ExamTopics Logo
Mail Us[email protected]
Menu
Oracle Discussions
exam questions

Exam 1z0-148 All Questions

View all questions & answers for the 1z0-148 exam
Go to Exam

Exam 1z0-148 topic 1 question 15 discussion

Actual exam question from Oracle's 1z0-148
Question #: 15
Topic #: 1
[All 1z0-148 Questions]

Which two statements describe actions developers can take to make their application less vulnerable to security attacks?

  • A. Include the AUTHID DEFINER clause in stored program units.
  • B. Do not concatenate unchecked user input into dynamically constructed SQL statements.
  • C. Switch from using DBMS_SQL to EXECUTE IMMEDIATE.
  • D. Include the AUTHID CURRENT_USER clause in stored program units.
  • E. Increase the amount of code that is accessible to users by default.
Show Suggested Answer Hide Answer
Suggested Answer: BD 🗳️
by sudhirdavim at Jan. 4, 2021, 2:29 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Rakeshpro
2 years, 8 months ago
AUTHID CURRENT_USER: This will execute the program units with Invoker's right(IR) and resolve the objects also in their schema. Concatenating unchecked user inputs in Dynamic SQL can lead to SQL Injection to prevent this DBMS_ASSERT.QUALIFIED_SQL_NAME or DBMS_ASSERT.ENQUOTE_LITERAL
upvoted 1 times
...
sudhirdavim
4 years, 5 months ago
BD are correct answer.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel