[Dec 21, 2021] ACP-Sec1 Exam Dumps - Alibaba Practice Test Questions [Q21-Q44]

Share

[Dec 21, 2021] ACP-Sec1 Exam Dumps - Alibaba Practice Test Questions

New Real ACP-Sec1 Exam Dumps Questions


Alibaba ACP-Sec1 Exam Syllabus Topics:

TopicDetails
Topic 1
  • Understanding the positioning, main features, working principles and application scenarios of the above products
Topic 2
  • Characteristics, application scenarios and features of Alibaba Cloud security management-related products
Topic 3
  • Core security products: basic operations and management of Anti-DDoS, Security Center, SSL Certificate, Content Moderation, Key Management Service
Topic 4
  • web SQL injections among other common security risks and taking appropriate measures for protection
Topic 5
  • Discovering DDoS attacks, brute force password cracking attacks
  • Security advantages of their combined solutions
Topic 6
  • Security application solution design, such as correct understanding and handling after receiving alerts from the console, e-mails or text messages
Topic 7
  • Cloud computing-related product (ECS, Server Load Balancer, OSS, RDS, VPC and CDN) content
Topic 8
  • Cloud service-related basic security protocols such as HTTP, FTP, TCP, UDP and ICMP
  • Understanding common security risks of the above products
Topic 9
  • Characteristic, application scenarios, competitive edges and features of Alibaba Cloud Anti-DDos and WAF

 

NEW QUESTION 21
An Alibaba Cloud user buys an ECS instance and deploys Tomcat on it Which of the following is the easiest way for the user to monitor whether port 8080 (used by Tomcat) on this ECS instance is functioning normally or not?

  • A. Use Alibaba Cloud CloudMonitor s site monitor feature to create a new Monitoring Task to monitor the port status.
  • B. Write a script for detection and report the data to CloudMonitor.
  • C. Log on to the ECS instance every hour to check the port using the command line.
  • D. Buy a third-party monitoring tool

Answer: A

 

NEW QUESTION 22
Alibaba Cloud Data Risk Control utilizes Alibaba Group's Big Data computing capabilities and industry-leading, risk decision making engine to address fraud threats in key service processes (such as account log on, online activity, payment) and avoid financial loss Which of the following is NOT an application scenario of Data Risk Control?

  • A. Application installation
  • B. Transaction rating
  • C. Account registration
  • D. Goods payment

Answer: A

 

NEW QUESTION 23
Alibaba Cloud Anti-DDoS Premium can be used only when the origin site IP address is in Alibaba Cloud.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 24
Alibaba Cloud Ant.-DDoS Premium Service is an advanced DDoS protection product It can defend against layer 4 and layer 7 attacks. Which of the following statements about Alibaba Cloud Anti-DDoS Premium Service is FALSE?

  • A. Anti-DDoS Premium Service supports 2 billing modes: Unlimited and Insurance.
  • B. You can adjust the anti-DDoS elastic protection threshold to a higher level at any time, with the service interruption period no longer than 3 minutes
  • C. Anti-DDoS Premium Service provides precise traffic reports and attack details in real time to keep you informed of the current service details on time
  • D. Anti-DDoS Premium Service defends against various DDoS attacks, including but not limited to ICMP flood, UDP flood, TCP flood. SYN flood, and ACK flood attacks

Answer: A

 

NEW QUESTION 25
Alibaba Cloud Security Center is consisted of light-weight Agents and cloud engine to provide functions such as webshell scanning and removal, day vulnerability repair, security baseline inspection, and host access control, to protect the server security. Which of the following processes is NOT included in Security Center Agent?

  • A. All Safe
  • B. AliYunDun
  • C. AliHids
  • D. AliYunDunUpdate

Answer: A

 

NEW QUESTION 26
When using Alibaba Cloud Anti-DDoS Service/WAF in China Mainland, you must finish ICP Filing beforehand.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 27
If you activate Alibaba Cloud Security Center on an ECS Linux instance and change the default SSH port (22) to another port, you will no longer receive SMS or email notification related to brute force password cracking

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 28
When applying for an SSL certificate through Alibaba Cloud's SSL Certificates Service, there is an offline review process which can take 3-5 business days or 5-7 business days depending on the type of certificate you have applied for:

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 29
A customer built his website on Alibaba Cloud- To defend against Web attacks he activated Alibaba Cloud WAF However, a week later, the customer finds that his website has suffered intrusion. Which of the following actions should he take to ensure that WAF functions correctly and enhance system security?
(Number of correct answers: 4)

  • A. Check whether or not the DNS resolution results point to the WAF address
  • B. Configure a security group for the ECS instance.
  • C. Secure other HTTP services on the ECS instance using WAF
  • D. Resolve the website domain name to the site s source IP address
  • E. Use Security Center to remove Trojans and fix vulnerabilities
  • F. Delete all snapshots and clear the server

Answer: A,B,C,E

 

NEW QUESTION 30
There is a limit on the number of Customer Master Keys (CMKs) that users can create using Key Management Service (KMS), but users can raise this limit by submitting a support ticket to Alibaba Cloud.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 31
Alibaba Cloud Security Center can record source IP addresses that remotely access a server, and shield suspicious IP addresses that frequently connect to the server. During routine O&M. which of the following functions can be used to set the IP address that are commonly used by the system administrator'?

