[问题3]若Web系统频繁遭受DDos和其他网络攻击,造成服务中断,数据泄露。图5-2为web服务器日志片段,该攻击为(10), 针对该攻击行为,可而署(11)设备进行防护:针对DDoS (分布式拒绝服务)攻击,可采用(12)、(13)措施,保障Web系统正常对外提供服务。
(10) 备选答案:A. 跨站脚本攻击B. SQL注入攻击C. 远程命令执行D. DDOS攻击 (11) 备选答案:A.漏洞扫描系统B.堡垒机C. Web应用防火墙D.入侵检测系统(12)-(13) 备选答案: A.部署流量清洗设备B.购买流量清洗服务C.服务器增加内存 D.服务器增加磁盘E.部署入侵检测系统 F.安装杀毒软件
正确答案及解析
正确答案
解析
(10)B (11) C (12)A (13)B 【 12~13可交换位置】
从表中的数据可以看出,在一段较长的时间(40分钟)之内,频频发起对两个目标地址的携带SQL指令的访问,因此不是ddos攻击,而是SQL注入。对应的设置waf解决。
你可能感兴趣的试题
Advancements in ( )have contributed to the growth of the automotive industry through the creation and evolution of self-driving vehicles.
-
- A.Artificial Intelligence
- B.Cloud Computing
- C.Internet of Things
- D.Big Data
- 查看答案
In project human resource management , ( )is not a source of power for the project manager.
-
- A.referent power
- B.expert power
- C.reward power
- D.audit power
- 查看答案
At the project establishment stage , the feasibility study mainly includes techinical feasibility analysis , ( ), operation environment feasibility analysis and other aspects of feasibility analysis.
-
- A.detail feasibility analysis
- B.opportunity analysis
- C.economic feasibility analysis
- D.risk analysis
- 查看答案
( )is a grid that shows the project resources assigned to each work package.
-
- A.Stakeholder engagement assessment matrix
- B.Requirements traceability matrix
- C.Probability and impact matrix
- D.Responsibility assignment matrix
- 查看答案
Xinhua News Agency reported in January 2022,Chian will further promote the developmet of a digital economy during the 14th Five-Year Plan eriod(2021-2025). The plan also emphasized industrial ( )transformation.
-
- A.digital
- B.networking
- C.intelligentize
- D.informatization
- 查看答案