AliCloud ACA-Sec1 ACA Cloud Security Associate Online Training
AliCloud ACA-Sec1 Online Training
The questions for ACA-Sec1 were last updated at Dec 25,2024.
- Exam Code: ACA-Sec1
- Exam Name: ACA Cloud Security Associate
- Certification Provider: AliCloud
- Latest update: Dec 25,2024
You are planning on hosting an eCommerce Web server. You are intent on making the server secure against all external attacks possible .
Which of the following would be the best way to test your server for its weaknesses? Choose the best answer.
- A . Ping to the server
- B . Simulate a DDoS attack on that server
- C . Simulate a DoS attack on the server
- D . Check if all the patches and required antivirus software has been loaded o the server
Which of the following statements is true about HTTP protocol? Score 2
- A . HTTP is a network layer protocol
- B . the data transmitted by this protocol is auto-encrypted
- C . default service port is 80
- D . HTTP protocol can’t be used to transmit file
Which of the following items can’t be set in ECS security group configuration? Score 2
- A . OS type
- B . network interface
- C . authorization policy
- D . authorization object
Which of following statement about ‘Server Guard’ Trojan scanning functionality is NOT correct? Score 2
- A . Server Guard Agent will automatically scan your web pages directories and look for any webshell file.
- B . A change to a file in the web pages directories will trigger a scan for that file
- C . you can log on to the Server Guard console to isolate webshell files with one click.
- D . Server Guard will delete any suspicious webshell file immediately My Answer, B. Other file says D
Which of the following statements about VLAN are NOT true? (the number of correct answers: 3) Score 1
- A . users in different VLAN can connect each other directly without pre-configuration
- B . different VLAN means different physical location of switches
- C . VLAN configuration can be done through an TCP/IP router device
- D . VLAN can enhance the network security and data isolation
Reliable server daily operation and security management are essential for continuous service running .
Which of the following statement is NOT correct regarding to this scenario?
- A . set easy to remember password to help administrator quickly login and solve problems
- B . patch system timely and frequently
- C . enable build-in OS firewall and configure it properly
- D . disable the ports which are not providing service anymore
Which of the following HTTP status code does reflect that the requested page does not exist?
- A . 403
- B . 404
- C . 201
- D . 304
Which of the following function is provided by ‘server guard’ patch management service?
- A . fix vulnerability found in open source software using Alibaba self-developed patch
- B . detect any vulnerability before it bursts
- C . release official patches for any exposed vulnerability
- D . stop hacker’s vulnerabilities probing
What are the advantages of anti-DDOS pro comparing to anti-DDOS basics service?
(the number of correct answers: 3)
- A . stronger defending attacks capability
- B . elastic protection bandwidth
- C . no upper limit to the attack traffic need to be handled
- D . can do anti-fraud protection
- E . can protect IDC outside Alibaba Cloud
By default, servers in VPC can’t communicate with internet. By implementing which of the following products these servers can gain the capability to communicate with internet? (the number of correct answers: 3)
- A . Elastic Public IP
- B . CDN
- C . EIP + SLB
- D . EIP + NAT Gateway
- E . DNS service
Latest ACA-Sec1 Dumps Valid Version with 147 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund
