
Excellent ACP-Sec1 PDF Dumps With 100% Free4Torrent Exam Passing Guaranted [Oct-2021]
100% Pass Your ACP-Sec1 ACP Cloud Security Professional at First Attempt with Free4Torrent
NEW QUESTION 45
The protection rules of Alibaba Cloud WAF are updated in real time after a user makes changes in WAF configuration page.
- A. True
- B. False
Answer: A
NEW QUESTION 46
To improve system security and protect the system from DDoS attacks, you can use Alibaba Cloud Anti-DDoS Premium Service. Which of the following products can be used together with Alibaba Cloud Anti-DDoS Service to improve the system access capabilities? (Number of correct answers 3)
- A. WAF
- B. CDN
- C. Server Load Balancer
- D. RDS
Answer: A,B,C
NEW QUESTION 47
Among various types of network attacks, "phishing" is one of the most common attacks. A phishing website looks exactly the same as the real website It asks visitors to login with their accounts and passwords; at the same time, record these privacy information for illegal purpose. Which of the following statements about how phishing websites are spread is FALSE?
- A. Phishing website links are published in batches through emails forums, blogs, and SNS(Social Network Sites).
- B. Phishing website links are sent through Facebook. Twitter and other IM(instant Messenger) applications.
- C. Advertisements are pushed to search engines and small and medium websites, attracting users to click the phishing website links.
- D. Banks publish phishing website links in prominent positions on their official websites
Answer: D
NEW QUESTION 48
Alibaba Cloud Security Center is consisted of light-weight Agents and cloud engine to provide functions such as webshell scanning and removal, day vulnerability repair, security baseline inspection, and host access control, to protect the server security. Which of the following processes is NOT included in Security Center Agent?
- A. AliYunDun
- B. AliHids
- C. All Safe
- D. AliYunDunUpdate
Answer: C
NEW QUESTION 49
baba Cloud security service provides in-depth defense Which of the following services is dedicated for host security?
- A. WAF
- B. Security Center
- C. Data Risk Control
- D. Anti-DDoS pro Service
Answer: D
NEW QUESTION 50
After you activate the button Data Risk Control feature in Alibaba Cloud WAF. Which of the following risk control verification modes m displayed if you directly request for a risk control protection URL?
- A. QR code verification
- B. Slider verification
- C. Digit verification
- D. Image verification
Answer: B
NEW QUESTION 51
If you install Alibaba Cloud Security Center client on a non-Alibaba Cloud server, which of the following statements allows you to check the server-related reports on the Security Center?
- A. Security Center does not support non-Alibaba Cloud servers
- B. You need to manually install the agent on the external server, and use a verification key to associate it with your account
- C. Associate the Security Center client with your Alibaba Cloud official website account.
- D. You cannot check the reports on the Alibaba Cloud console.
Answer: B
NEW QUESTION 52
You are importing your own key material in to Key Management Service (KMS). Which of the following is the correct sequence of steps to follow?
- A. 1 Create an external key
2 Get the "import key material" parameters
3 Import the key material - B. 1 Get the "import key material" parameter
2 Create an external key
3. Import the key material - C. 1 Import the key material
2 Get the "import key material" parameters
3 Create an external key - D. 1 Create an external key
2 Import the key material
3 Get the "import key material" parameters
Answer: A
NEW QUESTION 53
In a public cloud environment Alibaba Cloud is responsible for security of cloud computing infrastructure (such as the IDC environment, physical server O&M, and virtualization layer of cloud products). However, you still need to perform necessary security optimization measures for the Cloud products you purchased Which of the following actions do you think are safe?
- A. To reduce the communication cost, five administrators of the company use the root account to log on to the ECS instance.
- B. To enable colleagues working at home to update data, open public IP addresses for ApsaraDB for RDS instances, and allow all IP addresses to connect to the instances
- C. After buying an ECS instance, enable the security group firewall for the ECS instance through the console, and only allow a management IP address to remotely log on to the ECS instance.
- D. For easy management, change the administrator password for the ECS instance to 123456.
Answer: C
NEW QUESTION 54
Users can detach the Security Center client on Alibaba Cloud ECS instances, and reinstall it later when necessary.
- A. True
- B. False
Answer: A
NEW QUESTION 55
After you install the Alibaba Cloud Security center agent on a non with your Alibaba Cloud account*?
- A. The installation verification key generated on the console
- B. Your account ID
- C. The user name and password
- D. Your AccessKey
Answer: D
NEW QUESTION 56
User A is the system administrator of a company, who often takes business trips to Shanghai Each time when he remotely logs on to the Shanghai an alert is reported, prompting "Someone is remotely logging on to the server Please pay attention to your server security" Which of the following methods can be used to quickly and automatically resolve this issue?
- A. Call a friend, who is a famous hacker in the industry, for help.
- B. Open a ticket immediately to consult Alibaba Cloud engineers
- C. Ask the company leaders for help
- D. Log on to the Alibaba Cloud Security Center, and add a frequent logon location to the configuration item of Security Center.
Answer: D
NEW QUESTION 57
More and more blackmail attacks (using hacking tools or ransomware) have been detected among recent network security events, causing ever greater damage and financial loss. Which of the following measures can help Alibaba Cloud customers reduce risks in blackmail attacks? (Number of correct answers 3)
- A. Enable images and snapshots for ECS instances, back up data every day, and keep more than three redundant copies
- B. Use strong passwords with more than 15 characters for the accounts of all types of cloud services
- C. Deploy different service applications on servers with the same security level and security domain, and ensure unified policy management and defense
- D. When remotely operating and maintaining an ECS instance use the superuser account for login at all times
- E. If remote O&M is required use IpsecVPN or SSL VPN remote solutions
Answer: A,B,E
NEW QUESTION 58
Which of the following methods can be used to download the metric data of Alibaba Cloud CloudMonitor?
- A. You can only view the reports, but cannot download them.
- B. Download the data through Open APIs
- C. You can download the data through both the console and Open APIs
- D. Download the data from the console
Answer: C
NEW QUESTION 59
Alibaba Cloud Anti-DDoS Premium can be used only when the origin site IP address is in Alibaba Cloud.
- A. False
- B. True
Answer: A
NEW QUESTION 60
A large Internet company has services running on physical machines, as well as self-built monitoring and alert system Recently, the company wants to migrate part of the services to Alibaba Cloud and use CloudMonitor to monitor ECS instances and set alerts What should the company do to quickly interconnect CloudMonitor alerts with the self-built alert system, and handle both alerts (alerts about the physical machines and ECS instances) in self-built alert system?
- A. Use the Event Monitoring function provided by CloudMonitor to consume alerts sent from self-built alert system
- B. Call the API for obtaining messages and alerts that are sent to self-build alert system
- C. This cannot be implemented.
- D. Call the API for querying data provided by CloudMonitor. regularly query data, and write a code to check whether indicators are abnormal
Answer: D
NEW QUESTION 61
Alibaba Cloud's CloudMonitor can not only monitor ECS instances in a secure and efficient way, but also monitor HTTP sites of clients' servers in data centers However, in the latter case, Alibaba Cloud does not provide monitor agent so users need to develop their own scripts to collect data
- A. False
- B. True
Answer: A
NEW QUESTION 62
Alibaba Cloud ECS instances are common targets of hacker attacks. There are many types of attacks against ECS instances. Which of the following attacks specifically target the operating system of an ECS instance?
(Number of correct answers: 3)
- A. Brute force RDP password cracking
- B. Trojan or Webshell installation
- C. Brute force SSH password cracking
- D. SQL injection
Answer: A,B,C
NEW QUESTION 63
After opening the Task Manager in Windows, you can easily see abnormal processes whose names do not comply with English grammar or computer naming conventions or contain random strings. Which of the following processes may be abnormal? (Number of correct answers: 4)
- A. svchost exe
- B. Ikdhpec exe
- C. RegSrvc exe
- D. eeosec exe
- E. nihao exe
- F. 466363.exe
Answer: B,D,E,F
NEW QUESTION 64
You applied for an SSL certificate through Alibaba Cloud's SSL Certificates Service During the application, you selected "Manual" at the "CSR "" step. You now want to install your certificate on a server running Apache What must you do?
- A. SSL Certificates Service doesn't support the type of certificates needed by Apache. They cannot be used together
- B. You must revoke your certificate and re-apply, this time choosing "Automatic" at the "CSR Generation" step. Otherwise, the SSL certificate cannot be downloaded
- C. You can use the "generate pfx file" function built into the SSL Certificates Service to manually generate and download the pfx file needed by Apache
- D. You can download a crt file of type "Other" from the SSL Certificates Service console, then use openssl to convert this file to pfx format for use with Apache
Answer: C
NEW QUESTION 65
More than one CNAME record is generated for the same domain name when Alibaba Cloud Anti-DDoS Premium Service Instance is purchased for load balancing purpose.
- A. False
- B. True
Answer: A
NEW QUESTION 66
Alibaba Cloud WAF cannot protect against large traffic DDoS attacks which can be solved by Alibaba Cloud Ant-DDoS Service.
- A. True
- B. False
Answer: A
NEW QUESTION 67
Products like ECS and Server Load Balancer it will be automatically protected by Anti-DDoS Basic service
- A. True
- B. False
Answer: A
NEW QUESTION 68
Data transfer between Internet devices requires specific specifications, which are called "protocols" Among those, the invention of a certain protocol played a decisive role in the creation of the Internet. By using those protocols, tens of thousands of computers can be connected and communicate with each other What is the following protocol is not defined in OSI 7 layer model?
- A. SOAP
- B. HTTP
- C. UDP
- D. TCP
Answer: A
NEW QUESTION 69
......
Trend for ACP-Sec1 pdf dumps before actual exam: https://www.free4torrent.com/ACP-Sec1-braindumps-torrent.html