Question:
What are three ways to mitigate SQL injection threats? (Choose three.)
- stored procedures configured with the "db_owner" rights set as default
- stateless packet-filtering firewalls
- dynamic queries
- database firewalls
- whitelist input validation
- parameterized database queries
Explanation: SQL injection is a basic web application attack technique which, if successful, can delete or change sensitive data or reveal it to the attacker. There are several methods to mitigate the threat of SQL injection such as the use of parameterized database queries, database firewalls, and whitelist input validation.
Exam with this question: DevNet Associate – Practice Final Exam Answers
Please login or Register to submit your answer