CompTIA Security+ practice test focusing on Chapter 04: Securing Your Network. Whether you’re entering the IT industry or advancing in cyber security, our resources are here to help you succeed in the CompTIA Exam.

Why Choose Our CompTIA Security+ Practice Test?

Skill Enhancement: Covers essential network security techniques crucial for the CompTIA Exam.
Career Advancement: Passing the CompTIA Security+ exam can open doors to new job opportunities and significant career changes in the IT industry.
Vulnerability Management: Master the art of securing networks, a key skill in cyber security.

Free Anki Deck Download

Download our Free Anki Deck, reviewed by industry expert Josh Madakor, who has extensive experience in IT and cyber security, including work with Microsoft and government sectors. Learn more about Anki on the official site. Get Started with Your IT Career Change Today! Visit the CompTIA Security+ official site and the CompTIA Network+ official site for more information.

WGU Master’s Degree Rankings 2026 | I Asked 3 AIs 300 Times to Find the Best One
Table of Contents Which WGU Master’s Degree Is Actually Worth It? If you’re considering a master’s degree from WGU and can’t figure out which program to choose — cybersecurity, software engineering, AI/ML, data analytics — you’re not alone. The options are overwhelming, and most comparisons online are either outdated or purely opinion-based. So here’s a […]
How I Made $1.3 Million in Cybersecurity (With Exact Revenue Numbers)
Table of Contents If you’re stuck at $50K–$100K and wondering, “How the hell do people make seven figures?” this is for you.I’m Josh Madakor. In 2025, I made $1.3 million in cybersecurity. Not from a corporate job. Not from VC funding. And definitely not from selling a bullshit course.In this article, I’ll break down everything: […]
The Best Laptops for Cyber Security in 2026: Stop Over-Analyzing, Start Building
Table of Contents Let’s be real: most people think that to get into cyber security, you need to be a “super elite hacker” running 10 different virtual machines on a glowing, heavy-duty gaming laptop. Spoiler alert: That’s just not how the industry works. I’ve spent years in roles ranging from Senior Analyst to Security Engineer, […]

Hands-on
Cybersecurity Training
in a LIVE SOC
with Enterprise Security Tools

Internships Available.

Join Now!

Chapter4 - Free CompTIA Security+ Practice Exam | Anki Flashcards

Sign up to get your FREE CompTIA Security+ deck!

Why Choose Our CompTIA Security+ Practice Test?

Free Anki Deck Download

Related Posts

Hands-onCybersecurity Training in a LIVE SOCwith Enterprise Security ToolsInternships Available.

Hands-on
Cybersecurity Training
in a LIVE SOC
with Enterprise Security Tools

Internships Available.