ACA-Sec1 試験問題を無料オンラインアクセス

After using WAF, if you find there are many user input data in the network traffic, you should apply:

• A.Progression protection policy
• B.Strict protection policy
• C.Normal protection policy
• D.Loose protection policy

Which of the following function is NOT provided by 'Server Guard' vulnerability detection?

• A.sensitive data encryption
• B.Trojan detection
• C.weak password detection
• D.Linux system vulnerability scanning

If user is using anti-DDOS Pro service, but the original server has rule to limit access to the client IPs, which of the following actions is the most proper one to take?

• A.disable original server firewall
• B.enable CDN and change anti-DDOS pro IP to CDN address
• C.add anti-DDOS pro IP into customer firewall white list
• D.enable SLB for original server

Which of the following options is the top 1 web application security risk based on OWASP 2017 report?

• A.Server Information Theft
• B.SQL Injection
• C.Code Execution
• D.XSS Attack

What is the correct action sequence of WAF protection strategy: (1) CC detection (2) Web application attack detection (3) Access control Score 2

• A.213
• B.231
• C.312
• D.132