CompTIA CompTIA Certifications CV0-004 Questions & Answers

• Question 141:

  A cloud architect attempts to modify a protected branch but is unable to do so. The architect receives an error indicating the action cannot be completed. Which of the following should the architect try instead?

  A. Adding a new remote

  B. Creating a pull request

  C. Merging the branch

  D. Rebasing the branch

  Correct Answer: B

  When unable to modify a protected branch directly, the recommended approach is to create a pull request. This allows changes to be reviewed and approved by authorized personnel before being merged into the protected branch, maintaining code integrity and compliance with the project's workflow and policies.

• Question 142:

  A company uses containers stored in Docker Hub to deploy workloads (or its laaS infrastructure. The development team releases changes to the containers several times per hour.

  Which of the following should a cloud engineer do to prevent the proprietary code from being exposed to third parties?

  A. Use laC to deploy the laaS infrastructure.

  B. Convert the containers to VMs.

  C. Deploy the containers over SSH.

  D. Use private repositories for the containers.

  Correct Answer: D

  To prevent proprietary code from being exposed to third parties, a cloud engineer should use private repositories for the containers. Private repositories ensure that access to container images is restricted and controlled, unlike public

  repositories where images are accessible toanyone.

  References: The concept of using private repositories for protecting proprietary code is part of cloud security best practices, which is covered under the Governance, Risk, Compliance, and Security domain of the CompTIA Cloud+

  certification.

• Question 143:

  The company's IDS has reported an anomaly. The cloud engineer remotely accesses the cloud instance, runs a command, and receives the following information:

  

  Which of the following is the most likely root cause of this anomaly?

  A. Privilege escalation

  B. Leaked credentials

  C. Cryptojacking

  D. Defaced website

  Correct Answer: A

  The output from the 'ps' command indicates there is a process running under the UID (User ID) of 0, which is the root user, and the command that was run is '/var/www/command.py'. Given that the normal Apache processes are running under their own UID (65535), this suggests that a command was executed with root privileges that typically should not have such high-level access. This is a strong indicator of privilege escalation, where an unauthorized user or process gains elevated access to resources that are normally protected from an application or user. References: CompTIA Cloud+ Certification Study Guide (V0-004) by Scott Wilson and Eric Vanderburg

• Question 144:

  A government agency in the public sector is considering a migration from on premises to the cloud. Which of the following are the most important considerations for this cloud migration? (Select two).

  A. Compliance

  B. laaS vs. SaaS

  C. Firewall capabilities

  D. Regulatory

  E. Implementation timeline

  F. Service availability

  Correct Answer: AD

  For a government agency considering cloud migration, compliance and regulatory considerations are of utmost importance. The agency must ensure that the migration aligns with legal requirements, industry standards, and government

  regulations specific to the public sector.

  References: Compliance and regulatory considerations are crucial factors in the cloud migration process for government entities, as emphasized in the CompTIA Cloud+ certification.

• Question 145:

  Which of the following compute resources is the most optimal for running a single scripted task on a schedule?

  A. Bare-metal server

  B. Managed container

  C. Virtual machine

  D. Serverless function

  Correct Answer: D

  Serverless functions are ideal for running scripted tasks on a schedule because they can be triggered by events, run the task, and then shut down, incurring costs only for the actual compute time used. This eliminates the need for a

  continuously running server and is optimal for sporadic or scheduled tasks.

  References: CompTIA Cloud+ Certification Study Guide (V0-004) by Scott Wilson and Eric Vanderburg.

• Question 146:

  Which of the following container storage types loses data after a restart?

  A. Object

  B. Persistent volume

  C. Ephemeral

  D. Block

  Correct Answer: C

  In the context of container storage, ephemeral storage types are designed to be temporary, losing their data when the container is restarted or deleted. This is in contrast to persistent volumes, which retain data across container restarts and lifecycle, and object and block storage, which are used for specific types of data storage but not inherently temporary. Ephemeral storage is often used for temporary computation data, caching, or any data that doesn't need to persist beyond the lifecycle of the container instance. References: CompTIA Cloud+ CV0-004 Study Guide and Official CompTIA Content

• Question 147:

  A cloud security analyst is looking for existing security vulnerabilities on software applications. Which of the following describes this vulnerability management phase?

  A. Analyze

  B. Report

  C. Remediation

  D. identification

  Correct Answer: D

  The phase of vulnerability management that involves looking for existing security vulnerabilities on software applications is known as 'Identification'. This step precedes analysis, reporting, and remediation, focusing on discovering known and unknown vulnerabilities within the system or software to assess the security posture effectively.

• Question 148:

  Which of the following cloud-native architecture designs is the most easily maintained, decentralized, and decoupled?

  A. Monolithic

  B. Hybrid cloud

  C. Mainframe

  D. Microservices

  Correct Answer: D

  Microservices architecture is a design approach to build a single application as a suite of small services, each running in its own process and communicating with lightweight mechanisms, often an HTTP resource API. This design is decentralized and each service is fully decoupled, allowing for easier maintenance and scaling. Each microservice is built around a specific business capability and can be deployed independently, unlike monolithic architectures that are typically centralized and less flexible. References: CompTIA Cloud+ Study Guide (V0-004) - Chapter on Designing a Cloud Environment

• Question 149:

  A log-parsing application requires significant processing power to ingest the logs streaming from web servers. The engineering team presents the cloud architect with four proposals using the same underlying hardware.

  Which of the following should the cloud architect select in order to minimize the impact of an instance failure while keeping the cost as low as possible?

  A. Four instances of 4vCPU, 8GB RAM, 80GB SSD

  B. Four instances of 4vCPU, 8GB RAM, 80GB HDD

  C. Two instances of 8vCPU, 16GB RAM, 80GB SSD

  D. Two instances of 8vCPU, 16GB RAM, 80GB HDD

  Correct Answer: A

  Choosing four instances with the given specifications would distribute the load and reduce the impact of any single instance failure. Using SSDs over HDDs would provide faster data processing capabilities which is crucial for a log-parsing

  application. This setup also retains cost efficiency by not over-provisioning resources.

  References: CompTIA Cloud+ Certification Study Guide (V0-004) by Scott Wilson and Eric Vanderburg.

• Question 150:

  Which of the following is used to detect signals and measure physical properties, such as the temperature of the human body?

  A. Beacon

  B. Transmission protocols

  C. Sensors

  D. Gateways

  Correct Answer: C

  Sensors are used to detect signals and measure physical properties, such as temperature. They are devices that respond to a physical stimulus (like heat, light, sound, pressure, magnetism, or a particular motion) and transmit a resulting

  impulse for detection and measurement.

  References: The use of sensors in cloud environments, particularly in IoT (Internet of Things) applications, is included in the technical domains of the CompTIA Cloud+ material.