200-901 Exam Dumps | A developer pushes an application to production. The application receives a webhook over HTTPS without

<< Prev Question Next Question >>

Question 85/228

A developer pushes an application to production. The application receives a webhook over HTTPS without a secret. The webhook information contains credentials to service in cleartext. When the information is received, it is stored in the database with an SHA-256 hash. Credentials to the database are accessed at runtime through the use of a vault service. While troubleshooting, the developer sets the logging to debug to view the message from the webhook. What is the security issue in this scenario?

A. Database credentials should be accessed by using environment variables defined at runtime.

B. During the transport of webhook messages, the credentials could be unencrypted and leaked.

C. During logging, debugging should be disabled for the webhook message.

D. Hashing the credentials in the database is not secure enough; the credentials should be encrypted.

Question List (228q): Question 1: Refer to the exhibit. (Exhibit)...; Question 2: Refer to the exhibit. (Exhibit) Which two statement describe...; Question 3: Refer to the exhibit. (Exhibit) Which command, including arg...; Question 4: Refer to the exhibit. (Exhibit) Drag and drop the code from ...; Question 5: (Exhibit) Refer to the exhibit. Drag and drop the actions fr...; Question 6: Refer to the exhibit. (Exhibit) Which JSON snippet configure...; Question 7: What is a feature of a MAC address?...; Question 8: Which two protocols are used to apply a configuration change...; Question 9: Which two statements describe the traits of an asynchronous ...; Question 10: What are two security benefits of a Docker-based application...; Question 11: Which Cisco DevNet resource allows access to products in a d...; Question 12: Which implementation creates a group of devices on one or mo...; Question 13: Which configuration management tool has an agentless capabil...; Question 14: An engineer is creating an API to automatically obtain speci...; Question 15: What is an example of a network interface hardware address?...; Question 16: Refer to the exhibit. (Exhibit) A collaboration engineer has...; Question 17: Refer to the exhibit. (Exhibit) A network engineer must coll...; Question 18: Which principle is a value from the manifesto for Agile soft...; Question 19: Drag and drop the requests from the left into the correct or...; Question 20: Drag and drop the code from the bottom onto the box where th...; Question 21: Which two HTTP code series relate to errors? (Choose two....; Question 22: A developer has experienced security issues with a previousl...; Question 23: Which Cisco compute management platform controls server, net...; Question 24: Refer to the exhibit. (Exhibit) The definition of the YANG m...; Question 25: (Exhibit) Refer to the exhibit. Which type of YANG object is...; Question 26: What is a benefit of using functions in the code for the dev...; Question 27: Drag and drop the code snippets from the bottom to the blank...; Question 28: Which description of a default gateway if true?...; Question 29: A company requires a new platform to store large volumes of ...; Question 30: A developer plans to deploy a new application that will use ...; Question 31: What are two advantages of the Model-view-controller softwar...; Question 32: What are two benefits of implementing common data structures...; Question 33: What are two advantages of version control software? (Choose...; Question 34: Which detail is included in a routing table?...; Question 35: What is an advantage of device-level management as compared ...; Question 36: Drag and drop the HTTP methods from the left onto their gene...; Question 37: (Exhibit) Refer to the exhibit. Drag and drop the code from ...; Question 38: Which RFC 1918 address space includes a subnet of 172.16.0.0...; Question 39: Refer to the exhibit. (Exhibit) A network engineer must impr...; Question 40: (Exhibit) Refer to the exhibit. A network engineer makes a R...; Question 41: Drag and drop the function on the left onto the type of plan...; Question 42: Which two descriptions can be given to an application that i...; Question 43: What are the two principles of an infrastructure as code env...; Question 44: Which type of threat occur when an attacker can send hostile...; Question 45: What are two benefits of using VLANs? (Choose two.)