nerdexam
Exams101Questions#416
F5

101 · Question #416

101 Question #416: Real Exam Question with Answer & Explanation

The correct answer is A: Block a user after a specified number, unsuccessful login attempts. Brute force protection is a security control that automatically blocks a user account after a configured number of consecutive failed login attempts.

Question

Brute force protection will:

Options

  • ABlock a user after a specified number, unsuccessful login attempts
  • BBlock a user after a specified number of page requests are attempted
  • CNone of the above
  • DBlock a user from downloading too much content from the site

Explanation

Brute force protection is a security control that automatically blocks a user account after a configured number of consecutive failed login attempts.

Common mistakes.

  • B. Blocking based on the number of page requests describes HTTP rate limiting or request throttling, which is a separate control unrelated to authentication failure counting.
  • C. None of the above is incorrect because option A accurately and completely defines brute force protection.
  • D. Restricting content downloads describes bandwidth throttling or data-transfer limits, which is a distinct control with no connection to login attempt monitoring.

Concept tested. Brute force protection authentication lockout behavior

Reference. https://cheatsheetseries.owasp.org/cheatsheets/Authentication_Cheat_Sheet.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice
Brute force protection will: | 101 Q#416 Answer | NerdExam