PrepAway - Latest Free Exam Questions & Answers

Which of the following can be implemented in hardware or software to protect a web server from cross-site scri

Which of the following can be implemented in hardware or software to protect a web server
from cross-site scripting attacks?

PrepAway - Latest Free Exam Questions & Answers

A.
Intrusion Detection System

B.
Flood Guard Protection

C.
Web Application Firewall

D.
URL Content Filter

One Comment on “Which of the following can be implemented in hardware or software to protect a web server from cross-site scri

  1. meac says:

    Key words: hardware or software. So it is a solution that can be used on both.
    A, B and D are solely SOFTWARE BASED.

    Explanation:
    Cross-site scripting (XSS) is a form of malicious code-injection attack on a web server in which an attacker injects code into the content sent to website visitors.
    XSS can be mitigated by implementing patch management on the web server, using firewalls, and auditing for suspicious activity.

    A web application firewall (WAF) is an application firewall for HTTP applications. It applies a set of rules to an HTTP conversation.
    Generally, these rules cover common attacks such as cross-site scripting (XSS) and SQL injection.
    While proxies generally protect clients, WAFs protect servers.
    A WAF is deployed to protect a specific web application or set of web applications.
    A WAF can be considered a reverse proxy.
    WAFs may come in the form of an appliance, server plugin, or filter, and may be customized to an application.
    The effort to perform this customization can be significant and needs to be maintained as the application is modified.




    0



    0

Leave a Reply