Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Adobe AD0-E704 Exam - Topic 6 Question 54 Discussion

Magento uses the HTTPOnly flag when setting cookies for security reasons. There is also a system configuration setting available in the Cookie Settings to turn it on and off. What is the purpose of this flag?
C) To prevent Cross Site Tracing (XST) attacks
A) To prevent cookies from being intercepted via a CSRF attack
B) To prevent cookies from being accessible via JavaScript
D) To prevent cookies from being delivered over HTTPS

Adobe AD0-E704 Exam - Topic 6 Question 54 Discussion

Actual exam question for Adobe's AD0-E704 exam
Question #: 54
Topic #: 6
[All AD0-E704 Questions]

Magento uses the HTTPOnly flag when setting cookies for security reasons. There is also a system configuration setting available in the Cookie Settings to turn it on and off. What is the purpose of this flag?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Norah at Dec 08, 2024, 12:37 PM

Limited Time Offer

25%

Off

Get Premium AD0-E704 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Yvette
7 months ago
Surprised this isn't more common knowledge!
upvoted 0 times
...
Viola
7 months ago
No way, it’s definitely not about HTTPS delivery!
upvoted 0 times
...
Sharen
7 months ago
Wait, I thought it was for CSRF attacks?
upvoted 0 times
...
Rueben
7 months ago
Totally agree, B is the right answer.
upvoted 0 times
...
Della
7 months ago
It's to stop JavaScript from accessing cookies!
upvoted 0 times
...
Aileen
8 months ago
I vaguely recall something about Cross Site Tracing, but I’m not confident it’s related to the HTTPOnly flag. I might need to double-check that.
upvoted 0 times
...
Shaun
8 months ago
I practiced a similar question last week, and I think the purpose of the HTTPOnly flag is to enhance cookie security by restricting access from JavaScript. That makes me think B is correct.
upvoted 0 times
...
Brock
8 months ago
I’m not entirely sure, but I feel like the HTTPOnly flag is related to preventing CSRF attacks. I might be mixing it up with something else though.
upvoted 0 times
...
Ashton
8 months ago
I remember studying about the HTTPOnly flag, and I think it’s mainly to stop JavaScript from accessing cookies. So, I’m leaning towards option B.
upvoted 0 times
...
Ronna
8 months ago
Okay, I remember learning about this in class. The HTTPOnly flag is to prevent Cross Site Tracing (XST) attacks, so I'll select option C.
upvoted 0 times
...
Kristel
8 months ago
The HTTPOnly flag is used to prevent cookies from being intercepted via a CSRF attack, so I'll choose option A.
upvoted 0 times
...
Lanie
8 months ago
Hmm, I'm a bit unsure about this one. I'll need to think it through carefully before selecting an answer.
upvoted 0 times
...
Miesha
8 months ago
I think the purpose of the HTTPOnly flag is to prevent cookies from being accessible via JavaScript, so I'll go with option B.
upvoted 0 times
...
Patria
1 year ago
B) To prevent cookies from being accessible via JavaScript - Bingo! HTTPOnly is the cookie security superhero, protecting our cookies from those sneaky JavaScript villains. Now, where's my cape?
upvoted 0 times
Rima
12 months ago
C) To prevent Cross Site Tracing (XST) attacks
upvoted 0 times
...
Yong
12 months ago
B) To prevent cookies from being accessible via JavaScript - Bingo! HTTPOnly is the cookie security superhero, protecting our cookies from those sneaky JavaScript villains. Now, where's my cape?
upvoted 0 times
...
Jenelle
1 year ago
A) To prevent cookies from being intercepted via a CSRF attack
upvoted 0 times
...
...
Maryanne
1 year ago
D) To prevent cookies from being delivered over HTTPS - Oof, that's a big no-no. HTTPOnly is all about keeping the cookies away from JavaScript, not the other way around.
upvoted 0 times
Nelida
1 year ago
D) To prevent cookies from being delivered over HTTPS - Oof, that's a big no-no. HTTPOnly is all about keeping the cookies away from JavaScript, not the other way around.
upvoted 0 times
...
Bernadine
1 year ago
B) To prevent cookies from being accessible via JavaScript
upvoted 0 times
...
Lindsey
1 year ago
A) To prevent cookies from being intercepted via a CSRF attack
upvoted 0 times
...
...
Elden
1 year ago
C) To prevent Cross Site Tracing (XST) attacks - Haha, nice try, but I don't think XST is a real thing. Maybe the person who wrote this question was just trying to be fancy and confuse us.
upvoted 0 times
Margot
1 year ago
C) To prevent Cross Site Tracing (XST) attacks - Haha, nice try, but I don't think XST is a real thing. Maybe the person who wrote this question was just trying to be fancy and confuse us.
upvoted 0 times
...
Tambra
1 year ago
B) To prevent cookies from being accessible via JavaScript
upvoted 0 times
...
Jovita
1 year ago
A) To prevent cookies from being intercepted via a CSRF attack
upvoted 0 times
...
...
Yvonne
1 year ago
A) To prevent cookies from being intercepted via a CSRF attack - Hmm, not quite. That's what the CSRF token is for. HTTPOnly is all about keeping JavaScript away from our precious cookies.
upvoted 0 times
...
Niesha
1 year ago
I believe the HTTPOnly flag is important for security reasons, as it helps prevent sensitive cookie information from being stolen in a CSRF attack.
upvoted 0 times
...
Karan
1 year ago
I agree with Sylvie. It helps protect against XSS attacks by preventing JavaScript from accessing the cookie data.
upvoted 0 times
...
Jettie
1 year ago
B) To prevent cookies from being accessible via JavaScript - That's the purpose of the HTTPOnly flag, right? Gotta keep those cookies secure from those pesky JavaScript hackers!
upvoted 0 times
Darell
1 year ago
Exactly! It's an important security measure to protect sensitive information stored in cookies.
upvoted 0 times
...
Darell
1 year ago
Yes, that's correct! The HTTPOnly flag prevents cookies from being accessed by JavaScript.
upvoted 0 times
...
...
Sylvie
1 year ago
I think the purpose of the HTTPOnly flag is to prevent cookies from being accessible via JavaScript.
upvoted 0 times
...

Save Cancel