ACA-Sec1試験無料問題集（145題）「Alibaba ACA Cloud Security Certification 認定」

出題：1

Which of the following security vulnerability is not a 'Server Side' security issue?

A. SQL injection

B. File uploading vulnerability

C. CSRF(cross site request fraud)vulnerability

D. System Command Execution vulnerability

正解：C 解答を投票する

出題：2

Which of following attacks could serve as a CC attack? (the number of correct answers: 3) Score 1

A. One host simulate many IP addresses

B. ICMP flood

C. SYN flood

D. Zombie network

E. Attack through agent

正解：A,D,E 解答を投票する

出題：3

Which of the following methods can't be used against CC attack?

A. change HTTP service to HTTPS service

B. use WAF

C. resolve domain name to a disguised IP

D. change the service providing port

正解：A 解答を投票する

出題：4

In order to stop the service provided through a particular port in Windows OS, which of the following methods can be used to achieve this objective? (the number of correct answers: 3)

A. stop the service itself

B. stop all guest role access

C. update OS patch

D. adjust firewall rule

E. adjust local security policy

正解：A,D,E 解答を投票する

出題：5

Which of the following steps is not a valid step for using anti-DDOS pro?

A. bind real customer identity to anti-DDOS pro IP

B. configure to be protected domain name

C. add new DNS record

D. change source IP

E. if original server is using its own firewall, then need to add Anti-DDOS pro IP to its white list

正解：A 解答を投票する

出題：6

Which commands can be used to reload the operation system? (Correct Answers: 2)

A. shutdown

B. restart

C. init

D. reload

正解：B 解答を投票する

出題：7

What type of attack is likely occuring if you see a significant increase in network traffic and users complain that the web server is hung up?

A. DNS spoofing

B. MITM

C. Ping sweep

D. DoS

正解：D 解答を投票する

出題：8

Which of the following statements are NOT true about 'Server Guard' remote logon detection functionality?

A. It can send warning message to 'Server Guard' user

B. It can detect the attacking tool used by attacker

C. It needs to setup common logon location in 'Server Guard' configuration

D. It can detect the remote logon used source IP address

正解：B 解答を投票する

出題：9

Which of the following statements is NOT true about daily operation on server account andpassword maintenance?

A. change'Administrator' to some other name

B. with'Server Guard protection In Allbaba Cloud,you can set password to some easy to remember words.

C. except for some necessary accounts for system manogement,.dlsoble or delete other seldomly used accounts

D. always set a complexed passwcwd using combination of numbers,letters and other characters

正解：B 解答を投票する

出題：10

Which of the following application vulnerabilities are not as popular as others?

A. File uploading vulnerability

B. SQL Injection

C. Kernel privilege breaking

D. XSS exploit

正解：C 解答を投票する

ACA-Sec1試験無料問題集「Alibaba ACA Cloud Security Certification 認定」