Comptia exactexam cas-004 Questions Bank by Kaleb q149 vce pdf

Page: 24 / 46

Exam Name:	CompTIA SecurityX Certification Exam
Exam Code:	CAS-004 Dumps
Vendor:	CompTIA	Certification:	CompTIA CASP
Questions:	619 Q&A's	Shared By:	kaleb

Question 96

A security engineer is assessing a legacy server and needs to determine if FTP is running and on which port The service cannot be turned off, as it would impact a critical application's ability to function. Which of the following commands would provide the information necessary to create a firewall rule to prevent that service from being exploited?

Options:

service —status-ali I grep ftpd

chkconfig --list

neestat -tulpn

systeactl list-unit-file —type service ftpd

service ftpd. status

Discussion

Question 97

An IDS was unable to detect malicious network traffic during a recent security incident, even though all traffic was being sent using HTTPS. As a result, a website used by employees was compromised. Which of the following detection mechanisms would allow the IDS to detect an attack like this one in the future?

Options:

Deobfuscation

Protocol decoding

Inspection proxy

Digital rights management

Discussion

Question 98

A company with only U S -based customers wants to allow developers from another country to work on the company's website However, the company plans to block normal internet traffic from the other country Which of the following strategies should the company use to accomplish this objective? (Select two).

Options:

Block foreign IP addresses from accessing the website

Have the developers use the company's VPN

Implement a WAP for the website

Give the developers access to a jump box on the network

Employ a reverse proxy for the developers

Use NAT to enable access for the developers

Discussion

Question 99

A development team needs terminal access to preproduction servers to verify settings and enter purchased license keys. To address the team’s needs, the security administrator implements the following requirements:

•Only trusted accounts can access the preproduction servers.

•Developers cannot access the preproduction servers directly from their workstations.

•The trusted accounts should only have access to specific preproduction servers.

Which of the following are necessary to fulfill the security requirements? (Select two).

Options:

SSL VPN

NAT gateway

Air gap

WAF

Jump box

Network ACLs

Discussion

Aryan

Absolutely rocked! They are an excellent investment for anyone who wants to pass the exam on the first try. They save you time and effort by providing a comprehensive overview of the exam content, and they give you a competitive edge by giving you access to the latest information. So, I definitely recommend them to new students.

Jessie Feb 1, 2026

did you use PDF or Engine? Which one is most useful?

Hendrix

Great website with Great Exam Dumps. Just passed my exam today.

Luka Feb 21, 2026

Absolutely. Cramkey Dumps only provides the latest and most updated exam questions and answers.

Alaya

Best Dumps among other dumps providers. I like it so much because of their authenticity.

Kaiden Feb 3, 2026

That's great. I've used other dump providers in the past and they were often outdated or had incorrect information. This time I will try it.

Miriam

Highly recommended Dumps. 100% authentic and reliable. Passed my exam with wonderful score.