nerdexam
ExamsGCIHQuestions#528
GIAC

GCIH · Question #528

GCIH Question #528: Real Exam Question with Answer & Explanation

The correct answer is D: Reverse proxy between the web server and the Internet. Defenders can use proxy tools to help defend against these attacks. The AppShield and Interdo tools sit in front of a web application and look for incoming requests where an attacker manipulated a cookie or other state element that is supposed to remain static. They also look for

Web Application Attacks & Post-Exploitation

Question

You want to ensure that the data that is returned to your web server during an online transaction is the same data that was sent to the customer. You have found several vendors offering software that can detect change and reset it if needed. Where would you place this technology?

Options

  • AProxy between your web server and your internal network
  • BStateful firewall between your web server and the Internet
  • CProxy server between your users and the Internet
  • DReverse proxy between the web server and the Internet

Explanation

Defenders can use proxy tools to help defend against these attacks. The AppShield and Interdo tools sit in front of a web application and look for incoming requests where an attacker manipulated a cookie or other state element that is supposed to remain static. They also look for other suspicious behavior. These tools work against standard web manipulation.

Topics

#reverse proxy#data integrity#web server architecture#MITM protection

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice