Pass ACA-Sec1 Exam in First Attempt Guaranteed 2021 Dumps! [Q34-Q59]

Share

Pass ACA-Sec1 Exam in First Attempt Guaranteed 2021 Dumps!

ACA-Sec1 Dumps Full Questions - Exam Study Guide

NEW QUESTION 34
The Alibaba Cloud WAF protection strategy provides the following: (the number of correct answers: 3) Score 1

  • A. Loose
  • B. Normal
  • C. Early Warning
  • D. Regular
  • E. Strict

Answer: A,B,E

 

NEW QUESTION 35
Which service in RedHat Linux OS can be used to build network firewall functionality?
Score 2

  • A. linuxfw
  • B. netstat
  • C. iptables
  • D. ipfirewall

Answer: C

 

NEW QUESTION 36
Which of the following protection rules are provided by WAF to better protect from CC attack? (the number of correct answers: 2)

  • A. Loose
  • B. Emergency
  • C. Normal
  • D. Strict

Answer: A,D

 

NEW QUESTION 37
When 'Server Guard' detects remote logon behavior, what information will be shown on 'Server Guard' console?

  • A. Illegal Logon!
  • B. Migrated Already!
  • C. Remote Logon Detected!
  • D. Logon Successfully!

Answer: C

 

NEW QUESTION 38
Which of the following issues will NOT be an issue anymore using Alibaba Cloud ECS server? Score 2

  • A. server is under brute force password hacking
  • B. hardware disk or memory broken
  • C. application vulnerability being leveraged by hackers
  • D. infection by Trojan Virus

Answer: B

 

NEW QUESTION 39
Which of the following options can be considered as Physical environment security risks in IT infrastructure

  • A. Room temperature
  • B. Sounder
  • C. Data encryption
  • D. Rain

Answer: A,B,D

 

NEW QUESTION 40
Reliable server daily operation and security management are essential for continuous service running. Which of the following statement is NOT correct regarding to this scenario?

  • A. disable the ports which are not providing service anymore
  • B. set easy to remember password to help administrator quickly login and solve problems
  • C. patch system timely and frequently
  • D. enable build-in OS firewall and configure it properly

Answer: B

 

NEW QUESTION 41
Which of following statements about the possible reasons that cause web server vulnerabilities are true? (the number of correct answers: 2) Score 1

  • A. Bugs generated during common component development
  • B. End user didn't follow the user manual
  • C. Hardware configuration is not up to date
  • D. Software used or OS itself contain some logic flaw

Answer: A,D

 

NEW QUESTION 42
You configure a computer to act as a zombie set in order to attack a web server on a specific date.
What would this contaminated computer be part of?

  • A. The computer is part of a man-in-the-middle attack
  • B. The computer is part of a DDoS attack
  • C. The computer is part of a TCP/IP hijacking
  • D. The computer is part of a spoofing attack

Answer: B

 

NEW QUESTION 43
User A rented 2 ECS server and one RDS in Alibaba Cloud to setup his company public website. After the web site will become available online, the security risks he/she will face will include: (the number of correct answers: 3)

  • A. RDS DB got unknown remote logon
  • B. the disk in ECS is broken
  • C. website codes has some vulnerability
  • D. physical cable is cut by someone
  • E. ECS admin password is hacked

Answer: A,C,E

 

NEW QUESTION 44
Which command in Windows OS can be used to open a terminal?

  • A. Cmd.exe
  • B. Painter.exe
  • C. Term.exe
  • D. Batch.exe

Answer: A

 

NEW QUESTION 45
Which of the following application vulnerabilities are not as popular as others?

  • A. File uploading vulnerability
  • B. XSS exploit
  • C. SQL Injection
  • D. Kernel privilege breaking

Answer: D

 

NEW QUESTION 46
Which of the following descriptions of the shared responsibilities security model is CORRECT?

