1. Home
  2. CompTIA
  3. RC0-501

CompTIA Security+ Recertification Exam

Exam Details

  • Exam Code
    :RC0-501
  • Exam Name
    :CompTIA Security+ Recertification Exam
  • Certification
    :CompTIA Security+
  • Vendor
    :CompTIA
  • Total Questions
    :349 Q&As
  • Last Updated
    :Apr 06, 2025

CompTIA CompTIA Security+ RC0-501 Questions & Answers

  • Question 141:

    A network operations manager has added a second row of server racks in the datacenter. These racks face the opposite direction of the first row of racks. Which of the following is the reason the manager installed the racks this way?

    A. To lower energy consumption by sharing power outlets

    B. To create environmental hot and cold isles

    C. To eliminate the potential for electromagnetic interference

    D. To maximize fire suppression capabilities

  • Question 142:

    Joe, the security administrator, sees this in a vulnerability scan report:

    "The server 10.1.2.232 is running Apache 2.2.20 which may be vulnerable to a mod_cgi explogt." Joe verifies that the mod_cgi module is not enabled on 10.1.2.232. This message is an example of:

    A. a threat.

    B. a risk.

    C. a false negative.

    D. a false positive.

  • Question 143:

    A security analyst wishes to increase the security of an FTP server. Currently, all trails to the FTP server is unencrypted. Users connecting to the FTP server use a variety of modem FTP client software. The security analyst wants to keep the

    same port and protocol, while also still allowing unencrypted connections.

    Which of the following would BEST accomplish these goals?

    A. Require the SFTP protocol to connect to the file server.

    B. Use implicit TLS on the FTP server.

    C. Use explicit FTPS for the connections.

    D. Use SSH tunneling to encrypt the FTP traffic.

  • Question 144:

    The Chief Technology Officer (CTO) of a company, Ann, is putting together a hardware budget for the next 10 years. She is asking for the average lifespan of each hardware device so that she is able to calculate when she will have to replace

    each device.

    Which of the following categories BEST describes what she is looking for?

    A. ALE

    B. MTTR

    C. MTBF

    D. MTTF

  • Question 145:

    A software developer wants to ensure that the application is verifying that a key is valid before establishing SSL connections with random remote hosts on the Internet. Which of the following should be used in the code? (Select TWO.)

    A. Escrowed keys

    B. SSL symmetric encryption key

    C. Software code private key

    D. Remote server public key

    E. OCSP

  • Question 146:

    A security guard has informed the Chief Information Security Officer that a person with a tablet has been walking around the building. The guard also noticed strange white markings in different areas of the parking lot. The person is attempting which of the following types of attacks?

    A. Jamming

    B. War chalking

    C. Packet sniffing

    D. Near field communication

  • Question 147:

    Recently several employees were victims of a phishing email that appeared to originate from the company president. The email claimed the employees would be disciplined if they did not click on a malicious link in the message. Which of the following principles of social engineering made this attack successful?

    A. Authority

    B. Spamming

    C. Social proof

    D. Scarcity

  • Question 148:

    Which of the following is the LEAST secure hashing algorithm?

    A. SHA1

    B. RIPEMD

    C. MD5

    D. DES

  • Question 149:

    An employee uses RDP to connect back to the office network. If RDP is misconfigured, which of the following security exposures would this lead to?

    A. A virus on the administrator's desktop would be able to sniff the administrator's username and password.

    B. Result in an attacker being able to phish the employee's username and password.

    C. A social engineering attack could occur, resulting in the employee's password being extracted.

    D. A man in the middle attack could occur, resulting the employee's username and password being captured.

  • Question 150:

    Joe is exchanging encrypted email with another party. Joe encrypts the initial email with a key. When Joe receives a response, he is unable to decrypt the response with the same key he used initially. Which of the following would explain the situation?

    A. An ephemeral key was used for one of the messages

    B. A stream cipher was used for the initial email; a block cipher was used for the reply

    C. Out-of-band key exchange has taken place

    D. Asymmetric encryption is being used

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your RC0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.