• Home
  • Blogs
  • [Oct 16, 2021] Updates Up to 365 days On Valid ACA-Sec1 Braindumps [Q80-Q105]

[Oct 16, 2021] Updates Up to 365 days On Valid ACA-Sec1 Braindumps [Q80-Q105]

Share

[Oct 16, 2021] Updates Up to 365 days On Valid ACA-Sec1 Braindumps

Best QualityACA-Sec1 Exam Questions  Alibaba Test To Gain Brilliante Result

NEW QUESTION 80
Reliable server daily operation and security management are essential for continuous service running. Which of the following statement is NOT correct regarding to this scenario?

  • A. disable the ports which are not providing service anymore
  • B. set easy to remember password to help administrator quickly login and solve problems
  • C. patch system timely and frequently
  • D. enable build-in OS firewall and configure it properly

Answer: B

 

NEW QUESTION 81
Which of the followings are not the reasons for a DDoS attack?

  • A. Destroying of integrity
  • B. Destroying of business credit
  • C. Destroying of availability
  • D. Destroying of confidentiality

Answer: A,B,D

 

NEW QUESTION 82
Which command in Redhat Linux shell can be used to check if some specific string is included in a bunch of text files?

  • A. Find
  • B. Ca
  • C. Grep
  • D. Watch

Answer: C

 

NEW QUESTION 83
Which of the following function is NOT provided by 'Server Guard' vulnerability detection?

  • A. Linux system vulnerability scanning
  • B. Trojan detection
  • C. sensitive data encryption
  • D. weak password detection

Answer: C

 

NEW QUESTION 84
Which of the following options does not belong to 5 key elements of network communication?

  • A. Source IP
  • B. Destination IP
  • C. Communication Protocol
  • D. Encryption Algorism

Answer: D

 

NEW QUESTION 85
CC customized protection rule supports you to define customized configuration setting.
Which of following items can be self-defined? (the number of correct answers: 3)

  • A. Source IP
  • B. How long the detection should last
  • C. How frequently the page is visited by one single source IP
  • D. URI
  • E. Target IP

Answer: B,C,D

 

NEW QUESTION 86
From which of the following attacks WAF will not provide protection?

  • A. SYN Flood
  • B. Web Server vulnerability attack
  • C. Core files unauthorized access
  • D. HTTP Flood

Answer: A

 

NEW QUESTION 87
Which of the following protection rules are provided by WAF to better protect from CC attack? (the number of correct answers: 2)

  • A. Loose
  • B. Emergency
  • C. Normal
  • D. Strict

Answer: A,D

 

NEW QUESTION 88
The Alibaba Cloud WAF protection strategy provides the following: (the number of correct answers: 3) Score 1

  • A. Loose
  • B. Normal
  • C. Early Warning
  • D. Regular
  • E. Strict

Answer: A,B,E

 

NEW QUESTION 89
Which of the following statements are true about the difference between HTTP and HTTPS
? (the number of correct answers: 2)

  • A. Data transferred through HTTPs is under encryption
  • B. HTTP must use port 80 and HTTPS must use port 443 to provide service
  • C. HTTPS is more secure than HTTP regarding the way they transfer data
  • D. You must buy commercial CA before you setup your own web server with HTTPS service

Answer: A,C

 

NEW QUESTION 90
If user is using anti-DDOS Pro service, but the original server has rule to limit access to the client IPs, which of the following actions is the most proper one to take?

  • A. enable SLB for original server
  • B. add anti-DDOS pro IP into customer firewall white list
  • C. disable original server firewall
  • D. enable CDN and change anti-DDOS pro IP to CDN address

Answer: B

 

NEW QUESTION 91
Which of the following issues would not happen if ECS server is under attack by hackers?

  • A. sensitive data leak
  • B. service running on that server is not available
  • C. compromise the reputation of service provider on that server
  • D. physical server damage

Answer: D

 

NEW QUESTION 92
Regarding the 'Shared Security Responsibilities' on Alibaba Cloud, which of the following options are the responsibilities Cloud user need to take care of ?

