CompTIA
220-802 · Question #516
220-802 Question #516: Real Exam Question with Answer & Explanation
The correct answer is B: Place in an encrypted file. Encrypting stored passwords and memorizing them are the two accepted best practices, as they eliminate plaintext exposure and reduce the attack surface introduced by external storage media or insecure protocols.
Question
Which of the following is a best practice when securing passwords for a desktop? (Select TWO).
Options
- AStore on a flash drive
- BPlace in an encrypted file
- CPlace in a zip file
- DPasswords should be memorized
- EStore on an FTP
Explanation
Encrypting stored passwords and memorizing them are the two accepted best practices, as they eliminate plaintext exposure and reduce the attack surface introduced by external storage media or insecure protocols.
Common mistakes.
- A. Flash drives are unencrypted by default and can be physically lost, stolen, or accessed by anyone who finds them, directly exposing all stored credentials.
- C. Standard ZIP encryption (ZipCrypto) uses a weak algorithm that is easily cracked with readily available tools, providing no meaningful protection for sensitive passwords.
- E. FTP transmits data in cleartext over the network, meaning credentials stored on or transferred via FTP can be trivially captured through packet sniffing.
Concept tested. Secure password storage and handling best practices
Community Discussion
No community discussion yet for this question.