...; Question 46: A developer is working on a new feature in a branch named 'n...; Question 47: what is an advantage of a version control system?...; Question 48: Refer to the exhibit. (Exhibit) A developer is troubleshooti...; Question 49: To which stage of development do Infrastructure as Code prin...; Question 50: What is a benefit of using a code review process in applicat...; Question 51: Refer to the exhibit. (Exhibit) A REST API retune this JSON ...; Question 52: Which standard supported by Cisco IOS XE and Cisco NX-OS is ...; Question 53: What is a comparison of YAML and JSON?...; Question 54: Which Cisco product provides malware and content filtering t...; Question 55: On which network plane is routing protocol traffic handled?...; Question 56: What is a benefit of organizing code into modules?...; Question 57: What is a feature of XML compared to other data formats?...; Question 58: Drag and drop the code snippets from the bottom onto the bla...; Question 59: A development team needs to containerize an application name...; Question 60: What does a load balancer distribute in a network environmen...; Question 61: What is the purpose of the Cisco VIRL software tool?...; Question 62: Which TCP port is used to connect to a network device by usi...; Question 63: A REST API service requires authentication based on the user...; Question 64: What is a characteristic of lest-driven development?...; Question 65: How does edge computing analyze sensitive data in the contex...; Question 66: What is a characteristic of the Cisco Finesse platform?...; Question 67: What is a procedural component of CI/CD pipelines?...; Question 68: What are two advantages of YANG-based approaches for infrast...; Question 69: When a Cisco IOS XE networking device is configured by using...; Question 70: Refer to the exhibit. (Exhibit) Which device limits traffic ...; Question 71: An engineer clones a repository that contains a Python scrip...; Question 72: (Exhibit) Refer to the exhibit. Drag and drop the Dockerfile...; Question 73: Refer to the exhibit. (Exhibit) Which two statements about t...; Question 74: A developer created a new secure API and is testing the func...; Question 75: Which technology is responsible for matching a name to an IP...; Question 76: Refer to the exhibit. (Exhibit) A developer must check packa...; Question 77: Drag and drop the capabilities from the left onto the Cisco ...; Question 78: A company deploys an application via containers in its local...; Question 79: A developer is developing a web application that uses userna...; Question 80: Refer to Exhibit. (Exhibit) Which JSON is equivalent to the ...; Question 81: What is the function of IP address in networking?...; Question 82: Refer to the exhibit. (Exhibit) Which function does the EXPO...; Question 83: (Exhibit) Refer to the exhibit. A script must output details...; Question 84: Refer to the exhibit. (Exhibit) Up to which device does the ...; Question 85: A developer pushes an application to production. The applica...; Question 86: A resource named /item is protected by oAuth2 authentication...; Question 87: Users cannot access a webserver and after the traffic is cap...; Question 88: Users cannot access a webserver and after the traffic is cap...; Question 89: Access to the management interface of devices must be restri...; Question 90: Which application should be used to externally access all ap...; Question 91: (Exhibit) Refer to the exhibit. A bespoke meeting booking sy...; Question 92: Which action does the Git command git merge allow the develo...; Question 93: Which two encoding formats do YANG interfaces support?...; Question 94: Drag and drop the code from the bottom onto the box where th...; Question 95: How does requesting a synchronous API operation differ from ...; Question 96: A company is adopting DevOps as part of an internal transfor...; Question 97: (Exhibit) Refer to the exhibit. Drag and drop the code snipp...; Question 98: What is used in JSON to represent a Python Tuple?...; Question 99: Refer to the exhibit. (Exhibit) A Python code has been writt...; Question 100: Drag and drop the code from the bottom onto the box where th...; Question 101: Refer to the exhibit. (Exhibit) The IT team deployed a new L...; Question 102: Fill in the blanks to complete the statement. Given a userna...; Question 103: Refer to the exhibit. (Exhibit) What occurs when the script ...; Question 104: An engineer must run tests on several Cisco controllers. Due...; Question 105: Drag and drop the network automation interfaces from the lef...; Question 106: Refer to the exhibit. (Exhibit) Drag and Drop the code from ...; Question 107: A developer creates a program in which an object maintains a...; Question 108: What is a benefit of a model-driven approach for infrastruct...; Question 109: Refer to the exhibit. (Exhibit) Which OWASP threat does this...; Question 110: Which device is used to transport traffic from one broadcast...; Question 111: Which protocol runs over TCP port 22?...; Question 112: An engineer prepares a set of Python scripts to interact wit...; Question 113: Which two elements are foundational principles of DevOps? (C...; Question 114: Refer to the exhibit. (Exhibit) What caused the error in thi...; Question 115: Drag and Drop the GIT commands from the left onto the right ...; Question 116: When using the Bash shell, how it the output of the devnet c...; Question 117: Refer to the exhibit. (Exhibit) OR (Exhibit) An administrato...; Question 118: What is the purpose of running tests before writing code in ...; Question 119: A developer completed the creation of a script using Git. Be...; Question 120: Refer to the exhibit. (Exhibit) Fill in the blanks to comple...; Question 121: (Exhibit) Refer to the exhibit. Which RESTCONF request resul...; Question 122: (Exhibit) Refer to the exhibit. What does the load balancer ...; Question 123: Refer to the exhibit. (Exhibit) A developer cannot reach the...; Question 124: Refer to the exhibit. (Exhibit) A developer can access the T...; Question 125: Drag and drop the network automation interfaces from the lef...; Question 126: Which two commands download and execute an Apache web server...; Question 127: Refer to the exhibit. (Exhibit) Which workflow does the scri...; Question 128: Refer to the exhibit. (Exhibit) A security team observes an ...; Question 129: What is a capability of Ansible playbooks?...; Question 130: Refer to the exhibit. (Exhibit) A network engineer must chan...; Question 131: Refer to the exhibit. (Exhibit) A developer needs to upload ...; Question 132: Which two statement describe the role of an artifact reposit...; Question 133: (Exhibit) Refer to the exhibit. A developer must use a token...; Question 134: Drag and drop the capability on the left onto the Cisco comp...; Question 135: Refer to the exhibit. (Exhibit) What is the function of the ...; Question 136: Fill in the blanks to complete the Python script to update t...; Question 137: (Exhibit) Refer to the exhibit. Drag and drop the code snipp...; Question 138: What is a principle of a code review process?...; Question 139: (Exhibit) Refer to the exhibit. Drag and drop the code from ...; Question 140: Refer to the exhibit. (Exhibit) An engineer must check the a...; Question 141: A company wants to automate the orders processed on its webs...; Question 142: What is the Git command to delete a local branch named "expe...; Question 143: What is a benefit of using edge computing in an IoT implemen...; Question 144: A development team is creating an application used for conta...; Question 145: What is the purpose of grouping devices in a VLAN?...; Question 146: Refer to the exhibit. (Exhibit) A network engineer wants to ...; Question 147: Refer to the exhibit. (Exhibit) An engineer must add new use...; Question 148: A developer starts to learn about building applications that...; Question 149: What is the purpose of the first three pairs of digits in a ...; Question 150: Refer to the exhibit. (Exhibit) A developer creates a script...; Question 151: Refer to the exhibit. (Exhibit) What is the action of the Ba...; Question 152: Which network component enables communication between broadc...; Question 153: Which IP service is used to monitor the performance of netwo...; Question 154: In test-driven development, what are two of the green bar pa...; Question 155: A developer creates a new application, but the application m...; Question 156: A customer's cloud services must: Migrate services to anothe...; Question 157: Refer to the exhibit. (Exhibit) What caused the error in thi...; Question 158: Which protocol must be allowed on the firewall so that NTP s...; Question 159: What are two characteristics of Bare Metal environments that...; Question 160: (Exhibit) Refer to the exhibit. Drag and drop the code from ...; Question 161: Which tool allows changes to the configuration management to...; Question 162: A distributed application was developed using the Cisco inte...; Question 163: Which service provides a directory lookup for IP addresses a...; Question 164: Which command reverses the last commit without changing the ...; Question 165: (Exhibit) Refer to the exhibit. A network engineer executes ...; Question 166: Which statement about authentication a RESTCONF API session ...; Question 167: Before which process is code review performed when version c...; Question 168: Fill in the blanks to complete the Bash script in which each...; Question 169: What is a