Examice

Exam GCIH All QuestionsBrowse all questions from this exam

Go to Exam

Question 113

A system administrator finds the entry below in an Apache log. What can be done to mitigate against this?

192.168.116.201 - - [22/Apr/2016:13:43:26 -0400] `GET http://www.giac.org%2Farticles.php%3Fid%3D3+and+%28select+1+from

+mysql.user+limit+0%2C1%29%3D1

HTTP/1.1` 200 453 `-` `Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Firefox/45.0`

Filter user input using Javascript on the client browser

Reduce the permissions of the user account running the web application

Filter user input before it gets passed to the application

Create drop-downs for users to choose their search terms

Correct Answer: C

The log entry indicates an attempted SQL injection attack, where the attacker is trying to manipulate a SQL query by injecting malicious code through user input. To mitigate this type of attack, it is essential to filter user input before it is passed to the application. This can involve using prepared statements with parameterized queries, input validation, and escaping special characters to ensure that any user-supplied data does not interfere with the execution of SQL commands.

Discussion

straleOption: C

Correct answer is C, this is an example of SQLi attack