무료 온라인 액세스 CompTIA.CAS-003.v2022-12-20.q589 모의 시험 (Page 26)

CAS-003 문제 121

Since the implementation of IPv6 on the company network, the security administrator has been unable to identify the users associated with certain devices utilizing IPv6 addresses, even when the devices are centrally managed.
en1: flags=8863<UP,BROADCAST,SMART,RUNNING,SIMPLEX,MULTICAST> mtu 1500
ether f8:1e:af:ab:10:a3
inet6 fw80::fa1e:dfff:fee6:9d8%en1 prefixlen 64 scopeid 0x5
inet 192.168.1.14 netmask 0xffffff00 broadcast 192.168.1.255
inet6 2001:200:5:922:1035:dfff:fee6:9dfe prefixlen 64 autoconf
inet6 2001:200:5:922:10ab:5e21:aa9a:6393 prefixlen 64 autoconf temporary nd6 options=1<PERFORMNUD> media: autoselect status: active Given this output, which of the following protocols is in use by the company and what can the system administrator do to positively map users with IPv6 addresses in the future?
(Select TWO).

A. The devices use EUI-64 format

B. The routers implement NDP

C. The network implements 6to4 tunneling

D. The router IPv6 advertisement has been disabled

E. The administrator must disable IPv6 tunneling

F. The administrator must disable the mobile IPv6 router flag

G. The administrator must disable the IPv6 privacy extensions

H. The administrator must disable DHCPv6 option code 1

CAS-003 문제 122

A request has been approved for a vendor to access a new internal server using only HTTPS and SSH to manage the back-end system for the portal. Internal users just need HTTP and HTTPS access to all internal web servers. All other external access to the new server and its subnet is not allowed. The security manager must ensure proper access is configured.

Below is a snippet from the firewall related to that server (access is provided in a top-down model):

Which of the following lines should be configured to allow the proper access? (Choose two.)

A. Move line 3 below line 4 and add port 443 to line.

B. Add port 443 to line 2.

C. Add port 443 to line 5.

D. Add port 22 to line 2.

E. Add port 22 to line 5.

F. Move line 3 below line 4 and change port 80 to 443 on line 4.

G. Move line 4 below line 5 and add port 80 to 8080 on line 2.

CAS-003 문제 123

A small company's Chief Executive Officer (CEO) has asked its Chief Security Officer (CSO) to improve the company's security posture quickly with regard to targeted attacks.
Which of the following should the CSO conduct FIRST?

A. Survey threat feeds from services inside the same industry.

B. Purchase multiple threat feeds to ensure diversity and implement blocks for malicious traffic.

C. Conduct an internal audit against industry best practices to perform a qualitative analysis.

D. Deploy a UTM solution that receives frequent updates from a trusted industry vendor.

CAS-003 문제 124

A cybersecurity analyst receives a ticket that indicates a potential incident is occurring. There has been a large in log files generated by a generated by a website containing a ''Contact US'' form. The analyst must determine if the increase in website traffic is due to a recent marketing campaign of if this is a potential incident. Which of the following would BEST assist the analyst?

A. Running the website log files through a log reduction and analysis tool

B. Deploy a WAF in front of the public website

C. Checking for new rules from the inbound network IPS vendor

D. Ensuring proper input validation is configured on the ''Contact US'' form

CAS-003 문제 125

보안 컨설턴트가 금융 기관에 대한 인증 옵션을 고려하고 있습니다. 다음 인증 옵션을 사용할 수 있습니다. 보안 메커니즘을 적절한 사용 사례로 끌어다 놓습니다. 옵션은 한 번만 사용할 수 있습니다.

다른 버전: 5013CompTIA.CAS-003.v2022-07-04.q589; 2159CompTIA.CAS-003.v2022-05-09.q215

최근 업로드: 106Avaya.78201X.v2025-09-09.q135; 102CompTIA.220-1202.v2025-09-09.q57; 104CheckPoint.156-215.81.v2025-09-09.q391; 109ECCouncil.312-50v13.v2025-09-09.q347; 114Supermicro.SMI300XS.v2025-09-08.q15; 116Oracle.1z0-1104-25.v2025-09-08.q12; 106SAP.C-LIXEA-2404.v2025-09-08.q60; 128Cisco.300-730.v2025-09-08.q143; 108Huawei.H19-308_V4.0.v2025-09-08.q77; 122Nutanix.NCA-6.5.v2025-09-08.q56