  • A. Security group
  • B. Valid Login IP list
  • C. Webshell detection
  • D. Frequent logon location management

Answer: D

 

NEW QUESTION 32
When the agent of Alibaba Cloud Security Center running on a server, it normally uses less than 1% of the CPU and 10 MB of memory, which can void affecting the server's performance

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 33
Alibaba Cloud CloudMonitor is a service that monitors Alibaba Cloud resources and Internet applications Which of the following functions are currently provided by CloudMonitor? (Number of correct answers: 4)

  • A. Custom firewall
  • B. Site monitoring
  • C. Custom monitoring
  • D. Cloud service monitoring
  • E. Alerting

Answer: B,C,D,E

 

NEW QUESTION 34
Among various types of network attacks, "phishing" is one of the most common attacks. A phishing website looks exactly the same as the real website It asks visitors to login with their accounts and passwords; at the same time, record these privacy information for illegal purpose. Which of the following statements about how phishing websites are spread is FALSE?

  • A. Phishing website links are sent through Facebook. Twitter and other IM(instant Messenger) applications.
  • B. Phishing website links are published in batches through emails forums, blogs, and SNS(Social Network Sites).
  • C. Banks publish phishing website links in prominent positions on their official websites
  • D. Advertisements are pushed to search engines and small and medium websites, attracting users to click the phishing website links.

Answer: C

 

NEW QUESTION 35
After you install the Alibaba Cloud Security center agent on a non with your Alibaba Cloud account*?

  • A. The user name and password
  • B. The installation verification key generated on the console
  • C. Your account ID
  • D. Your AccessKey

Answer: D

 

NEW QUESTION 36
Anti-DDoS is one of the major products of Alibaba Cloud Security service Many websites have suffered DDoS attacks of different types. Therefore, accurate understanding of DDoS attacks is critical to the website security protection. Which of the following statements about DDoS attacks is the MOST accurate?

  • A. DDoS attacks primarily target a database
  • B. The main purpose of a DDoS attack is to prevent the target server from providing normal services
  • C. The purpose of a DDoS attack is to steal confidential information
  • D. A DDoS attack cracks the servers logon password by means of numerous attempts

Answer: B

 

NEW QUESTION 37
Alibaba Cloud ECS instances are common targets of hacker attacks. There are many types of attacks against ECS instances. Which of the following attacks specifically target the operating system of an ECS instance?
(Number of correct answers: 3)

  • A. Brute force RDP password cracking
  • B. Brute force SSH password cracking
  • C. Trojan or Webshell installation
  • D. SQL injection

Answer: A,B,C

 

NEW QUESTION 38
Which of the following services can be protected by the Alibaba Cloud Security Center's anti-brute force password cracking function? (Number of answers 3)

  • A. Web service (HTTP)
  • B. MySQL database service SQLServer database service
  • C. File transfer service (FTP)
  • D. Windows remote desktop service (RDP) Linux remote control service (SSH)

Answer: A,B,C

 

NEW QUESTION 39
More than one CNAME record is generated for the same domain name when Alibaba Cloud Anti-DDoS Premium Service Instance is purchased for load balancing purpose.

  • A. True
  • B. False

Answer: B

 

NEW QUESTION 40
Before using the HTTPS protection feature in Alibaba Cloud WAF, you must upload the server certificate and private key beforehand.

  • A. True
  • B. False

Answer: A

 

NEW QUESTION 41
Content Moderation Service is an API-based service Like many API services, it employs throttling to make sure that the service cannot be overwhelmed by a large number of simultaneous requests. What is the maximum number of requests per minute you can make against the Content Moderation API?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: C

 

NEW QUESTION 42
Alibaba Cloud Security's Data R.sk Control can effectively resolve junk registration, database hacking, and other service risk identification problems To use this service. you need to first collect service data. Which of the following methods can be used to collect information off Web application systems?

  • A. SDK
  • B. JavaScript, SDK
  • C. JavaScript
  • D. HTML5

Answer: C

 

NEW QUESTION 43
User A is the system administrator of a company, who often takes business trips to Shanghai Each time when he remotely logs on to the Shanghai an alert is reported, prompting "Someone is remotely logging on to the server Please pay attention to your server security" Which of the following methods can be used to quickly and automatically resolve this issue?

  • A. Ask the company leaders for help
  • B. Log on to the Alibaba Cloud Security Center, and add a frequent logon location to the configuration item of Security Center.
  • C. Call a friend, who is a famous hacker in the industry, for help.
  • D. Open a ticket immediately to consult Alibaba Cloud engineers

Answer: B

 

NEW QUESTION 44
......

Pass Your ACP-Sec1 Exam Easily with Accurate PDF Questions: https://www.dumpsactual.com/ACP-Sec1-actualtests-dumps.html