Multiple Choice
After significant vulnerabilities and misconfigurations were found in numerous production web applications, a security manager identified the need to implement better development controls. Which of the following controls should be verified? (Choose two.)
A) Input validation routines are enforced on the server side.
B) Operating systems do not permit null sessions.
C) Systems administrators receive application security training.
D) VPN connections are terminated after a defined period of time.
E) Error-handling logic fails securely.
F) OCSP calls are handled effectively.
Correct Answer:
Verified
Correct Answer:
Verified
Q371: An organization is currently working with a
Q372: Legal authorities notify a company that its
Q373: Joe, a penetration tester, is assessing the
Q374: A security analyst is troubleshooting a scenario
Q375: A project manager is working with a
Q377: An enterprise with global sites processes and
Q378: An architect was recently hired by a
Q379: When implementing a penetration testing program, the
Q380: A security administrator was informed that a
Q381: A developer is reviewing the following transaction