Tag: science & technology

Questions Related to science & technology

A web user is able to see the exception stack traces on the web page. These kind of sites are under attackers threat due to:
general knowledge science & technology

  1. Weak Security Configuration

  2. Cross Site Request Forgery

  3. Weak Protection of Transportation Layer

  4. Cross Site Scripting

Show answer
Correct Option: A

The app server admin console is automatically installed and not removed. Default accounts aren’t changed. Attacker derives the standard admin pages are on your server, logs in with default passwords, and start playing with the website. This is the kind of Web security risk :
general knowledge science & technology

  1. Cross Site Request Forgery

  2. Insecure Cryptographic Storage

  3. Security Misconfiguration

  4. Unvalidated Redirects and Forwards

Show answer
Correct Option: C

Passwords are hashed with a strong standard algorithm and an appropriate salt is used. Using such a mechanism, we are introducing a security to avoid :
general knowledge science & technology

  1. Failure to Restrict URL Access

  2. Unvalidated Redirects and Forwards

  3. Cross Site Request Forgery

  4. Insecure Cryptographic Storage

Show answer
Correct Option: D

A backup tape is made of encrypted health records, but the encryption key is on the same backup. This scenario comes under the risk of :
general knowledge science & technology

  1. Insecure Cryptographic Storage

  2. Failure to Restrict URL Access

  3. Insufficient Transport Layer Protection

  4. Unvalidated Redirects and Forwards

Show answer
Correct Option: A

Attacker, who is an authorized system user, simply changes the URL to a privileged unprotected page and gets the access of it. This happened due to :
general knowledge science & technology

  1. Failure to Restrict URL Access

  2. Cross Site Scripting

  3. Broken Authentication and Session Management

  4. Insufficient Transport Layer Protection

Show answer
Correct Option: A

The enforcement mechanism should deny all access by default, requiring explicit grants to specific users and roles for access to every page. This is done to prevent from :
general knowledge science & technology

  1. Insufficient Transport Layer Protection

  2. Unvalidated Redirects and Forwards

  3. Failure to Restrict URL Access

  4. Injection

Show answer
Correct Option: C

A site simply doesn’t use SSL for all pages that require authentication. and observes an authenticated victim’s session cookie. Attacker then replays this cookie and takes over the user’s session. To prevent this kind of attacks, which of the following can be an effective methodogy:
general knowledge science & technology

  1. Require SSL for all sensitive pages. Non-SSL requests to these pages should be redirected to the SSL page

  2. A strong application architecture that provides good separation and security between components

  3. Use of Whitelist or Parameterized API

  4. All of the Above

Show answer
Correct Option: A

It is recommended that any request parameter by which destination page is to be derived be a mapping value, rather than the actual URL or portion of the URL. This can prevent from:
general knowledge science & technology

  1. Injection

  2. Cross Site Request Forgery

  3. Unvalidated Redirects and Forwards

  4. Failure to Restrict URL Access

Show answer
Correct Option: C

Which is the most active volcanic body in the solar system?
general knowledge science & technology

  1. Earth

  2. Venus

  3. Io

  4. Sun

Show answer
Correct Option: C

Rhinology
general knowledge science & technology

  1. Study of nose

  2. Study of Rain

  3. Study of Rhinos

  4. Art of shading

Show answer
Correct Option: A