  • A. After beginning to use cloud service, the user and the cloud service provider will be jointly responsible for cloud security, with each responsible for different layers of security.
  • B. After beginning to use cloud service, users only need to pay attention to the security of their own apps and data. All other security will be the responsibility of the cloud service provider.
  • C. After beginning to use cloud service, the cloud service provider will become responsible for all of the user's security.
  • D. After beginning to use cloud service, users must still take care of physical and environmental security.

Answer: A

 

NEW QUESTION 47
Which web server is default one in Windows OS?

  • A. Apache
  • B. Web Daemon
  • C. HTTPD
  • D. IIS

Answer: D

 

NEW QUESTION 48
Which of the following methods can't be used against CC attack?

  • A. change the service providing port
  • B. resolve domain name to a disguised IP
  • C. use WAF
  • D. change HTTP service to HTTPS service

Answer: D

 

NEW QUESTION 49
Which of the following security issues is considered by the OWASP to be the most dangerous issue facing cloud computing?

  • A. Injection
  • B. Account or service flow hijacking
  • C. Multi-tenant isolation failure
  • D. Denial of service

Answer: A

 

NEW QUESTION 50
Alibaba Cloud offers different security protection plans to different tenant accounts. Which of the following is NOT a security plan offered by Alibaba Cloud?

  • A. Two-factor authentication
  • B. Phone or email verification for password resetting
  • C. Password-free login
  • D. Phone number binding

Answer: C

 

NEW QUESTION 51
Which of the following scenarios is the one that 'Server Guard' will support for brute force password hacking detection?

  • A. RDS remote connection
  • B. Linux CRM application remote logon
  • C. Windows shared directory access
  • D. ECS server remote logon or inside DB remote logon

Answer: D

 

NEW QUESTION 52
Which of the following statements is true about HTTP protocol?
Score 2

  • A. default service port is 80
  • B. the data transmitted by this protocol is auto-encrypted
  • C. HTTP is a network layer protocol
  • D. HTTP protocol can't be used to transmit file

Answer: A

 

NEW QUESTION 53
Which of the following options could NOT be the reason that causes website tampering

  • A. Botnet attack
  • B. system vulnerability is not fixed in time
  • C. Share password between different users
  • D. Wrong security configuration

Answer: A

 

NEW QUESTION 54
Which of following statements is NOT true about anti-DDOS basics and anti-DDOS Pro?

  • A. both can defend DDOS attack
  • B. anti-DDOS pro can protect both inside and outside Alibaba Cloud servers
  • C. anti-DDOS pro is free to charge
  • D. anti-DDOS pro has more capabilities to defend against DDOS attacks

Answer: B,C

 

NEW QUESTION 55
From which of the following attacks WAF will not provide protection?

  • A. SYN Flood
  • B. Web Server vulnerability attack
  • C. Core files unauthorized access
  • D. HTTP Flood

Answer: A

 

NEW QUESTION 56
After WAF was purchased, users need to add one DNS record to map their domain name to WAF provided IP. What is the type of that DNS record?

  • A. CNAME Record
  • B. MX Record
  • C. A record
  • D. TXT Record

Answer: A

 

NEW QUESTION 57
Which protocol is a 'data link' layer protocol in ISO/OSI 7 layer network model?
Score 2

  • A. ARP
  • B. FTP
  • C. UDP
  • D. ICMP

Answer: A

 

NEW QUESTION 58
What are the advantages of anti-DDOS pro comparing to anti-DDOS basics service?
(the number of correct answers: 3)

  • A. can protect IDC outside Alibaba Cloud
  • B. no upper limit to the attack traffic need to be handled
  • C. elastic protection bandwidth
  • D. can do anti-fraud protection
  • E. stronger defending attacks capability

Answer: A,C,E

 

NEW QUESTION 59
......

Alibaba Security  Free Certification Exam Material from Fast2test with 145 Questions: https://www.fast2test.com/ACA-Sec1-premium-file.html

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어