ACP-Sec1無料問題集「Alibaba ACP Cloud Security Professional」

質問 1

After opening the Task Manager in Windows, you can easily see abnormal processes whose names do not comply with English grammar or computer naming conventions or contain random strings. Which of the following processes may be abnormal? (Number of correct answers: 4)

正解：A、B、C、F 解答を投票する

質問 2

Products like ECS and Server Load Balancer it will be automatically protected by Anti-DDoS Basic service

（A）False

（B）True

正解：B 解答を投票する

質問 3

Users can detach the Security Center client on Alibaba Cloud ECS instances, and reinstall it later when necessary.

（A）False

（B）True

正解：B 解答を投票する

質問 4

If an ECS instance needs to be accessed by other applications from internet, a corresponding "port" must be enabled For example, HTTP applications work on port 80, while FTP applications work on port 21 If an administrator configures network security policies for this ECS instance, which of the following policies is the safest?

（A）After buying an ECS instance, the administrator immediately enables the security group firewall on the console and opens only the required service ports for public networks

（B）The administrator wants to build multiple applications on an ECS instance. For easy management, the administrator uses default settings and allows any IP address to access required service ports

（C）After buying an ECS instance, the administrator immediately enables the security group firewall on the console and opens all ports for public networks

（D）After buying an ECS instance, the administrator immediately enables the security group firewall on the console and opens ports 0-1024 for public networks

正解：A 解答を投票する

質問 5

In a public cloud environment Alibaba Cloud is responsible for security of cloud computing infrastructure (such as the IDC environment, physical server O&M, and virtualization layer of cloud products). However, you still need to perform necessary security optimization measures for the Cloud products you purchased Which of the following actions do you think are safe?

（A）For easy management, change the administrator password for the ECS instance to 123456.

（B）To enable colleagues working at home to update data, open public IP addresses for ApsaraDB for RDS instances, and allow all IP addresses to connect to the instances

（C）After buying an ECS instance, enable the security group firewall for the ECS instance through the console, and only allow a management IP address to remotely log on to the ECS instance.

（D）To reduce the communication cost, five administrators of the company use the root account to log on to the ECS instance.

正解：C 解答を投票する

質問 6

A customer built his website on Alibaba Cloud- To defend against Web attacks he activated Alibaba Cloud WAF However, a week later, the customer finds that his website has suffered intrusion. Which of the following actions should he take to ensure that WAF functions correctly and enhance system security?
(Number of correct answers: 4)

（A）Resolve the website domain name to the site s source IP address

（B）Check whether or not the DNS resolution results point to the WAF address

（C）Configure a security group for the ECS instance.

（D）Secure other HTTP services on the ECS instance using WAF

（E）Delete all snapshots and clear the server

（F）Use Security Center to remove Trojans and fix vulnerabilities

正解：B、C、D、F 解答を投票する

質問 7

Alibaba Cloud Security Center provides patch management service, where are the patches published from?

（A）Contributed by netizens from open-source communities

（B）Developed by Alibaba Cloud

（C）Officially published by operating system vendors

（D）Officially published by application vendors

正解：A 解答を投票する

質問 8

More than one CNAME record is generated for the same domain name when Alibaba Cloud Anti-DDoS Premium Service Instance is purchased for load balancing purpose.

（A）False

（B）True

正解：A 解答を投票する

ACP-Sec1 無料問題集「Alibaba ACP Cloud Security Professional」

弊社を連絡する

関連リンク

トップ試験