• Home
  • Articles
  • Exam Questions and Answers for ACA-Sec1 Study Guide Questions and Answers! [Q14-Q38]

Exam Questions and Answers for ACA-Sec1 Study Guide Questions and Answers! [Q14-Q38]

Share

Exam Questions and Answers for  ACA-Sec1 Study Guide Questions and Answers!

ACA Cloud Security Certification Exam Certification Sample Questions and Practice Exam

NEW QUESTION 14
Which of the following statements about HTTP protocol are true?(the number of correct answers: 2

  • A. HTTP request supports methods like: GET, POST, PUT, HEAD, etc.
  • B. HTTP is based on TCP/IP protocol
  • C. Response code 200 in HTTP protocol means exception on server side
  • D. HTTP protocol support state keeping

Answer: A,B

 

NEW QUESTION 15
When 'Server Guard' detects remote logon behavior, what information will be shown on 'Server Guard' console?

  • A. Illegal Logon!
  • B. Migrated Already!
  • C. Remote Logon Detected!
  • D. Logon Successfully!

Answer: C

 

NEW QUESTION 16
Reliable server daily operation and security management are essential for continuous service running. Which of the following statement is NOT correct regarding to this scenario?

  • A. disable the ports which are not providing service anymore
  • B. set easy to remember password to help administrator quickly login and solve problems
  • C. patch system timely and frequently
  • D. enable build-in OS firewall and configure it properly

Answer: B

 

NEW QUESTION 17
In a regular server maintenance operation, the purpose of installing a patch on the operating system is?

  • A. to avoid existing system vulnerabilities being used by some hackers
  • B. to enhance system functionality
  • C. To improve server resource usage
  • D. to improve system usability

Answer: A

 

NEW QUESTION 18
Which of the following statements about ECS, VPC, security groups are NOT true?
(the number of correct answers: 2)

  • A. by default, ECS in different security group can communicate with each other
  • B. rule setting for security group supports both in and out direction configuration
  • C. one ECS can be in several different security group
  • D. default security group rule is safe enough, please don't change it too much

Answer: A,D

 

NEW QUESTION 19
Which of the following scenarios should be handled by anti-DDOS service? (the number of correct answers: 3)

  • A. website is under SQL injection attack
  • B. DNS server is under udp flood attack and got no response anymore
  • C. website is under XSS attacks
  • D. online game service which is suffering with too many empty connections and slow connections
  • E. Server is under syn flood attack, and is not reachable

Answer: B,D,E

 

NEW QUESTION 20
From which of the following attacks WAF will not provide protection?

  • A. SYN Flood
  • B. Web Server vulnerability attack
  • C. Core files unauthorized access
  • D. HTTP Flood

Answer: A

 

NEW QUESTION 21
Which of the following statements about VLAN are NOT true?(the number of correct answers: 3) Score 1

  • A. users in different VLAN can connect each other directly without pre-configuration
  • B. VlAN can enhance the network security and data isolation
  • C. different VLAN means different physical location of switches
  • D. VLAN configuration can be done through an TCP/IP router device

Answer: A,C,D

 

NEW QUESTION 22
In Linux OS, if access control to a file is shown as '-rwxrw-r--' in shell command, which of the following statements are true?
Score 2

  • A. This file is a text file
  • B. The access privilege of this user group is read only
  • C. Other users (outside of this user group) can execute this file
  • D. The owner of this file has read/write/execution privilege to this file

Answer: D

 

NEW QUESTION 23
Which of the following steps is not a valid step for using anti-DDOS pro?

  • A. change source IP
  • B. bind real customer identity to anti-DDOS pro IP
  • C. configure to be protected domain name
  • D. add new DNS record
  • E. if original server is using its own firewall, then need to add Anti-DDOS pro IP to its white list

Answer: B

 

NEW QUESTION 24
If WAF service user updated web page content after turning on website tampering protection, what does user need to do on WAF console?

  • A. turn on protection switch manually
  • B. restart the whole WAF service
  • C. Update cache
  • D. add one protection rule

Answer: C

 

NEW QUESTION 25
Alibaba Cloud will provide hot fix to address existing vulnerabilities. Which of the following statements is true about this 'hot fix'?

  • A. service will not be available during the hot fix
  • B. hot fix means the host need to reach some temperature upper limit to be able to proceed
  • C. hot fix is transparent to end user
  • D. hot fix doesn't need to reboot physical host

Answer: D

 

NEW QUESTION 26
Which of the following options can be considered as Data and Application security risks in IT infrastructure

  • A. Data readiness
  • B. Data access control
  • C. Data encryption
  • D. Data integrity

Answer: B,C,D

 

NEW QUESTION 27
Regarding the 'Shared Security Responsibilities' on Alibaba Cloud, which of the following options are the responsibilities Cloud user need to take care of ?

