JavaScript isn't enabled in your browser, so this file can't be opened. Enable and reload.
CASE .NET M10 Exam Prep
Secure Deployment & Maintenance
Sign in to Google
to save your progress.
Learn more
* Indicates required question
Email
*
Your email
Name
*
Your answer
System Administrator should always use the deployment checklist provided by the software vendor instead of creating his/her own checklist.
*
1 point
True
False
Which of the following is not a benefit of Web Application Firewall (WAF)?
*
1 point
WAF secures the existing and productive web applications.
WAF provides cookies protection with encryption and signature methodology.
WAF secures application from SQL Injection and negates parameter tampering by URL encryption.
WAF detects validation issues by in-depth testing of character, character length, the range pf a value, etc.
None of the above
Website root folder should always be installed on the system volume for maximum protection against attacks.
*
1 point
True
False
Every web application should be ensured to use the default non-anonymous internet user account.
*
1 point
True
False
Which of the following should you ensure when configuring the authentication settings for your website and virtual directories?
*
1 point
Ensure that you should set anonymous access to only publicly accessible areas of your site.
If multiple authentication options are being configured for your application then check their effect and authentication-precedence thoroughly.
Ensure that credentials are protected using SSL, if basic authentication is selected.
All of the above
None of the above
The trace enabled should be set to __________ .
*
1 point
true
false
The customsError attribute in Web.config file should be set to __________ mode to prevent attackers from using the exception details to perform attacks or manipulation of information in the application.
*
1 point
On
Off
RemoteOnly
Required
The slidingExpiration is set to false to prevent attackers from stealing authentication cookie and gain access to the application.
*
1 point
true
false
In regards to SQL Auditing, which is the default Auditing mode?
*
1 point
Successful and Failed logins
Successful logins
Failed logins
None of the Above.
Which of the following is true in regards to WAF?
*
1 point
It can not protect the Web servers from malicious traffic if the attack occurs at layer 7
WAF does not provide cookie protection with encryption and signature methodology
WAF provided a security layer that protects the web server from the malicious traffic
WAF is a stateless firewall
None of the Above
Other:
Submit
Page 1 of 1
Clear form
Never submit passwords through Google Forms.
This content is neither created nor endorsed by Google.
Report Abuse
-
Terms of Service
-
Privacy Policy
Forms