  • A. Application vulnerabilities
  • B. Data security inside ECS
  • C. Physical servers water proof
  • D. ECS network configuration

Answer: A,B,D

 

NEW QUESTION 93
In a regular server maintenance operation, the purpose of installing a patch on the operating system is?

  • A. to avoid existing system vulnerabilities being used by some hackers
  • B. to enhance system functionality
  • C. To improve server resource usage
  • D. to improve system usability

Answer: A

 

NEW QUESTION 94
Which of following statements about the possible reasons that cause web server vulnerabilities are true? (the number of correct answers: 2) Score 1

  • A. Bugs generated during common component development
  • B. End user didn't follow the user manual
  • C. Hardware configuration is not up to date
  • D. Software used or OS itself contain some logic flaw

Answer: A,D

 

NEW QUESTION 95
Which of the following protocol is dedicated to resolve IP and MAC addresses?

  • A. DNS
  • B. ARP
  • C. ICMP
  • D. TCP

Answer: B

 

NEW QUESTION 96
Which command in RedHat Linux shell can be used to check disk usage?

  • A. diskSpace
  • B. df
  • C. ls
  • D. diskUsage

Answer: B

 

NEW QUESTION 97
What design flaw of TCP/IP protocol does SYN flood attack use?

  • A. DNS 3 times hands shake
  • B. UDP stateless connectio
  • C. HTTP plain text transmission
  • D. TCP 3 times hands shake

Answer: D

 

NEW QUESTION 98
Which of the following protocols will not be used for a SYN Flood attack?

  • A. IPX/SPX
  • B. AppleTalk
  • C. UDP
  • D. TCP

Answer: A,B,C

 

NEW QUESTION 99
Which of the following scenarios is the one that 'Server Guard' will support for brute force password hacking detection?

  • A. RDS remote connection
  • B. Linux CRM application remote logon
  • C. Windows shared directory access
  • D. ECS server remote logon or inside DB remote logon

Answer: D

 

NEW QUESTION 100
You configure a computer to act as a zombie set in order to attack a web server on a specific date.
What would this contaminated computer be part of?

  • A. The computer is part of a man-in-the-middle attack
  • B. The computer is part of a DDoS attack
  • C. The computer is part of a TCP/IP hijacking
  • D. The computer is part of a spoofing attack

Answer: B

 

NEW QUESTION 101
Which of the following 4 functions can be achieved through ECS security group configuration?

  • A. assign customized IP address to ECS
  • B. make ECS server be able to defend 15Gb/s DDOS attack
  • C. fix XSS vulnerability
  • D. allow specific IP to remote access ECS server

Answer: D

 

NEW QUESTION 102
Security risk may caused by 'Cloud platform', 'ISV' or 'End user', which of the following options are the possible risks may caused by Cloud Platform?

  • A. Cloud platform console and API may lack of security hardenning
  • B. Administration tools on Cloud Platform may have some flaws
  • C. Software development cycle is not formalized
  • D. Security system overall solutions are not complete

Answer: A,B,D

 

NEW QUESTION 103
Which of the following products won't be a DDOS attack target?

  • A. enterprise major website
  • B. router device
  • C. online banking system
  • D. offline backup tape devices

Answer: D

 

NEW QUESTION 104
Which of the following statements is the possible reason that might lead to system vulnerabilities?

  • A. hardware devices are not up to date
  • B. The proprietary software that is safer than open source one should be installed
  • C. software logic flaw or mistakes made during software development cycle
  • D. system administrator didn't follow the operation manual exactly

Answer: C

 

NEW QUESTION 105
......

Focus on ACA-Sec1 All-in-One Exam Guide For Quick Preparation: https://www.testkingit.com/Alibaba/latest-ACA-Sec1-exam-dumps.html

Related Blogs

more
Alibaba ACA-Sec1 Certification Practice Exam