Cisco 210-250 Exam Questions

Question 6 of 1130

Which definition of permissions in Linux is true?

rules that allow network traffic to go in and out

table maintenance program

written affidavit that you have to sign before using the system

attributes of ownership and control of an object

Correct Answer: D

Question 7 of 1130

Which definition describes the main purpose of a Security Information and Event Management solution?

a database that collects and categorizes indicators of compromise to evaluate and search for potential security threats

a monitoring interface that manages firewall access control lists for duplicate firewall filtering

a relay server or device that collects then forwards event logs to another log collection device

a security product that collects, normalizes, and correlates event log data to provide holistic views of the security posture of an environment

Correct Answer: D

Question 8 of 1130

If a web server accepts input from the user and passes it to a bash shell, to which attack method if it vulnerable?

input validation

hash collision

command injection

integer overflow

Correct Answer: C

If a web server accepts input from the user and passes it to a bash shell, it is vulnerable to command injection. This type of attack occurs when a malicious user sends commands through the input fields, which are then executed by the server's shell, potentially allowing the attacker to execute arbitrary commands, access sensitive data, or take control of the system. Input validation, hash collision, and integer overflow are different vulnerabilities that do not directly pertain to executing shell commands based on user input.

Question 9 of 1130

Which security monitoring data type is associated with application server logs?

alert data

statistical data

session data

transaction data

Correct Answer: D

Transaction data is the type of security monitoring data associated with application server logs. Transaction data consists of the messages exchanged during network sessions, which is consistent with the information typically found in application server logs. This includes detailed records of interactions that occur between clients and servers, making it suitable for tracking and analyzing application activity.

Question 10 of 1130

Which two terms are types of cross site scripting attacks? (Choose two.)

directed

encoded

stored

reflected

cascaded

Correct Answer: C, D

The two primary types of cross-site scripting (XSS) attacks are stored and reflected XSS. Stored XSS occurs when malicious scripts are permanently stored on a target server, such as in a database, comment field, or web forum. Reflected XSS happens when a malicious script is reflected off a web server, such as in an error message, search result, or another response that includes some or all of the input sent to the server. Other terms provided, such as 'directed', 'encoded', and 'cascaded' are not recognized types of XSS attacks.