How can they best protect against injection attacks against their custom web application and database applications?

Posted by: Pdfprep Category: GCCC Tags: , ,

An organization is implementing a control within the Application Software Security CIS Control.

How can they best protect against injection attacks against their custom web application and database applications?
A . Ensure the web application server logs are going to a central log host
B . Filter input to only allow safe characters and strings
C . Configure the web server to use Unicode characters only
D . Check user input against a list of reserved database terms

Answer: B

Leave a Reply

Your email address will not be published.