A security administrator is implementing a new WAF solution and has placed some of the web servers behind the WAF, with the WAF set to audit mode. When reviewing the audit logs of external requests and posts to the web servers, the administrator finds the following entry:

Based on this data, which of the following actions should the administrator take?

• A.Alert the web server administrators to a misconfiguration
• B.Create a blocking policy based on the parameter values
• C.Change the parameter name 'Account_Name' identified in the log.
• D.Create an alert to generate emails for abnormally high activity.

Comment: *

Name: *

Email: *

Verification: *

A security administrator needs to address the following audit recommendations for a public-facing SFTP server:
Users should be restricted to upload and download files to their own home directories only.
Users should not be allowed to use interactive shell login.
Which of the following configuration parameters should be implemented? (Choose two.).

• A.PermitTunnel
• B.PermitTTY
• C.ChrootDirectory
• D.AllowTcpForwarding
• E.IgnoreRhosts

Comment: *

Name: *

Email: *

Verification: *

When systems, hardware, or software are not supported by the original vendor, it is a vulnerability known as:

• A.system sprawl
• B.end-of-life systems
• C.resource exhaustion
• D.a default configuration

Comment: *

Name: *

Email: *

Verification: *

A network administrator wants to implement a method of securing internal routing. Which of the following
should the administrator implement?

• A.DMZ
• B.PAT
• C.VPN
• D.NAT

Comment: *

Name: *

Email: *

Verification: *

A news and weather toolbar was accidently installed into a web browser. The toolbar tracks users online activities and sends them to a central logging server. Which of the following attacks took place?

• A.Malicious add-on
• B.Remote code execution
• C.Session hijacking
• D.Flash cookies
• E.Man-in-the-browser

Comment: *

Name: *

Email: *

Verification: *