Get Alibaba ACA-Sec1 Dumps Questions [2021] To Gain Brilliant Result
ACA-Sec1 dumps - ExamDumpsVCE - 100% Passing Guarantee
NEW QUESTION 23
Which of the following statements is true about classic network and VPC?
- A. servers inside VPC can only communicate to other VPC network
- B. you can customize your private IP in a classic network
- C. you can customize your private IP in VPC
- D. they can do same thing
Answer: D
NEW QUESTION 24
If Server Guard (product provided by Alibaba Cloud) report some brute force password hacking attacks, the reporting information will include? (the number of correct answers: 3)
- A. Physical location of attacker
- B. Tools attacker used
- C. Attack initiated time
- D. Attack type
- E. Attack source IP
Answer: C,D,E
NEW QUESTION 25
After using WAF, if you find there are many user input data in the network traffic, you should apply:
- A. Strict protection policy
- B. Normal protection policy
- C. Loose protection policy
- D. Progression protection policy
Answer: A
NEW QUESTION 26
Which of the following scenarios can be considered as business fraud? (the number of correct answers: 2)
- A. post massive comments with bots to some e-commerce website
- B. massive accounts registration for new user benefits gain
- C. data leak because of data transmission with plain text
- D. page content including some porn pictures
Answer: A,B
NEW QUESTION 27
If your company has a lot of employees who would try to simultaneously access ECS server protected by 'Server Guard' using your company's intranet, the 'Sever Guard' may mistakenly identify those access requests as attacks. Which of the following methods is the best way to solve this problem? Score 2
- A. set a highly complexed administrator password
- B. add those IPs which need to access ECS server into 'Server Guard' logon white list
- C. change the rule of security group to unblock all company internal ips
- D. ask employees to access that ECS server not very frequently
Answer: B
NEW QUESTION 28
Which of the following statements are true about the difference between HTTP and HTTPS
? (the number of correct answers: 2)
- A. Data transferred through HTTPs is under encryption
- B. HTTP must use port 80 and HTTPS must use port 443 to provide service
- C. HTTPS is more secure than HTTP regarding the way they transfer data
- D. You must buy commercial CA before you setup your own web server with HTTPS service
Answer: A,C
NEW QUESTION 29
Which directory is the home directory of root user?
- A. /boot
- B. /root
- C. /
- D. /home/root
Answer: C
NEW QUESTION 30
Customer who bought ECS server doesn't need to worry about :
- A. OS vulnerability inside ECS
- B. Web service security inside ECS
- C. ECS security group setting
- D. Cloud infrastructure security
Answer: D
NEW QUESTION 31
You configure a computer to act as a zombie set in order to attack a web server on a specific date.
What would this contaminated computer be part of?
- A. The computer is part of a man-in-the-middle attack
- B. The computer is part of a DDoS attack
- C. The computer is part of a TCP/IP hijacking
- D. The computer is part of a spoofing attack
Answer: B
NEW QUESTION 32
Which of following statements about the possible reasons that cause web server vulnerabilities are true? (the number of correct answers: 2) Score 1
- A. Bugs generated during common component development
- B. End user didn't follow the user manual
- C. Hardware configuration is not up to date
- D. Software used or OS itself contain some logic flaw
Answer: A,D
NEW QUESTION 33
The Alibaba Cloud WAF protection strategy provides the following: (the number of correct answers: 3) Score 1
- A. Loose
- B. Normal
- C. Early Warning
- D. Regular
- E. Strict
Answer: A,B,E
NEW QUESTION 34
Which of the following damages can't be caused by a DDOS attack
Score 2
- A. physical server broken
- B. DNS service down
- C. web service down
- D. military commander system down
Answer: A
NEW QUESTION 35
Security risk may caused by 'Cloud platform', 'ISV' or 'End user', which of the following options are the possible risks may caused by Cloud Platform?
- A. Cloud platform console and API may lack of security hardenning
- B. Administration tools on Cloud Platform may have some flaws
- C. Software development cycle is not formalized
- D. Security system overall solutions are not complete
Answer: A,B,D
NEW QUESTION 36
Which protocol is a 'data link' layer protocol in ISO/OSI 7 layer network model?
Score 2
- A. ARP
- B. FTP
- C. UDP
- D. ICMP
Answer: A
NEW QUESTION 37
Which of the following statements about IPV6 and IPV4 are true?(the number of correct answers: 2)
- A. IPV6 has more simplified header
- B. IPV6 address length upper limit is 128 bits
- C. No network switch device is needed when using IPV6 protocol to transfer data
- D. IPV6 has bigger route table size
Answer: A,B
NEW QUESTION 38
For MySQL DB, if the records number exceeds one million in one single table, which of the following methods can help you improve querying speed?(the number of correct answers: 2) Score 1
- A. use 'group by' to filter information
- B. setup index for this table
- C. use 'limit N' to limit the number of possible returned records
- D. use 'count(*)' to get total record number before query
Answer: A,B
NEW QUESTION 39
In Linux OS, if access control to a file is shown as '-rwxrw-r--' in shell command, which of the following statements are true?
Score 2
- A. This file is a text file
- B. The access privilege of this user group is read only
- C. Other users (outside of this user group) can execute this file
- D. The owner of this file has read/write/execution privilege to this file
Answer: D
NEW QUESTION 40
Which of the following DDoS descriptions are correct?
- A. Steal confidential information
- B. In order to get admin password
- C. Causes the target server unable to process legitimate requests
- D. If the target server has no vulnerabilities, the remote attack may still succeed.
Answer: C,D
NEW QUESTION 41
Which commands can be used to reload the operation system? (Correct Answers: 2)
- A. reload
- B. shutdown
- C. init
- D. restart
Answer: D
NEW QUESTION 42
In an IP (Internet Protocol) spoofing attack, what field of an IP (Internet Protocol) packet does the attacker manipulate?
- A. The source port field
- B. The destination address field
- C. The source address field
- D. The version field
Answer: C
NEW QUESTION 43
. In the ISO/OSI 7 layers networking model, which of the following functions are provided for the 'network layer'? (the number of correct answers: 2)
- A. congestion handling
- B. physical connection
- C. end to end reliable and transparent data transition
- D. Routing
Answer: A,D
NEW QUESTION 44
A DoS attack that sends a flood of synchronization (SYN) requests and never sends the final acknowledgement (ACK) is typically known as which of the following?
- A. Ping Flood
- B. Fraggle
- C. Smurf
- D. SYN flood
Answer: D
NEW QUESTION 45
......
Get 100% Passing Success With True ACA-Sec1 Exam: https://www.examdumpsvce.com/ACA-Sec1-valid-exam-dumps.html
