Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GCCC Exam - Topic 8 Question 21 Discussion

Actual exam question for GIAC's GCCC exam
Question #: 21
Topic #: 8
[All GCCC Questions]

An organization is implementing a control within the Application Software Security CIS Control. How can they best protect against injection attacks against their custom web application and database applications?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Dorthy at May 05, 2022, 09:02 AM

Limited Time Offer

25%

Off

Get Premium GCCC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Nieves
7 months ago
Wow, I didn't realize how crucial input filtering was!
upvoted 0 times
...
Melvin
7 months ago
Checking against reserved terms is a good idea, but not foolproof.
upvoted 0 times
...
Kristal
7 months ago
Isn't using Unicode characters a bit limiting?
upvoted 0 times
...
Ashton
8 months ago
I disagree, logging alone won't stop injections.
upvoted 0 times
...
Sonia
8 months ago
Filtering input is a must to prevent injection attacks!
upvoted 0 times
...
Steffanie
8 months ago
Checking user input against reserved database terms sounds familiar, but I wonder if that’s comprehensive enough to cover all injection vectors.
upvoted 0 times
...
Fernanda
8 months ago
I'm not entirely sure, but I feel like logging to a central host might help with monitoring, but it doesn't directly prevent injection attacks, right?
upvoted 0 times
...
Lindsey
8 months ago
I remember we discussed input validation in class, so I think filtering input to only allow safe characters is really important.
upvoted 0 times
...
Amber
8 months ago
I think using Unicode characters could be a way to limit input, but I’m not convinced it’s the best method for preventing injections.
upvoted 0 times
...
Delbert
8 months ago
I'm pretty sure the answer is D. Type Name. That's where you'd go to modify an object's default properties before using it in a project.
upvoted 0 times
...
Abel
8 months ago
Alright, I've got a strategy here. I know C# is a common .NET language, so that's a safe bet. I'll eliminate the others and go with C#.
upvoted 0 times
...
Allene
8 months ago
I'm a little confused by statement I. Does calcitonin really get stimulated during feeding? I'll need to think that one through more carefully.
upvoted 0 times
...

Save Cancel