A company that hosts a multi-tier ecommerce web application on AWS has been alerted to suspicious application traffic. The architecture consists of Amazon EC2 instances deployed across multiple Availability Zones behind an Application Load Balancer (ALB) . After examining the instance logs, a SysOps administrator determines that the suspicious traffic is an attempted SQL injection attack. What should the SysOps administrator do to prevent similar attacks?
A) Create an Amazon CloudFront distribution with the ALB as the origin. Enable AWS Shield Advanced to protect from SQL injection attacks at edge locations.
B) Create an AWS WAF web ACL, and configure a SQL injection rule to add to the web ACL. Associate the WAF web ACL with the ALB.
C) Enable Amazon GuardDuty. Use Amazon EventBridge (Amazon CloudWatch Events) to trigger an AWS Lambda function every time GuardDuty detects SQL injection.
D) Install Amazon Inspector on the EC2 instances, and configure a rules package. Use the findings reports to identify and block SQL injection attacks.
Correct Answer:
Verified
Q806: A company is migrating its exchange server
Q807: An ecommerce company uses an Amazon ElastiCache
Q808: A SysOps Administrator needs to monitor all
Q809: A company's data processing workflow uses AWS
Q810: A SysOps administrator manages an AWS CloudFormation
Q812: A company wants to identify specific Amazon
Q813: A company's security policy states that connecting
Q814: A kernel patch for AWS Linux has
Q815: A SysOps Administrator needs to retrieve a
Q816: A company is evaluating solutions for connecting
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents