Comptia exactexam cas-004 Questions Bank by Kaleb q149 vce pdf

Page: 24 / 46

Exam Name:	CompTIA SecurityX Certification Exam
Exam Code:	CAS-004 Dumps
Vendor:	CompTIA	Certification:	CompTIA CASP
Questions:	619 Q&A's	Shared By:	kaleb

Question 96

A security engineer is assessing a legacy server and needs to determine if FTP is running and on which port The service cannot be turned off, as it would impact a critical application's ability to function. Which of the following commands would provide the information necessary to create a firewall rule to prevent that service from being exploited?

Options:

service —status-ali I grep ftpd

chkconfig --list

neestat -tulpn

systeactl list-unit-file —type service ftpd

service ftpd. status

Discussion

Georgina

I used Cramkey Dumps to prepare for my recent exam and I have to say, they were a huge help.

Corey Jan 4, 2026

Really? How did they help you? I know these are the same questions appears in exam. I will give my try. But tell me if they also help in some training?

Osian

Dumps are fantastic! I recently passed my certification exam using these dumps and I must say, they are 100% valid.

Azaan Jan 23, 2026

They are incredibly accurate and valid. I felt confident going into my exam because the dumps covered all the important topics and the questions were very similar to what I saw on the actual exam. The team of experts behind Cramkey Dumps make sure the information is relevant and up-to-date.

Rae

I tried using Cramkey dumps for my recent certification exam and I found them to be more accurate and up-to-date compared to other dumps I've seen. Passed the exam with wonderful score.

Rayyan Jan 15, 2026

I see your point. Thanks for sharing your thoughts. I might give it a try for my next certification exam.

Lois

I passed my exam with wonderful score. Their dumps are 100% valid and I felt confident during the exam.

Ernie Jan 7, 2026

Absolutely. The best part is, the answers in the dumps were correct. So, I felt confident and well-prepared for the exam.

Zayaan

Successfully aced the exam… Thanks a lot for providing amazing Exam Dumps.

Harmony Jan 5, 2026

That's fantastic! I'm glad to hear that their dumps helped you. I also used them and found it accurate.

Question 97

An IDS was unable to detect malicious network traffic during a recent security incident, even though all traffic was being sent using HTTPS. As a result, a website used by employees was compromised. Which of the following detection mechanisms would allow the IDS to detect an attack like this one in the future?

Options:

Deobfuscation

Protocol decoding

Inspection proxy

Digital rights management

Discussion

Question 98

A company with only U S -based customers wants to allow developers from another country to work on the company's website However, the company plans to block normal internet traffic from the other country Which of the following strategies should the company use to accomplish this objective? (Select two).

Options:

Block foreign IP addresses from accessing the website

Have the developers use the company's VPN

Implement a WAP for the website

Give the developers access to a jump box on the network

Employ a reverse proxy for the developers

Use NAT to enable access for the developers

Discussion

Question 99

A development team needs terminal access to preproduction servers to verify settings and enter purchased license keys. To address the team’s needs, the security administrator implements the following requirements:

•Only trusted accounts can access the preproduction servers.

•Developers cannot access the preproduction servers directly from their workstations.

•The trusted accounts should only have access to specific preproduction servers.

Which of the following are necessary to fulfill the security requirements? (Select two).

Options:

SSL VPN

NAT gateway

Air gap

WAF

Jump box

Network ACLs