Topic 1 Question 35
A company needs to block SQL injection attacks. Which AWS service or feature can meet this requirement?
AWS WAF
AWS Shield
Network ACLs
Security groups
ユーザの投票
コメント(14)
Confusion will come to choose between WAF or Shield. but all common web attack patterns (XSS, SQL Injection, etc...) dealt by WAF, special cases which can't be handled by WAF - will be handled by Shield primarily DDoS
👍 37jeevamini2023/10/27A: AWS WAF allows you to create custom rules to block SQL injection attempts.
Create a WebACL: Go to AWS WAF dashboard and create a new WebACL. Add a Rule: Inside the WebACL, add a new rule. SQLi Filter: Choose the rule type to look for SQLi patterns. AWS WAF has built-in SQLi filters. Attach Resources: Attach the WebACL to a resource, such as an Application Load Balancer, Amazon CloudFront distribution, or an API Gateway. Deploy: Save and deploy the WebACL.👍 11discutidor2023/10/15- 正解だと思う選択肢: A
A. AWS WAF (Web Application Firewall): A web application firewall that allows users to create custom rules to filter and monitor HTTP or HTTPS requests to a web application. It helps protect against common web exploits, including SQL injection attacks, by allowing the blocking or rate-limiting of malicious requests.
B. AWS Shield: A managed Distributed Denial of Service (DDoS) protection service. While it helps protect against DDoS attacks, it is not specifically designed for blocking SQL injection attacks.
C. Network ACLs (Access Control Lists): Are used to control traffic at the subnet level. While they provide some control over inbound and outbound traffic, they operate at the network layer (Layer 3) and are not designed for deep inspection of application layer attacks like SQL injection.
D. Security groups: Operate at the instance level and are stateful firewalls that control inbound and outbound traffic. While they provide network-level security, they are not designed to specifically block SQL injection attacks.
👍 8TheFivePips2024/01/24
シャッフルモード