🏷️ LIMITED TIME OFFER: GET 20% OFF GRADE+ YEARLY SUBSCRIPTION →
Log in
Computer Science
3
answers
1
watching
275
views

A company created an external application for its customers. A security researcher now reports that the application has a serious LDAP injection vulnerability that could be leveraged to bypass authentication and authorization. Which of the following actions would BEST resolve the issue? (Choose two.) :

A. Deploy a WAF.

B. Use containers.

C. Conduct input sanitization.

D. Patch the OS

E. Deploy a reverse proxy

F. Deploy a SIEM. .

G Deploy an IDS. 

Watch
3
answers
1
watching
275
views

For unlimited access to Homework Help, a Homework+ subscription is required.

Avatar image
Liked by aminul2005 and 1 others

Unlock all answers

Get 1 free homework help answer.
Already have an account? Log in
Share
Avatar image
Read by 4 people
Already have an account? Log in
Share
Avatar image
Read by 4 people
Already have an account? Log in
Share

Related questions

A high-severity vulnerability was found on a web application and introduced to the enterprise. The vulnerability could allow an unauthorized user to utilize an open-source library to view privileged user information. The enterprise is unwilling to accept the risk, but the developers cannot fix the issue right away.

Which of the following should be implemented to reduce the risk to an acceptable level until the issue can be fixed?

Options: A Scan the code with a static code analyzer, change privileged user passwords, and provide security training.
B Change privileged usernames, review the OS logs, and deploy hardware tokens.
C Implement MFA, review the application logs, and deploy a WAF.
D Deploy a VPN, configure an official open-source library repository, and perform a full application review for vulnerabilities.

A company is preparing to deploy a global service.

Which of the following must the company do to ensure GDPR compliance? (Choose two.)

Options: A Inform users regarding what data is stored.
B Provide opt-in/out for marketing messages.
C Provide data deletion capabilities.
D Provide optional data encryption.
E Grant data access to third parties.
F Provide alternative authentication techniques.

A company is repeatedly being breached by hackers who valid credentials. The company's Chief information Security Officer (CISO) has installed multiple controls for authenticating users, including biometric and token-based factors. Each successive control has increased overhead and complexity but has failed to stop further breaches. An external consultant is evaluating the process currently in place to support the authentication controls. Which of the following recommendation would MOST likely reduce the risk of unauthorized access?

A Implement strict three-factor authentication.

B Implement least privilege policies

C Switch to one-time or all user authorizations.

D Strengthen identify-proofing procedures

Related Documents

NATS 1505 Lecture Notes - Lecture 8: Access Control, Race Condition, Malware
byzantiumcat166
CSCI 4541 Lecture 5: Chapter 16: Cloud Security (continued) & Chapter 17: Transport-Level Security
yellowhorse239
CSCI 4531 Lecture 1: Intro to Computer Security
yellowhorse239

Weekly leaderboard

Home
Homework Help 3,900,000
Computer Science 2,000
Start filling in the gaps now
Log in