New Year Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: cramtick70

ACA-Sec1 ACA Cloud Security Associate Questions and Answers

Questions 4

In Linux OS, if access control to a file is shown as '-rwxrw-r--' in shell command, which of the

following statements are true?

Score 2

Options:

A.

This file is a text file

B.

The access privilege of this user group is read only

C.

The owner of this file has read/write/execution privilege to this file

D.

Other users (outside of this user group) can execute this file

Buy Now
Questions 5

In order to stop the service provided through a particular port in Windows OS, which

of the following methods can be used to achieve this objective? (the number of correct

answers: 3)

Options:

A.

adjust firewall rule

B.

adjust local security policy

C.

update OS patch

D.

stop the service itself

E.

stop all guest role access

Buy Now
Questions 6

Which of the following Keys in HTTP heads are related to cache control? (the number of correct answers: 3)

Options:

A.

Cache-Control

B.

Date

C.

Age

D.

Expires

E.

Host

Buy Now
Questions 7

A DoS attack that sends a flood of synchronization (SYN) requests and never sends the final

acknowledgement (ACK) is typically known as which of the following?

Options:

A.

Smurf

B.

Ping Flood

C.

Fraggle

D.

SYN flood

Buy Now
Questions 8

If user is using anti-DDOS Pro service, but the original server has rule to limit access

to the client IPs, which of the following actions is the most proper one to take?

Options:

A.

enable CDN and change anti-DDOS pro IP to CDN address

B.

add anti-DDOS pro IP into customer firewall white list

C.

disable original server firewall

D.

enable SLB for original server

Buy Now
Questions 9

Anti-DDOS basic is provided by Alibaba Cloud for free. Which of the following statements

about this service are NOT true? (the number of correct answers: 2)

Score 1

Options:

A.

basic anti-DDOS service can detect attack traffic and migrate them automatically

B.

basic anti-DDOS service can protect any server connect to internet

C.

no protection upper limit to the rate of attack traffic

D.

CC attack protection need to be turned on manually

Buy Now
Questions 10

Which of the following methods can't be used to prevent SQL injection attack?

Options:

A.

Strict input check

B.

Use secured function call

C.

SQL precompiling and variable binding

D.

Warning message for abnormal input

Buy Now
Questions 11

Which of following statements is NOT true about anti-DDOS basics and anti-DDOS Pro?

Options:

A.

both can defend DDOS attack

B.

anti-DDOS pro is free to charge

C.

anti-DDOS pro has more capabilities to defend against DDOS attacks

D.

anti-DDOS pro can protect both inside and outside Alibaba Cloud servers

Buy Now
Questions 12

Which web server is default one in Windows OS?

Options:

A.

HTTPD

B.

IIS

C.

Web Daemon

D.

Apache

Buy Now
Questions 13

Alibaba Cloud offers different security protection plans to different tenant accounts. Which of the

following is NOT a security plan offered by Alibaba Cloud?

Options:

A.

Password-free login

B.

Two-factor authentication

C.

Phone number binding

D.

Phone or email verification for password resetting

Buy Now
Questions 14

Which of the following statements about 'webshell' detection feature of WAF is NOT true?

Options:

A.

It will totally block any file to be able to upload to the web server

B.

cache will be enabled only after you turn on the protection switch

C.

there is a switch need to be turned on first

D.

If you changed some page content, you can use 'cache update' button to manually update the cache

Buy Now
Questions 15

Which of the following statements is NOT true about web application security protection best practices?

Options:

A.

enforce security management to any public service

B.

keep installing official released patches will be good enough

C.

keep monitoring system processes , performance and status

D.

always scan input by user through web application

Buy Now
Questions 16

Which of the following options could NOT be the reason that causes website

tampering

Options:

A.

Share password between different users

B.

Botnet attack

C.

system vulnerability is not fixed in time

D.

Wrong security configuration

Buy Now
Questions 17

Which of the following scenarios can be considered as business fraud? (the number of

correct answers: 2)

Options:

A.

massive accounts registration for new user benefits gain

B.

data leak because of data transmission with plain text

C.

post massive comments with bots to some e-commerce website

D.

page content including some porn pictures

Buy Now
Questions 18

Security risk may caused by 'Cloud platform', 'ISV' or 'End user', which of the following options

are the possible risks may caused by Cloud Platform?

Options:

A.

Software development cycle is not formalized

B.

Security system overall solutions are not complete

C.

Administration tools on Cloud Platform may have some flaws

D.

Cloud platform console and API may lack of security hardenning

Buy Now
Questions 19

Inside cloud, hypervisor vulnerability could cause the following possible consequences: (the

number of correct answers: 3)

Options:

A.

One client host can access another client's data

B.

User service become unavailable

C.

Hacker can access host server directly

D.

Incorrect client resource usage calculating

Buy Now
Questions 20

By default, servers in VPC can't communicate with internet. By implementing which of the

following products these servers can gain the capability to communicate with internet? (the

number of correct answers: 3)

Options:

A.

Elastic Public IP

B.

CDN

C.

EIP + SLB

D.

EIP + NAT Gateway

E.

DNS service

Buy Now
Questions 21

Which of the following statements is NOT true about daily operation on server account

andpassword maintenance?

Options:

A.

change'Administrator' to some other name

B.

with'Server Guard protection In Allbaba Cloud,you can set password to some easy to

remember words.

C.

except for some necessary accounts for system manogement,.dlsoble or delete other

seldomly used accounts

D.

always set a complexed passwcwd using combination of numbers,letters and other

characters

Buy Now
Questions 22

Which of the following statements is TRUE about Anti-DDOS basics?

Options:

A.

it can only protect servers outside of Alibaba Cloud

B.

it is free to charge

C.

need to turn on manually

D.

There is no service limitation for peak traffic

Buy Now
Exam Code: ACA-Sec1
Exam Name: ACA Cloud Security Associate
Last Update: Dec 25, 2024
Questions: 147
ACA-Sec1 pdf

ACA-Sec1 PDF

$25.5  $84.99
ACA-Sec1 Engine

ACA-Sec1 Testing Engine

$30  $99.99
ACA-Sec1 PDF + Engine

ACA-Sec1 PDF + Testing Engine

$40.5  $134.99