GIAC Exam GCCC Topic 4 Question 38 Discussion

Actual exam question for GIAC's GCCC exam

Question #: 38
Topic #: 4

[All GCCC Questions]

What is a recommended defense for the CIS Control for Application Software Security?

AKeep debugging code in production web applications for quick troubleshooting

BLimit access to the web application production environment to just the developers

CRun a dedicated vulnerability scanner against backend databases

DDisplay system error messages for only non-kernel related events

Show Suggested Answer

Suggested Answer: C

by Kimbery at Dec 12, 2023, 10:16 PM

Limited Time Offer

25%

Off

Get Premium GCCC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Rikki

5 days ago

I think running a dedicated vulnerability scanner against backend databases could also help in securing the application software.

upvoted 0 times

...

Hubert

6 days ago

Definitely not A. Keeping debugging code in production is a big no-no for security. The correct answer has to be C - running a vulnerability scanner on the backend databases.

upvoted 0 times

...

Omer

12 days ago

I agree with Omega. It's important to restrict access to prevent unauthorized changes.

upvoted 0 times

...

Omega

14 days ago

I think the recommended defense is to limit access to the web application production environment to just the developers.

upvoted 0 times

...