RC0-501 무료 덤프문제 온라인 액세스

A penetration tester is crawling a target website that is available to the public. Which of the following represents the actions the penetration tester is performing?

• A.Reconnaissance
• B.URL hijacking
• C.White box testing
• D.Escalation of privilege

Which of the following implements two-factor authentication?

• A.At ATM requiring a credit card and PIN
• B.A datacenter mantrap requiring fingerprint and iris scan
• C.A phone system requiring a PIN to make a call
• D.A computer requiring username and password

Which of the following cryptography algorithms will produce a fixed-length, irreversible output?

• A.MD5
• B.RSA
• C.AES
• D.3DES

A new firewall has been places into service at an organization. However, a configuration has not been entered on the firewall. Employees on the network segment covered by the new firewall report they are unable to access the network. Which of the following steps should be completed to BEST resolve the issue?

• A.The firewall should be configured with port security to allow traffic.
• B.The firewall should be configured with access lists to allow inbound and outbound traffic.
• C.The firewall should be configured to include an explicit deny rule.
• D.The firewall should be configured to prevent user traffic form matching the implicit deny rule.

DRAG DROP
A security administrator is given the security and availability profiles for servers that are being deployed.
Match each RAID type with the correct configuration and MINIMUM number of drives.
Review the server profiles and match them with the appropriate RAID type based on integrity, availability, I/O, storage requirements. Instructions:
All drive definitions can be dragged as many times as necessary
Not all placeholders may be filled in the RAID configuration boxes
If parity is required, please select the appropriate number of parity checkboxes Server profiles may be dragged only once Instructions: If at any time you would like to bring back the initial state of the simul-ation, please select the Reset button. When you have completed the simul-ation, please select the Done button to submit. Once the simul-ation is submitted, please select the Next button to continue.

정답:

Explanation:

RAID-0 is known as striping. It is not a fault tolerant solution but does improve disk performance for read/write operations. Striping requires a minimum of two disks and does not use parity. RAID-0 can be used where performance is required over fault tolerance, such as a media streaming server.
RAID-1 is known as mirroring because the same data is written to two disks so that the two disks have identical data. This is a fault tolerant solution that halves the storage space. A minimum of two disks are used in mirroring and does not use parity. RAID-1 can be used where fault tolerance is required over performance, such as on an authentication server.
RAID-5 is a fault tolerant solution that uses parity and striping. A minimum of three disks are required for RAID-5 with one disk's worth of space being used for parity information.
However, the parity information is distributed across all the disks. RAID-5 can recover from a sing disk failure.
RAID-6 is a fault tolerant solution that uses dual parity and striping. A minimum of four disks are required for RAID-6. Dual parity allows RAID-6 to recover from the simultaneous failure of up to two disks. Critical data should be stored on a RAID-6 system.
References:
Dulaney, Emmett and Chuck Eastton, CompTIA Security+ Study Guide, 6th Edition, Sybex, Indianapolis, 2014, pp. 34-36, 234-235