F. JSP with the Expression Language Answer:B,E,F QUESTION: 127 DRAG DROP Click the Task button. Answer: 52
QUESTION: 128 You are concerned about the threat of arbitrary code execution on your server. Which action should you take to address this? A. install a firewall and create a demilitarized zone B. move the vulnerable server onto a VLAN segment C. enable "data execution prevention" in the host OS D. require digital signatures on all communications to and from the server Answer:C QUESTION: 129 Which approach is best suited to combat cross-site scripting attacks?53
C. principle of least privilege D. negative/blacklist validation of input Answer:B QUESTION: 130 DRAG DROP Click the Task button.
QUESTION: 131 Your company's new Internet application has complex requirements for the restriction of web page access, and you know the site's current security requirements are subject to change. You have recommended to your Chief Technology Officer that the Java Authentication and Authorization Service (JAAS) should be used for security. Which three security features influenced your decision? (Choose three.)