  • A. Application vulnerabilities
  • B. Data security inside ECS
  • C. Physical servers water proof
  • D. ECS network configuration

Answer: A,B,D

 

NEW QUESTION 28
CC customized protection rule supports you to define customized configuration setting.
Which of following items can be self-defined? (the number of correct answers: 3)

  • A. Source IP
  • B. How long the detection should last
  • C. How frequently the page is visited by one single source IP
  • D. URI
  • E. Target IP

Answer: B,C,D

 

NEW QUESTION 29
Which of the following issues will NOT be an issue anymore using Alibaba Cloud ECS server? Score 2

  • A. server is under brute force password hacking
  • B. hardware disk or memory broken
  • C. application vulnerability being leveraged by hackers
  • D. infection by Trojan Virus

Answer: B

 

NEW QUESTION 30
Which of the following methods can't be used to prevent SQL injection attack?

  • A. Warning message for abnormal input
  • B. SQL precompiling and variable binding
  • C. Strict input check
  • D. Use secured function call

Answer: A

 

NEW QUESTION 31
By default, servers in VPC can't communicate with internet. By implementing which of the following products these servers can gain the capability to communicate with internet? (the number of correct answers: 3)

  • A. EIP + NAT Gateway
  • B. Elastic Public IP
  • C. CDN
  • D. EIP + SLB
  • E. DNS service

Answer: A,B,D

 

NEW QUESTION 32
Security risk may caused by 'Cloud platform', 'ISV' or 'End user', which of the following options are the possible risks may caused by Cloud Platform?

  • A. Cloud platform console and API may lack of security hardenning
  • B. Administration tools on Cloud Platform may have some flaws
  • C. Software development cycle is not formalized
  • D. Security system overall solutions are not complete

Answer: A,B,D

 

NEW QUESTION 33
Which of the following descriptions of the shared responsibilities security model is CORRECT?

  • A. After beginning to use cloud service, the user and the cloud service provider will be jointly responsible for cloud security, with each responsible for different layers of security.
  • B. After beginning to use cloud service, users only need to pay attention to the security of their own apps and data. All other security will be the responsibility of the cloud service provider.
  • C. After beginning to use cloud service, the cloud service provider will become responsible for all of the user's security.
  • D. After beginning to use cloud service, users must still take care of physical and environmental security.

Answer: A

 

NEW QUESTION 34
What status transition flow a TCP client will go through in order to proactively establish connection and disconnect it?

  • A. SYNC_SENT- ->SYNC_RCVD-->ESTABLISHED-->FIN_WAIT1-->FIN_WAIT2
  • B. SYNC_SENT- ->ESTABLISHED-->FIN_WAIT1-->FIN_WAIT2-->TIME_WAIT
  • C. SYNC_RCVD- ->ESTABLISHED-->CLOSE_WAIT-->TIME_WAIT-->LAST_ACK
  • D. SYNC_SENT- ->ESTABLISHED-->FIN_WAIT1-->FIN_WAIT2-->CLOSE_WAIT

Answer: B

 

NEW QUESTION 35
Which web server is default one in Windows OS?

  • A. Apache
  • B. Web Daemon
  • C. HTTPD
  • D. IIS

Answer: D

 

NEW QUESTION 36
Which of the following 2 security risks are not included in OWASP published 2017 Top 10 Web Application Security Risks

  • A. Injection
  • B. Unvalidated Redirects and Forwards
  • C. Cross-Site Request Forgery(CSRF)
  • D. Cross-Site Scripting(XSS)

Answer: B,C

 

NEW QUESTION 37
A DoS attack that sends a flood of synchronization (SYN) requests and never sends the final acknowledgement (ACK) is typically known as which of the following?

  • A. Ping Flood
  • B. Fraggle
  • C. Smurf
  • D. SYN flood

Answer: D

 

NEW QUESTION 38
......

ACA-Sec1 certification dumps - Alibaba Security ACA-Sec1 guides - 100% valid: https://www.examdumpsvce.com/ACA-Sec1-valid-exam-dumps.html

Related Articles

more
Alibaba ACA-Sec1 Certification Practice Exam

ExamDumpsVCE not only provides professional valid VCE files but also golden customer service. 99.54% passing rate will help most users pass exams easily if users pay highly attention on our stable dumps VCE and reliable exam dumps.

Latest Exams

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 ExamDumpsVCE NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy