ExamTopics Logo
Mail Us[email protected]
Menu
Oracle Discussions
exam questions

Exam 1z0-908 All Questions

View all questions & answers for the 1z0-908 exam
Go to Exam

Exam 1z0-908 topic 1 question 10 discussion

Actual exam question from Oracle's 1z0-908
Question #: 10
Topic #: 1
[All 1z0-908 Questions]

You wish to protect your MySQL database against SQL injection attacks.
Which method would fail to do this?

  • A. installing and configuring the Connection Control plugin
  • B. avoiding concatenation of SQL statements and user-supplied values in an application
  • C. using stored procedures for any database access
  • D. using PREPARED STATEMENTS
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Dhanushka at Aug. 3, 2023, 4:14 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
7206e44
10 months, 2 weeks ago
Selected Answer: A
A. Can be used for DDoS or limit number of connections, but not necessarily sql injection
upvoted 1 times
...
rjaf
1 year ago
Selected Answer: A
Answer is A. Connection control plugin cannot protect against sql injection.
upvoted 1 times
...
GalambG
1 year, 4 months ago
Selected Answer: D
The parameterized queries or prepared statements, which help prevent SQL injection vulnerabilities. Answer: D
upvoted 1 times
eena96
1 year, 3 months ago
But, the question asks which method would fail to to protect SQL injection attack
upvoted 1 times
...
...
FelipeK
1 year, 7 months ago
Selected Answer: A
A. installing and configuring the Connection Control plugin. This plugin is used to limit the number of connection attempts from a host, but it does not directly prevent SQL injection attacks.
upvoted 2 times
...
nkanike1
1 year, 7 months ago
Answer is A. Connection control plugin cannot protect against sql injection.
upvoted 1 times
...
marklv
1 year, 7 months ago
which one does not work, A. Connection Control plugin has nothing to do with sql injection. The rest work.
upvoted 1 times
...
Dhanushka
1 year, 9 months ago
Selected Answer: D
A prepared statement is a parameterized and reusable SQL query which forces the developer to write the SQL command and the user-provided data separately. The SQL command is executed safely, preventing SQL Injection vulnerabilities
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel