ACA-Sec1 Practice Exam Questions and Answers

A.  

Source IP

B.  

URI

C.  

How long the detection should last

D.  

How frequently the page is visited by one single source IP

E.  

Target IP

A.  

Bugs generated during common component development

B.  

Hardware configuration is not up to date

C.  

Software used or OS itself contain some logic flaw

D.  

End user didn't follow the user manual

A.  

ECS

B.  

SLB

C.  

Security Group

D.  

Express Connect

A.  

software logic flaw or mistakes made during software development cycle

B.  

hardware devices are not up to date

C.  

system administrator didn't follow the operation manual exactly

D.  

The proprietary software that is safer than open source one should be installed

A.  

CDN- >Anti-DDOS Pro->WAF->Original Website

B.  

Anti-DDOS Pro->CDN->WAF->Original website

C.  

CDN- >WAF->Anti-DDOS Pro->Original website

D.  

Anti-DDOS Pro->WAF->CDN->Original website

A.  

OS type

B.  

network interface

C.  

authorization policy

D.  

authorization object

A.  

offline backup tape devices

B.  

enterprise major website

C.  

router device

D.  

online banking system

A.  

It will totally block any file to be able to upload to the web server

B.  

cache will be enabled only after you turn on the protection switch

C.  

there is a switch need to be turned on first

D.  

If you changed some page content, you can use 'cache update' button to manually update the cache

A.  

SQL Injection

B.  

XSS exploit

C.  

File uploading vulnerability

D.  

Kernel privilege breaking

A.  

Set a fixed upgrade schedule

B.  

Automatically install any upgrade if available

C.  

Always ask for user’s permission before installation

D.  

never check for upgrade

A.  

Website is used for some illegal attempts

B.  

Public image or reputation of your company is damaged

C.  

Business is impacted

D.  

Physical server is damaged

A.  

Illegal Logon!

B.  

Migrated Already!

C.  

Logon Successfully!

D.  

Remote Logon Detected!

A.  

set easy to remember password to help administrator quickly login and solve problems

B.  

patch system timely and frequently

C.  

enable build-in OS firewall and configure it properly

D.  

disable the ports which are not providing service anymore

A.  

enforce security management to any public service

B.  

keep installing official released patches will be good enough

C.  

keep monitoring system processes , performance and status

D.  

always scan input by user through web application

A.  

UDP stateless connectio

B.  

DNS 3 times hands shake

C.  

TCP 3 times hands shake

D.  

HTTP plain text transmission

A.  

IPV6 has bigger route table size

B.  

IPV6 address length upper limit is 128 bits

C.  

IPV6 has more simplified header

D.  

No network switch device is needed when using IPV6 protocol to transfer data

A.  

Wroute

B.  

Route

C.  

Tracert

D.  

Traceroute

A.  

you can use 'mysqldump' do logical backup

B.  

you can copy files directly to do physical backup

C.  

you can use 'binlog' to do real time backup

D.  

you must stop accessing to DB before you do logical backup

A.  

SQL injection

B.  

System Command Execution vulnerability

C.  

CSRF(cross site request fraud)vulnerability

D.  

File uploading vulnerability

A.  

Resources, printers and storage devices

B.  

Networks, systems and applications

C.  

Systems, memory, network access card

D.  

Network access card, applications, peripheral devices

A.  

this feature can only used for single page, can't be used to protect the whole domain

name

B.  

WAF need to inject JavaScript piece into all pages under the same protected domain

name to decide if the client side is worth to trust

C.  

direct access URL protected by this feature will have slider verification pop out

D.  

this feature is not suitable for scenario needs to call API directly

A.  

iptables

B.  

ipfirewall

C.  

linuxfw

D.  

netstat