ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
Your organization's public e-commerce site is fronted by a reverse-proxy web application firewall (WAF). Security logs reveal thousands of HTTP GET requests that include the string ' OR 1=1 -- in form parameters, all originating from one IP address. Management asks for an immediate mitigation that blocks these attacks while minimizing the chance of affecting legitimate shoppers. Which WAF action best meets this requirement?
Require a CAPTCHA challenge for every request to the application's login endpoint.
Block all traffic associated with the attacker's autonomous system number in the WAF's IP reputation list.
Create a rate-based rule that denies any IP address sending more than a set number of requests per minute.
Enable the WAF's built-in SQL injection inspection rule set to detect and block requests containing SQL injection payloads.
The string ' OR 1=1 -- is a classic SQL injection payload. Modern web application firewalls provide signature-based or managed rule sets that specifically detect and block SQL injection patterns in HTTP requests. Enabling this targeted inspection stops the malicious traffic regardless of source address or request rate and leaves benign requests unaffected.
Simply rate-limiting the source IP might still let some malicious requests through before the threshold is reached and would not stop similar attacks from other IPs.
Blocking an entire autonomous system (ASN) is a broad measure that risks overblocking many legitimate users.
Forcing every customer to solve a CAPTCHA introduces unnecessary friction and degrades user experience. Therefore, activating the WAF's built-in SQL injection protection is the most effective and least disruptive first step.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a reverse-proxy WAF?
Open an interactive chat with Bash
Why is SQL injection a security threat?
Open an interactive chat with Bash
How does enabling a WAF SQL injection rule set protect against attacks?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Network and Communication Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .