A fully updated 2021 ACA-Sec1 Exam Dumps exam guide from training expert ExamPrepAway [Q75-Q92]

Share

A fully updated 2021 ACA-Sec1 Exam Dumps exam guide from training expert ExamPrepAway

Provides complete coverage of every objective on exam and exam preparation ACA-Sec1

NEW QUESTION 75
Which of the following statements about ECS, VPC, security groups are NOT true?
(the number of correct answers: 2)

  • A. by default, ECS in different security group can communicate with each other
  • B. rule setting for security group supports both in and out direction configuration
  • C. one ECS can be in several different security group
  • D. default security group rule is safe enough, please don't change it too much

Answer: A,D

 

NEW QUESTION 76
Which command in Redhat Linux shell can be used to check if some specific string is included in a bunch of text files?

  • A. Find
  • B. Ca
  • C. Grep
  • D. Watch

Answer: C

 

NEW QUESTION 77
What modes Alibaba Cloud WAF will provide to defend SQL injection? (the number of correct answers: 2) Score 1

  • A. Warning Mode
  • B. Protection Mode
  • C. Normal Mode
  • D. Restriction Mode

Answer: A,B

 

NEW QUESTION 78
Which protocol is a 'data link' layer protocol in ISO/OSI 7 layer network model?
Score 2

  • A. ARP
  • B. FTP
  • C. UDP
  • D. ICMP

Answer: A

 

NEW QUESTION 79
Which of the following function is provided by 'server guard' patch management service?

  • A. fix vulnerability found in open source software using Alibaba self-developed patch
  • B. release official patches for any exposed vulnerability
  • C. detect any vulnerability before it bursts
  • D. stop hacker's vulnerabilities probing

Answer: C

 

NEW QUESTION 80
Each host connecting to internet will face the potential attacks from internet as follows : ( the numbers of correct answers : 3)

  • A. Trojan planting
  • B. Lack of storage resource
  • C. Vulnerability scanning
  • D. Content Compliance Requirement
  • E. Brute Force password hacking

Answer: A,C,E

 

NEW QUESTION 81
Reliable server daily operation and security management are essential for continuous service running. Which of the following statement is NOT correct regarding to this scenario?

  • A. disable the ports which are not providing service anymore
  • B. set easy to remember password to help administrator quickly login and solve problems
  • C. patch system timely and frequently
  • D. enable build-in OS firewall and configure it properly

Answer: B

 

NEW QUESTION 82
Inside cloud, hypervisor vulnerability could cause the following possible consequences: (the number of correct answers: 3)

  • A. Incorrect client resource usage calculating
  • B. User service become unavailable
  • C. Hacker can access host server directly
  • D. One client host can access another client's data

Answer: B,C,D

 

NEW QUESTION 83
By default, servers in VPC can't communicate with internet. By implementing which of the following products these servers can gain the capability to communicate with internet? (the number of correct answers: 3)

  • A. EIP + NAT Gateway
  • B. Elastic Public IP
  • C. CDN
  • D. EIP + SLB
  • E. DNS service

Answer: A,B,D

 

NEW QUESTION 84
After WAF was purchased, users need to add one DNS record to map their domain name to WAF provided IP. What is the type of that DNS record?

  • A. CNAME Record
  • B. MX Record
  • C. A record
  • D. TXT Record

Answer: A

 

NEW QUESTION 85
Which of the following cloud services are the most common ones when we talk about different types of Cloud service

  • A. IaaS
  • B. DaaS
  • C. SaaS
  • D. PaaS

Answer: A,C,D

 

NEW QUESTION 86
Which of the following options can be considered as Data and Application security risks in IT infrastructure

  • A. Data readiness
  • B. Data access control
  • C. Data encryption
  • D. Data integrity

Answer: B,C,D

 

NEW QUESTION 87
Which of the following shell command can be used to check disk usage in a Linux OS ECS

  • A. Echo
  • B. Df -h
  • C. Ps -e -o
  • D. Free -m

Answer: B

 

NEW QUESTION 88
Which of the following 2 security risks are not included in OWASP published 2017 Top 10 Web Application Security Risks

  • A. Injection
  • B. Unvalidated Redirects and Forwards
  • C. Cross-Site Request Forgery(CSRF)
  • D. Cross-Site Scripting(XSS)

Answer: B,C

 

NEW QUESTION 89
Which of the following statements is true about HTTP protocol?
Score 2

  • A. default service port is 80
  • B. the data transmitted by this protocol is auto-encrypted
  • C. HTTP is a network layer protocol
  • D. HTTP protocol can't be used to transmit file

Answer: A

 

NEW QUESTION 90
Which of the following scenarios are suitable to use CC emergency mode protection? (the number of correct answers: 2)

  • A. Native APPs
  • B. API
  • C. HTML 5 page
  • D. Web page

Answer: C,D

 

NEW QUESTION 91
Using RAM, Alibaba Cloud users can create and manage user accounts and control the operation permissions these user accounts possess for resources under your account. Which of the following descriptions of a RAM usage scenario is NOT correct?

  • A. Temporary authorization management for untrusted client apps
  • B. Prevention of network attacks on enterprises
  • C. Resource operation and authorization management between enterprises
  • D. Enterprise sub-account management and permission assignment

Answer: B

 

NEW QUESTION 92
......

Tested Material Used To ACA-Sec1: https://www.examprepaway.com/Alibaba/braindumps.ACA-Sec1.ete.file.html