GCCC 試験問題を無料オンラインアクセス

Implementing which of the following will decrease spoofed e-mail messages?

• A.Finger Protocol
• B.Network Address Translation
• C.Internet Message Access Protocol
• D.Sender Policy Framework

An attacker is able to successfully access a web application as root using ' or 1 = 1 . as the password. The successful access indicates a failure of what process?

• A.Input Validation
• B.Output Sanitization
• C.Account Management
• D.URL Encoding

Which of the following is a requirement in order to implement the principle of least privilege?

• A.Discretionary Access Control (DAC)
• B.Mandatory Access Control (MAC)
• C.Data normalization
• D.Data classification

To effectively implement the Data Protection CIS Control, which task needs to be implemented first?

• A.Appropriate file content matching needs to be configured
• B.The organization's proprietary data needs to be identified
• C.The organization's proprietary data needs to be encrypted
• D.Employees need to be notified that proprietary data should be protected

After installing a software package on several workstations, an administrator discovered the software opened network port TCP 23456 on each workstation. The port is part of a software management function that is not needed on corporate workstations. Which actions would best protect the computers with the software package installed?

• A.Redirect traffic to and from the software management port to a non-default port
• B.Document the port number and request approval from a change control group
• C.Block TCP 23456 at the network perimeter firewall
• D.Determine which service controls the software management function and opens the port, and disable it