Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Acquia Exam Acquia-Certified-Site-Builder-D8 Topic 4 Question 72 Discussion

Actual exam question for Acquia's Acquia-Certified-Site-Builder-D8 exam
Question #: 72
Topic #: 4
[All Acquia-Certified-Site-Builder-D8 Questions]

Your Drupal site contains a contact form for anonymous users, with the following fields: subject (text plain), name (text plain), email (Email), message (text long), attachment (file)

All fields are without any restrictions and none is mandatory to send the form

What is the potential security threat with this form1?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Kristin at Aug 06, 2024, 12:33 AM

Limited Time Offer

25%

Off

Get Premium Acquia-Certified-Site-Builder-D8 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Lashandra
10 months ago
Yes, Justine, option D could also be exploited for DDoS attacks.
upvoted 0 times
...
Mammie
10 months ago
B makes the most sense to me. Anonymous users shouldn't have access to forms at all. It's just asking for trouble. Keep that stuff locked down tight, I say.
upvoted 0 times
...
Justine
10 months ago
But what about option D? Could that also be a security concern?
upvoted 0 times
...
Kathrine
10 months ago
Haha, this question is like a bad joke. Anonymous users with a file upload field? That's like leaving the front door wide open and saying 'come on in, hackers!'
upvoted 0 times
Malcolm
9 months ago
B) Anonymous users should not have access to forms.
upvoted 0 times
...
Jordan
9 months ago
C) Anonymous users can upload corrupted or virus-infected files to your server
upvoted 0 times
...
Izetta
9 months ago
A) There are no issues with this form
upvoted 0 times
...
Bobbye
9 months ago
D) Putting a very long text into the message field, may timeout the form submit and open up options for DDoS attacks
upvoted 0 times
...
Judy
10 months ago
B) Anonymous users should not have access to forms.
upvoted 0 times
...
Asuncion
10 months ago
C) Anonymous users can upload corrupted or virus-infected files to your server
upvoted 0 times
...
Quiana
10 months ago
A) There are no issues with this form
upvoted 0 times
...
...
Elise
10 months ago
I agree with Lashandra, allowing anonymous users to upload files can be risky.
upvoted 0 times
...
Lashandra
10 months ago
I think option C is the potential security threat.
upvoted 0 times
...
Oren
10 months ago
D, all the way! A long message field? That's a disaster waiting to happen. Timeout the form and open up the site to DDoS? Yikes, no thank you!
upvoted 0 times
Marta
9 months ago
B) Anonymous users should not have access to forms.
upvoted 0 times
...
Franklyn
9 months ago
C) Anonymous users can upload corrupted or virus-infected files to your server
upvoted 0 times
...
Lavera
10 months ago
D) Putting a very long text into the message field, may timeout the form submit and open up options for DDoS attacks
upvoted 0 times
...
Sherron
10 months ago
D, all the way! A long message field? That's a disaster waiting to happen.
upvoted 0 times
...
Lavera
10 months ago
C) Anonymous users can upload corrupted or virus-infected files to your server
upvoted 0 times
...
...
Shizue
11 months ago
Hmm, I don't know about that. A seems pretty reasonable to me. As long as the fields are just plain text, what could go wrong, right? Oh, wait, you said 'attachment'? Nevermind, C is the clear choice here.
upvoted 0 times
...
Viola
11 months ago
Whoa, that's a tricky one! I'd say C is the way to go - letting anonymous users upload files? That's just asking for trouble. Hackers could have a field day with that one.
upvoted 0 times
Buddy
10 months ago
A) There are no issues with this form
upvoted 0 times
...
Halina
10 months ago
That's a good point, allowing anonymous users to upload files can definitely pose a security risk.
upvoted 0 times
...
Audry
10 months ago
B) Anonymous users should not have access to forms.
upvoted 0 times
...
Jeannine
10 months ago
C) Anonymous users can upload corrupted or virus-infected files to your server
upvoted 0 times
...
...

Save Cancel