Which term describes a file on the share drive replaced by a message stating a policy violation has occurred?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Study for the CompTIA SecurityX Test. Equip yourself with comprehensive flashcards and multiple choice questions that include hints and explanations. Gear up for your certification exam!

Multiple Choice

Which term describes a file on the share drive replaced by a message stating a policy violation has occurred?

Explanation:
The situation describes a placeholder left in place of the original file to indicate that a policy was violated. This marker is known as a tombstone. When a shared file triggers a data policy (for example, due to sensitive content or access controls), the system replaces the file with a tombstone file that displays a message informing users that access or the file itself was blocked because of policy enforcement. This approach preserves the location and some metadata about the file, which helps with auditing and user notification without exposing the restricted content. Quarantine, in contrast, would typically move the actual file into a separate restricted area, rather than leaving a notice in place on the original path. The other terms don’t describe this in-place notice: a dictionary relates to keyword-based protection, and classification-based data blocking refers to the policy rule that determines blocking based on data classification, not the act of placing a notice file on the share.

The situation describes a placeholder left in place of the original file to indicate that a policy was violated. This marker is known as a tombstone. When a shared file triggers a data policy (for example, due to sensitive content or access controls), the system replaces the file with a tombstone file that displays a message informing users that access or the file itself was blocked because of policy enforcement. This approach preserves the location and some metadata about the file, which helps with auditing and user notification without exposing the restricted content.

Quarantine, in contrast, would typically move the actual file into a separate restricted area, rather than leaving a notice in place on the original path. The other terms don’t describe this in-place notice: a dictionary relates to keyword-based protection, and classification-based data blocking refers to the policy rule that determines blocking based on data classification, not the act of placing a notice file on the share.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy