Which of the following devices could potentially stop a Structured Query Language (SQL) injection
attack?

A.
An intrusion prevention system (IPS)

B.
An intrusion detection system (IDS)

C.
A host-based intrusion detection system (HIDS)

D.
A host-based firewall

Explanation:

SQL injection attacks occur at the application layer. Most IPS vendors will detect at least basic
sets of SQL injection and will be able to stop them. IDS will detect, but not prevent I IIDS will be
unaware of SQL injection problems. A host-based firewall, be it on the web server or the database
server, will allow the connection because firewalls do not check packets at an application layer.