difference between a synchronous API and an asynch...; Question 170: A developer has created a new image to use in a Docker build...; Question 171: Which port does HTTPS use by default?...; Question 172: What are the two purposes for using a VLAN in a network? (Ch...; Question 173: During which step of the CI/CD pipeline for infrastructure a...; Question 174: An engineer needs to retrieve a list of locally available Fi...; Question 175: What is the purpose of Infrastructure as Code?...; Question 176: (Exhibit) Refer to the exhibit. An engineer must authorize a...; Question 177: An engineer must configure Cisco Nexus devices and wants to ...; Question 178: Refer to the exhibit. (Exhibit) Drag and drop the code from ...; Question 179: What is a benefit of a distributed version control system?...; Question 180: What is a benefit of organizing into modules?...; Question 181: Refer to the exhibit. (Exhibit) A developer creates a Python...; Question 182: (Exhibit) Refer to the exhibit. An engineer runs a network t...; Question 183: Drag and drop elements of the RESTCONF protocol stack from t...; Question 184: In DNS, which record specifies an alias that refers to anoth...; Question 185: Drag and drop the code snippets from the bottom into the Pyt...; Question 186: Refer to the exhibit. (Exhibit) Which infrastructure automat...; Question 187: A developer needs a list of clients connected to a specific ...; Question 188: A network engineer makes several API calls lo Cisco Prime to...; Question 189: What are two use cause where webhooks are effective? (Choose...; Question 190: Which technology is responsible for resolving a host name to...; Question 191: Refer to the exhibit. (Exhibit) A Python script must delete ...; Question 192: In which two ways is an application characterized when inter...; Question 193: Which protocol is used for clock synchronization between net...; Question 194: Which two situations align with infrastructure as code princ...; Question 195: A developer is creating a script to interact with a REST API...; Question 196: Which type of OWASP threat forges a malicious HTTP request i...; Question 197: A group of software developers wants to improve its collabor...; Question 198: How is a branch called "my-bug-fix" started to develop a fix...; Question 199: (Exhibit) Refer to the exhibit. An engineer is comparing two...; Question 200: Which device is a system that monitors and controls incoming...; Question 201: An engineer must investigate the problems on a web applicati...; Question 202: (Exhibit) Rotor to the exhibit. Which API is called when the...; Question 203: Drag and drop the functions from the left onto the networkin...; Question 204: What is a component of the first stage of an application dev...; Question 205: Drag and drop the Dockerfile instructions from the left onto...; Question 206: Refer to the exhibit. (Exhibit) The server.js Node.js script...; Question 207: A developer is reviewing a code that was written by a collea...; Question 208: Refer to the exhibit. (Exhibit) Drag and drop the code from ...; Question 209: Which IP service is responsible for automatically assigning ...; Question 210: Which two concepts describe test-driven development? (Choose...; Question 211: What is the impact on an application from having a large dis...; Question 212: Refer to the exhibit. (Exhibit) A company recently acquired ...; Question 213: What is the main purpose of a code review?...; Question 214: Refer to the exhibit. (Exhibit) What is the value of the nod...; Question 215: How do XML and JSON compare regarding functionality?...; Question 216: A developer creates an application that must provide an encr...; Question 217: Refer to the exhibit. (Exhibit) Which two files are being ed...; Question 218: Which response status code is used by a RESTful interface to...; Question 219: Drag and drop the HTTP status codes from the left onto the c...; Question 220: Which protocol runs over TCP port 830?...; Question 221: (Exhibit) Refer to the exhibit. A developer is part of a tea...; Question 222: Refer to the exhibit. (Exhibit) A developer needs to automat...; Question 223: Refer to the exhibit. (Exhibit) The Cisco Meraki API manages...; Question 224: (Exhibit) Refer to the exhibit. A network engineer must coll...; Question 225: Refer to the exhibit. (Exhibit) Fill in the blank to complet...; Question 226: (Exhibit) Refer to the exhibit. A network engineer must conf...; Question 227: Which two statements about JSON and XML are true? (Choose tw...; Question 228: Which two types of NAT are used in a network? (Choose two.)...

Question 85/228

LEAVE A REPLY

Download PDF File