ACA-Sec1試験無料問題集（145題）「Alibaba ACA Cloud Security Certification 認定」

出題：1

What modes Alibaba Cloud WAF will provide to defend SQL injection? (the number of correct answers: 2) Score 1

A. Normal Mode

B. Warning Mode

C. Restriction Mode

D. Protection Mode

正解：B,D 解答を投票する

出題：2

Inside cloud, hypervisor vulnerability could cause the following possible consequences: (the number of correct answers: 3)

A. One client host can access another client's data

B. Hacker can access host server directly

C. Incorrect client resource usage calculating

D. User service become unavailable

正解：A,B,D 解答を投票する

出題：3

Which of the following damages can't be caused by a DDOS attack
Score 2

A. military commander system down

B. physical server broken

C. DNS service down

D. web service down

正解：B 解答を投票する

出題：4

In Linux OS, if access control to a file is shown as '-rwxrw-r--' in shell command, which of the following statements are true?
Score 2

A. Other users (outside of this user group) can execute this file

B. The owner of this file has read/write/execution privilege to this file

C. This file is a text file

D. The access privilege of this user group is read only

正解：B 解答を投票する

出題：5

Which of the following risks are considered as common network security risk? (the number of correct answers: 2)

A. Massive traffic flood attack

B. Physical Fiber Channel Cable is broken

C. Software version is not up to date

D. Data under transferring is being sniffed

正解：C,D 解答を投票する

出題：6

Which command in RedHat Linux shell can be used to check disk usage?

A. diskSpace

B. diskUsage

C. ls

D. df

正解：D 解答を投票する

出題：7

CC attacks can cause serious damages. Which of the following statements about CC attack is not correct?
Score 2

A. CC attack is done on network layer

B. CC attack will simulate real user requests

C. Will consume massive sever side resource

D. The request generated by CC attack is hard to be distinguished from normal requests

正解：A 解答を投票する

出題：8

What status transition flow a TCP client will go through in order to proactively establish connection and disconnect it?

A. SYNC_SENT- ->ESTABLISHED-->FIN_WAIT1-->FIN_WAIT2-->CLOSE_WAIT

B. SYNC_RCVD- ->ESTABLISHED-->CLOSE_WAIT-->TIME_WAIT-->LAST_ACK

C. SYNC_SENT- ->ESTABLISHED-->FIN_WAIT1-->FIN_WAIT2-->TIME_WAIT

D. SYNC_SENT- ->SYNC_RCVD-->ESTABLISHED-->FIN_WAIT1-->FIN_WAIT2

正解：C 解答を投票する

出題：9

Which of the following security vulnerability is not a 'Server Side' security issue?

A. SQL injection

B. File uploading vulnerability

C. CSRF(cross site request fraud)vulnerability

D. System Command Execution vulnerability

正解：C 解答を投票する

出題：10

Which of the following issues would not happen if ECS server is under attack by hackers?

A. physical server damage

B. service running on that server is not available

C. compromise the reputation of service provider on that server

D. sensitive data leak

正解：A 解答を投票する

ACA-Sec1試験無料問題集「Alibaba ACA Cloud Security Certification 認定」