• Home
  • Articles
  • [Sep-2021] Pass Alibaba ACA-Sec1 Exam in First Attempt Guaranteed! [Q13-Q30]

[Sep-2021] Pass Alibaba ACA-Sec1 Exam in First Attempt Guaranteed! [Q13-Q30]

Share

[Sep-2021] Pass Alibaba ACA-Sec1 Exam in First Attempt Guaranteed!

Full ACA-Sec1 Practice Test and 145 unique questions with explanations waiting just for you, get it now!

NEW QUESTION 13
What modes Alibaba Cloud WAF will provide to defend SQL injection? (the number of correct answers: 2) Score 1

  • A. Warning Mode
  • B. Protection Mode
  • C. Normal Mode
  • D. Restriction Mode

Answer: A,B

 

NEW QUESTION 14
Which of the following options does not belong to 5 key elements of network communication?

  • A. Source IP
  • B. Destination IP
  • C. Communication Protocol
  • D. Encryption Algorism

Answer: D

 

NEW QUESTION 15
After WAF was purchased, users need to add one DNS record to map their domain name to WAF provided IP. What is the type of that DNS record?

  • A. CNAME Record
  • B. MX Record
  • C. A record
  • D. TXT Record

Answer: A

 

NEW QUESTION 16
Using RAM, Alibaba Cloud users can create and manage user accounts and control the operation permissions these user accounts possess for resources under your account. Which of the following descriptions of a RAM usage scenario is NOT correct?

  • A. Temporary authorization management for untrusted client apps
  • B. Prevention of network attacks on enterprises
  • C. Resource operation and authorization management between enterprises
  • D. Enterprise sub-account management and permission assignment

Answer: B

 

NEW QUESTION 17
In Linux OS, if you want to set a file access privilege to read, write, and execute for the owner only, what octal number will reflect such settings correctly?
Score 2

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: D

 

NEW QUESTION 18
In making cloud accounts more secure, which of the following is NOT a guiding principle?

  • A. Login verification
  • B. Account permissions
  • C. Anonymous logins
  • D. Authorization distribution

Answer: C

 

NEW QUESTION 19
Which of the following security issues is considered by the OWASP to be the most dangerous issue facing cloud computing?

  • A. Injection
  • B. Account or service flow hijacking
  • C. Multi-tenant isolation failure
  • D. Denial of service

Answer: A

 

NEW QUESTION 20
Which of the following statements are true for how to login to different ECS operating system? (the number of correct answers: 2) Score 1

  • A. use 'remote desktop connection' for windows
  • B. use 'ssh' tool for Linux
  • C. use 'remote desktop connection' for Linux
  • D. use 'ssh' tool for windows

Answer: A,B

 

NEW QUESTION 21
Customer who bought ECS server doesn't need to worry about :

  • A. OS vulnerability inside ECS
  • B. Web service security inside ECS
  • C. ECS security group setting
  • D. Cloud infrastructure security

Answer: D

 

NEW QUESTION 22
For MySQL DB, if the records number exceeds one million in one single table, which of the following methods can help you improve querying speed?(the number of correct answers: 2) Score 1

  • A. use 'group by' to filter information
  • B. setup index for this table
  • C. use 'limit N' to limit the number of possible returned records
  • D. use 'count(*)' to get total record number before query

Answer: A,B

 

NEW QUESTION 23
Which of the following protocols will not be used for a SYN Flood attack?

  • A. IPX/SPX
  • B. AppleTalk
  • C. UDP
  • D. TCP

Answer: A,B,C

 

NEW QUESTION 24
Which of the following products is designed to provide secured and stable network connection among different VPCs?

  • A. Security Group
  • B. SLB
  • C. ECS
  • D. Express Connect

Answer: D

 

NEW QUESTION 25
Using ECS security group can help you achieve:

  • A. fine grained access control to you server
  • B. better CPU usage
  • C. enlarge your network bandwidth
  • D. apply QOS to a specific IP

Answer: A

 

NEW QUESTION 26
Which of the following options can be considered as Physical environment security risks in IT infrastructure

  • A. Room temperature
  • B. Sounder
  • C. Data encryption
  • D. Rain

Answer: A,B,D

 

NEW QUESTION 27
Which of the following descriptions of the shared responsibilities security model is CORRECT?

  • A. After beginning to use cloud service, the user and the cloud service provider will be jointly responsible for cloud security, with each responsible for different layers of security.
  • B. After beginning to use cloud service, users only need to pay attention to the security of their own apps and data. All other security will be the responsibility of the cloud service provider.
  • C. After beginning to use cloud service, the cloud service provider will become responsible for all of the user's security.
  • D. After beginning to use cloud service, users must still take care of physical and environmental security.

Answer: A

 

NEW QUESTION 28
When 'Server Guard' detects remote logon behavior, what information will be shown on 'Server Guard' console?

  • A. Illegal Logon!
  • B. Migrated Already!
  • C. Remote Logon Detected!
  • D. Logon Successfully!

Answer: C

 

NEW QUESTION 29
Which of the following 2 security risks are not included in OWASP published 2017 Top 10 Web Application Security Risks

  • A. Injection
  • B. Unvalidated Redirects and Forwards
  • C. Cross-Site Request Forgery(CSRF)
  • D. Cross-Site Scripting(XSS)

Answer: B,C

 

NEW QUESTION 30
......

Get Latest ACA-Sec1 Dumps Exam Questions in here: https://www.newpassleader.com/Alibaba/ACA-Sec1-exam-preparation-materials.html

Related Articles

more
Alibaba ACA-Sec1 Certification Practice Exam