Free CompTIA Server+ Security and Disaster Recovery Practice Test — SK0-005 Domain (24% of the Exam)
Practice free CompTIA Server+ Security and Disaster Recovery exam questions covering physical security, server hardening, backup types (full, incremental, differential), replication, hot/warm/cold disaster recovery sites, and secure data destruction. Every question includes the correct answer and a detailed explanation.
Topics Covered in This Domain
- Physical Security
- Server Hardening
- Backup Types
- Replication
- DR Sites (Hot/Warm/Cold)
- Data Destruction
Free CompTIA Server+ Security and Disaster Recovery Practice Questions
Sample Question 1 — Security and Disaster Recovery
Which of the following is a primary benefit of implementing multi-factor authentication (MFA) in a server environment?
- A. It reduces the need for regular password changes.
- B. It increases the complexity of passwords required.
- C. It provides an additional layer of security by requiring multiple forms of verification. (Correct answer)
- D. It allows for single sign-on capabilities across multiple platforms.
Correct answer: C
Explanation: Multi-factor authentication (MFA) enhances security by requiring users to provide multiple forms of verification, such as something they know (password), something they have (security token), or something they are (biometric verification). This makes unauthorized access more difficult. Option A and B are incorrect because MFA does not directly affect password change policies or complexity. Option D is incorrect because MFA is not specifically about single sign-on capabilities.
Sample Question 2 — Security and Disaster Recovery
What is the primary purpose of implementing a Data Loss Prevention (DLP) strategy in a server environment?
- A. To prevent unauthorized access to server rooms.
- B. To monitor and protect sensitive data from unauthorized transmission. (Correct answer)
- C. To ensure data is backed up regularly.
- D. To encrypt all data stored on the servers.
Correct answer: B
Explanation: Data Loss Prevention (DLP) strategies are designed to monitor and protect sensitive data from being transmitted without authorization, thus preventing data leaks. Option A is incorrect as it pertains to physical security. Option C is incorrect because it relates to backup strategies, not DLP. Option D is incorrect because while encryption is important, DLP specifically focuses on monitoring and controlling data movement.
Sample Question 3 — Security and Disaster Recovery
Which of the following is a critical step in the server decommissioning process to ensure data security?
- A. Reboot the server multiple times to clear the memory.
- B. Physically destroy the server hardware.
- C. Wipe all data from the storage devices using secure erasure methods. (Correct answer)
- D. Remove the server from the network and leave it powered off.
Correct answer: C
Explanation: Securely erasing all data from storage devices is critical in the decommissioning process to ensure that no sensitive information can be recovered. Option A is incorrect because rebooting does not securely erase data. Option B, while sometimes used, is not always necessary if secure erasure is performed. Option D is insufficient because simply removing the server from the network does not protect data that might be recovered from the storage devices.
Sample Question 4 — Security and Disaster Recovery
In the context of server hardening, why is it important to disable unused services?
- A. To improve the server's processing speed.
- B. To reduce the attack surface available to potential threats. (Correct answer)
- C. To allow more bandwidth for active services.
- D. To decrease the server's power consumption.
Correct answer: B
Explanation: Disabling unused services reduces the attack surface, thereby minimizing potential entry points for attackers. This is a key aspect of server hardening. Option A is incorrect because disabling services does not significantly affect processing speed. Option C is incorrect as bandwidth is not typically affected by unused services. Option D is incorrect because the power savings from disabling services are usually negligible.
Sample Question 5 — Security and Disaster Recovery
Which backup strategy is most effective for ensuring minimal data loss in the event of a server failure?
- A. Full backup performed monthly.
- B. Incremental backups performed daily with a weekly full backup. (Correct answer)
- C. Differential backups performed weekly.
- D. Full backup performed annually with daily differential backups.
Correct answer: B
Explanation: Incremental backups performed daily, along with a weekly full backup, provide a balance between data recovery time and storage efficiency, ensuring minimal data loss. Option A is incorrect as monthly full backups can result in significant data loss. Option C is incorrect because weekly differential backups may not be frequent enough. Option D is incorrect as annual full backups are too infrequent to ensure minimal data loss.
Sample Question 6 — Security and Disaster Recovery
Which of the following is a primary benefit of implementing a server hardening strategy?
- A. Increased server performance
- B. Reduced energy consumption
- C. Enhanced security posture (Correct answer)
- D. Simplified network configuration
Correct answer: C
Explanation: Server hardening involves applying security measures such as OS updates and disabling unused services to protect servers from vulnerabilities. This enhances the security posture by reducing attack surfaces. Increased performance, reduced energy consumption, and simplified network configuration are not primary objectives of server hardening.
Other CompTIA Server+ Domains
Start the free CompTIA Server+ Security and Disaster Recovery practice test now | 10-question quick start | All CompTIA Server+ domains