Question # 4

18.in RedHat Linux shell which command can be used to check what file system is mounted and form what disk device it was done?

Ppart

Fdisk

mount

Full Access

Question # 5

If your company has a lot of employees who would try to simultaneously access ECS server protected by 'Server Guard' using your company's intranet, the 'Sever Guard' may

mistakenly identify those access requests as attacks. Which of the following methods is the best way to solve this problem? Score 2

set a highly complexed administrator password

change the rule of security group to unblock all company internal ips

add those IPs which need to access ECS server into 'Server Guard' logon white list

ask employees to access that ECS server not very frequently

Full Access

Question # 6

What will the correct stops the traffic will flow through if the user used all following cloud service: WAF, Anti-DDOS pro, CDN.

CDN- >Anti-DDOS Pro->WAF->Original Website

Anti-DDOS Pro->CDN->WAF->Original website

CDN- >WAF->Anti-DDOS Pro->Original website

Anti-DDOS Pro->WAF->CDN->Original website

Full Access

Question # 7

Which of the following Keys in HTTP heads are related to cache control? (the number of correct answers: 3)

Cache-Control

Date

Age

Expires

Host

Full Access

Question # 8

Regarding the 'Shared Security Responsibilities' on Alibaba Cloud, which of the following options

are the responsibilities Cloud user need to take care of ?

Data security inside ECS

Physical servers water proof

Application vulnerabilities

ECS network configuration

Full Access

Question # 9

In order to stop the service provided through a particular port in Windows OS, which

of the following methods can be used to achieve this objective? (the number of correct

answers: 3)

adjust firewall rule

adjust local security policy

update OS patch

stop the service itself

stop all guest role access

Full Access

Question # 10

If WAF service user updated web page content after turning on website tampering protection, what does user need to do on WAF console?

Update cache

turn on protection switch manually

add one protection rule

restart the whole WAF service

Full Access

Question # 11

Which of the following statements is TRUE about Anti-DDOS basics?

it can only protect servers outside of Alibaba Cloud

it is free to charge

need to turn on manually

There is no service limitation for peak traffic

Full Access

Question # 12

For internet communication, to setup the connection and data transition between source

and destination, which of the following information you will need？ (the number of correct

answers: 3)

Score 1

IP address

Port

Encryption algorism

Protocol

Router Location

Full Access

Question # 13

Apart from technical approaches, the proper data security management rules can be applied

in daily operations to lower the risk of information leakage. Which of the following risks can

be mitigated setting a strong data security management policy for company's employees?

Score 2

information is sniffed during network transition

under http flood attack

sensitive information is taken away by former employee

email phishing

Full Access

Question # 14

Which of the following statements about 'webshell' detection feature of WAF is NOT true?

It will totally block any file to be able to upload to the web server

cache will be enabled only after you turn on the protection switch

there is a switch need to be turned on first

If you changed some page content, you can use 'cache update' button to manually update the cache

Full Access

Question # 15

In making cloud accounts more secure, which of the following is NOT a guiding principle?

Anonymous logins

Account permissions

Authorization distribution

Full Access

Question # 16

Which of the following shell command can be used to check disk usage in a Linux OS ECS

Df –h

Echo

Free –m

Ps –e –o

Full Access

Question # 17

Which of the following service may under anti-DDOS attack?(the number of correct answers:

Score 1

servers in VPC only configured with private network

any device internet reachable

government website

public DNS service

offline servers

Full Access

Question # 18

If Server Guard (product provided by Alibaba Cloud) report some brute force password

hacking attacks, the reporting information will include？ (the number of correct answers: 3)

Attack initiated time

Attack type

Tools attacker used

Attack source IP

Physical location of attacker

Full Access

Question # 19

In May 2017 a new blackmail virus WannaCry burst globally, using Windows OS open port 445 to initiate its attacks. What is the quickest way to prevent this kind of attacks?

disable port 445

set a highly complexed administrator password

encrypt all data on server side

put sensitive data in some hidden directory

Full Access

Question # 20

Which of the following options is the top 1 web application security risk based on OWASP 2017

report?

XSS Attack

Server Information Theft

Code Execution

SQL Injection

Full Access

Question # 21

Which of the following statements is NOT true about EIP and NAT gateway?

NAT gateway can support multi servers inside VPC to access public internet through one

public IP

EIP can be bind to different ECS servers at the same time

Different EIP can't share bandwidth

NAT gateway can support shared bandwidth between several ips

Full Access

Question # 22

Which of the following issues would not happen if ECS server is under attack by hackers?

sensitive data leak

service running on that server is not available

physical server damage

compromise the reputation of service provider on that server

Full Access

Labour Day Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: buysanta

Exact2Pass Menu

Exact2Pass

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

Answer:

SubFooter