ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-601 All Questions

View all questions & answers for the SY0-601 exam
Go to Exam

Exam SY0-601 topic 1 question 545 discussion

Actual exam question from CompTIA's SY0-601
Question #: 545
Topic #: 1
[All SY0-601 Questions]

A company's end users are reporting that they are unable to reach external websites. After reviewing the performance data for the DNS severs, the analyst discovers that the CPU, disk, and memory usage are minimal, but the network interface is flooded with inbound traffic. Network logs show only a small number of DNS queries sent to this server. Which of the following best describes what the security analyst is seeing?

  • A. Concurrent session usage
  • B. Secure DNS cryptographic downgrade
  • C. On-path resource consumption
  • D. Reflected denial of service
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by ApplebeesWaiter1122 at July 28, 2023, 2:23 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
ApplebeesWaiter1122
Highly Voted 1 year, 11 months ago
Selected Answer: D
In a reflected denial of service (DoS) attack, the attacker sends requests to a large number of public servers, spoofing the source IP address to make it appear as if the requests are coming from the target server. These public servers, acting as amplifiers, then send the responses back to the target server, overwhelming it with inbound traffic. In this case, the DNS server is receiving a flood of inbound traffic due to the DNS requests being amplified by other servers. The DNS server's CPU, disk, and memory usage are minimal because it is only processing legitimate DNS queries sent to it. However, the network interface is overwhelmed with amplified responses, causing the end users to be unable to reach external websites.
upvoted 17 times
...
Malkhofash
Most Recent 1 year, 6 months ago
D. Reflected denial of service
upvoted 1 times
...
fryderyk
1 year, 7 months ago
Selected Answer: D
https://www.cloudflare.com/learning/ddos/dns-amplification-ddos-attack/
upvoted 1 times
...
touisuzuki
1 year, 9 months ago
Selected Answer: D
In a reflected denial of service (DDoS) attack, attackers send a large number of requests with a spoofed source IP address to a vulnerable server, which then responds to those requests. The responses are sent to the victim, whose IP address is spoofed in the requests, causing a flood of traffic to the victim's network. This can overwhelm the victim's network and disrupt its ability to reach external websites.
upvoted 1 times
...
je123
1 year, 10 months ago
Selected Answer: D
While the attack may not completely overwhelm the DNS server, it's generating a significant amount of traffic that is directed towards the victim's network. The increased volume of incoming traffic generated by the attack saturates the victim's network bandwidth and resources, causing congestion. This congestion affects the entire network's performance, making it slower and less responsive.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel