Comptia exactexam cas-004 Questions Bank by Kaleb q149 vce pdf

Page: 24 / 46

Exam Name:	CompTIA SecurityX Certification Exam
Exam Code:	CAS-004 Dumps
Vendor:	CompTIA	Certification:	CompTIA CASP
Questions:	619 Q&A's	Shared By:	kaleb

Question 96

A security engineer is assessing a legacy server and needs to determine if FTP is running and on which port The service cannot be turned off, as it would impact a critical application's ability to function. Which of the following commands would provide the information necessary to create a firewall rule to prevent that service from being exploited?

Options:

service —status-ali I grep ftpd

chkconfig --list

neestat -tulpn

systeactl list-unit-file —type service ftpd

service ftpd. status

Discussion

Question 97

An IDS was unable to detect malicious network traffic during a recent security incident, even though all traffic was being sent using HTTPS. As a result, a website used by employees was compromised. Which of the following detection mechanisms would allow the IDS to detect an attack like this one in the future?

Options:

Deobfuscation

Protocol decoding

Inspection proxy

Digital rights management

Discussion

Question 98

A company with only U S -based customers wants to allow developers from another country to work on the company's website However, the company plans to block normal internet traffic from the other country Which of the following strategies should the company use to accomplish this objective? (Select two).

Options:

Block foreign IP addresses from accessing the website

Have the developers use the company's VPN

Implement a WAP for the website

Give the developers access to a jump box on the network

Employ a reverse proxy for the developers

Use NAT to enable access for the developers

Discussion

Miley

Hey, I tried Cramkey Dumps for my IT certification exam. They are really awesome and helped me pass my exam with wonderful score.

Megan Dec 16, 2025

That’s great!!! I’ll definitely give it a try. Thanks!!!

Stefan

Thank you so much Cramkey I passed my exam today due to your highly up to date dumps.

Ocean Dec 13, 2025

Agree….Cramkey Dumps are constantly updated based on changes in the exams. They also have a team of experts who regularly review the materials to ensure their accuracy and relevance. This way, you can be sure you're studying the most up-to-date information available.

Melody

My experience with Cramkey was great! I was surprised to see that many of the questions in my exam appeared in the Cramkey dumps.

Colby Dec 6, 2025

Yes, In fact, I got a score of above 85%. And I attribute a lot of my success to Cramkey's dumps.

Syeda

I passed, Thank you Cramkey for your precious Dumps.

Stella Dec 28, 2025

That's great. I think I'll give Cramkey Dumps a try.

Ace

No problem! I highly recommend Cramkey Dumps to anyone looking to pass their certification exams. They will help you feel confident and prepared on exam day. Good luck!

Harris Dec 28, 2025

That sounds amazing. I'll definitely check them out. Thanks for the recommendation!

Question 99

A development team needs terminal access to preproduction servers to verify settings and enter purchased license keys. To address the team’s needs, the security administrator implements the following requirements:

•Only trusted accounts can access the preproduction servers.

•Developers cannot access the preproduction servers directly from their workstations.

•The trusted accounts should only have access to specific preproduction servers.

Which of the following are necessary to fulfill the security requirements? (Select two).

Options:

SSL VPN

NAT gateway

Air gap

WAF

Jump box

Network ACLs