CV0-004 Exam Question 16

A cross-site request forgery vulnerability exploited a web application that was hosted in a public laaS network. A security engineer determined that deploying a WAF in blocking mode at a CDN would prevent the application from being exploited again. However, a week after implementing the WAF, the application was exploited again. Which of the following should the security engineer do to make the WAF control effective?
  • CV0-004 Exam Question 17

    An DevOps engineer is receiving reports that users can no longer access the company's web application after hardening of a web server. The users are receiving the following error:
    ERR_SSLJ/ERSION_OR_CIPHER_MISMATCH.
    Which of the following actions should the engineer take to resolve the issue?
  • CV0-004 Exam Question 18

    An organization's web application experiences penodic bursts of traffic when a new video is launched. Users are reporting poor performance in the middle of the month. Which of the following scaling approaches should the organization use to scale based on forecasted traffic?
  • CV0-004 Exam Question 19

    Which of the following is the most cost-effective way to store data that is infrequently accessed?
  • CV0-004 Exam Question 20

    An administrator needs to provide a backup solution for a cloud infrastructure that enables the resources to run from another data center in case of a outage. Connectivity to the backup data center is via a third-party, untrusted network. Which of the following is the most important feature required for this solution?