The attribute STATUS is set to the string EXTERNAL_AUTH
The attribute PRIV_USER contains the username
The event type that is given in the attribute NAME is EXTERNAL_AUTH
There is no differentiation between native and external authentication events
External authentication is managed through external auditing logs
The PROXY_PRIV user shows a username if external authentication is used
第1题:
Consider the Mysql Enterprise Audit plugin. A CSV file called data.csv has 100 rows of data. The stored procedure prepare_db ( ) has 10 auditable statements.You run the following statements in the mydb database: Mysql> CALL prepare_db ( );Mysql> LOAD DATA INFILE ‘/tmp/data.cav‘ INTO TABLE mytable; Mysql> SHOW TABLES;How many events are added to the audit log as a result of the preceding statements?()
A.12; only top-level statements and stored procedure events are logged
B.111; top-level statements and all lower-level statements are logged
C.3; only the top-level statements are logged
D.102; top-level statements are logged, but LOAD DATA INFILE is logged as a separate event
第2题:
Consider the Mysql Enterprise Audit plugin. A CSV file called data.csv has 100 rows of data. The stored procedure prepare_db ( ) has 10 auditable statements. You run the following statements in the mydb database: Mysql> CALL prepare_db ( ); Mysql> LOAD DATA INFILE '/tmp/data.cav' INTO TABLE mytable; Mysql> SHOW TABLES; How many events are added to the audit log as a result of the preceding statements?()
第3题:
For which three events can web application event listeners be registered?()
第4题:
Which three statements are true regarding the fine/x7fgrained auditing (FGA)?()
第5题:
You have a secured Windows Communication Foundation (WCF) service. You need to track unsuccessful attempts to access the service. What should you do?()
第6题:
You write a logging function for a Web Form. You call the logging function from the Page_Unload event handler. You test the Web Form and notice that the Page_Unload event handler does not call the logging function. You need to ensure that the logging function is called. What are two possible ways to achieve this goal? ()
第7题:
Set the authorization Manager Type attribute of the service Authorization behavior to Message.
Set the include Exception Detailsln Faults attribute of the service Debug behavior to true.
Set the Mode attribute of the security configuration element to Message.
Set the message Authentication AuditLevel attribute of the service Security Audit behavior to Failure.
第8题:
Acct-Session-Id
Acct-Status-Type
Class
NAS-Identifier
第9题:
Re-install the audit plugin
Execute the command FLUSH LOGS
Execute the command SET GLOBAL audit_log_fiush= ON
Move or rename the existing audit.log file
第10题:
Add a MessageBodyMember attribute to the CodeName property and set the ProtectionLevel to Sign. Add a MessageBodyMember attribute to the SecretHandshake property and set the ProtectionLevel to EncryptAndSign.
Add a DataProtectionPermission attribute to the each property and set the ProtectData property to true.
Add an xmlText attribute to the CodeName property and set the DataType property to Signed. Add a PasswordPropertyText attribute to the SecretHandshake property and set its value to true.
Add an ImmutableObject attribute to the CodeName property and set its value property to true. Add a Browsable attribute to the SecretHandshake property and set its value to false.
第11题:
It contains only the plan for the SQL statement executed by the user.
It contains the SQL text executed by the user and the bind variables used with it.
It contains the plan and statistics associated with the SQL statement executed by the user.
It contains the plan for the SQL statement executed by the user and the bind variables used with it
第12题:
Create an HttpSessionAttributeListener class and implement the attributeDeleted method and log the attribute name using the getName method on the event object.
Create an HttpSessionAttributeListener class and implement the attributeRemoved method and log the attribute name using the getName method on the event object.
Create an SessionAttributeListener class and implement the attributeRemoved method and log the attribute name using the getAttributeName method on the event object.
Create an SessionAttributeListener class and implement the attributeDeleted method and log the attribute name using the getAttributeName method on the event object.
第13题:
To make audit information more productive, the DBA executes the following command before startingan audit operation: SQL> ALTER SYSTEM SET AUDIT_TRAIL=DB,EXTENDED SCOPE=SPFILE; Which statement is true regarding the audit record generated when auditing starts after restarting thedatabase()
第14题:
Your web application requires the adding and deleting of many session attributes during a complex usecase. A bug report has come in that indicates that an important session attribute is being deleted too soonand a NullPointerException is being thrown several interactions after the fact. You have decided to create asession event listener that will log when attributes are being deleted so you can track down when theattribute is erroneously being deleted. Which listener class will accomplish this debugging goal?()
第15题:
When a job exceeds the date specified in its END_DATE attribute, which of the following will happen?()
第16题:
Consider the Mysql Enterprise Audit plugin. Which statement is true when you identify a connection event that has used external authentication?()
第17题:
Your network contains a Network Policy Server (NPS) named Server1.NPS1 provides authentication for all of the VPN servers on the network.You need to track the usage information of all VPN connections.Which RADIUS attribute should you log?()
第18题:
You are creating a Windows Communication Foundation (WCF) service that accepts messages from clients when they are started. The message is defined as follows. [MessageContract] public class Agent { public string CodeName { get; set; }public string SecretHandshake { get; set; } } You have the following requirements: "The CodeName property must be sent in clear text. The service must be able to verify that the property value was not changed after being sent by the client. "The SecretHandshake property must not be sent in clear text and must be readable by the service. What should you do?()
第19题:
12; only top-level statements and stored procedure events are logged
111; top-level statements and all lower-level statements are logged
3; only the top-level statements are logged
102; top-level statements are logged, but LOAD DATA INFILE is logged as a separate event
第20题:
In the system web. Extensions scripting/webServices/authenticationService element, set the enabled attribute to true.
In the system web. Extensions scripting/webServices/profileService element, set the enabled attribute to true.
Add a service endpoint with basicHttpBinding for the contract System.Web.ApplicationServices.AuthenticationService.
Add a custom service behavior named AuthenticationService Type Behaviors with a service AuthenticationManager element that has service AuthenticationManagerType set to System.Web.Security.SQL Membership Provider
第21题:
Add a MessageBodyMember attribute to the CodeName property and set the ProtectionLevel to Sign. Add a MessageBodyMember attribute to the SecretHandshake property and set the protectionLevel to EncryptAndSign.
Add a DataProtectionPermission attribute to the each property and set the ProtectData property to true.
Add an XmlText attribute to the CodeName property and set the DataType property to Signed. add a PasswordPropertyText attribute to the SecretHandshake property and set its value to true.
Add an ImmutableObject attribute to the CodeName property and set its value property to true. Add a Browsable attribute to the SecretHandshake property and set its value to false.
第22题:
Add the ConnectionProvider attribute to OrdersPart.
Add the ConnectionProvider attribute to CustomerPart.
Add the ConnectionConsumer attribute to CustomerPart.
Add the ConnectionConsumer attribute to OrdersPart.
Add OrdersPart and CustomerPart to the WebParts directory.
Add OrdersPart and CustomerPart to the App_Code directory.
Declare the connections within a StaticConnections subtag of a WebPartZone class.
Declare the connections within a StaticConnections subtag of a WebPartManager class.
Define an interface specifying the methods and properties that are shared between the Web Parts.
第23题:
It contains only the plan for the SQL statement executed by the user.
It contains the SQL text executed by the user and the bind variables used with it.
It contains the plan and statistics associated with the SQL statement executed by the user.
It contains the plan for the SQL statement executed by the user and the bind variables used with it.