[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fvW1MJuZsj-ZvuP3n7z6blqch4tApQGhMX6OoMroJ6gM":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":19,"related":20,"source":24,"type":25},[],"2026-05-15 19:05:33",371783784,[8,9,10,11],"缓冲区溢出攻击","暗门攻击","DDoS攻击","钓鱼攻击",{"count":13,"courseId":14,"courseImg":15,"courseName":16,"workId":17,"workName":18},5,"53e1d2ef4961cca8eea3e23969ad2cb9","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F03a579384a6dc297c89809b582fcc767.png","默认课程","e3501629959542d7b756c6f45b45bcfc","6importWorkTemplate","小张收到一封可疑的短信提示中了彩票,点击进去发现要求输入真实身份信息和账户信息,这属于( )攻击手段",[21,26,35,45,54],{"answer":22,"createTime":5,"id":6,"options":23,"question":19,"source":24,"type":25},[],[8,9,10,11],"v1",0,{"answer":27,"createTime":5,"id":28,"options":29,"question":34,"source":24,"type":25},[],371783785,[30,31,32,33],"Session机制是在服务器端存储认证凭证","Cookie虽然在客户端存储,但是一般都是采用加密存储,即使 Cookie泄露,只要保证攻击者无法解密Cookie,就不用担心由此带来的安全威胁","SessionID是服务器用来识别不同会话的标识","访问一些站点,可以选择自已喜好的色调,之后每次登录网站,都是选择的色调,这个是靠Cookie技术实现的","下面关于Cookie和 Session 的说法错误的是",{"answer":36,"createTime":5,"id":37,"options":38,"question":43,"source":24,"type":44},[],371783786,[39,40,41,42],"Cookie往往用来存储用户的认证凭证信息,因此Cookie的安全关系到认证的安全问题","Cookie可以通过脚本语言轻松从客户端读取","针对Cookie的攻击,攻击者往往结合XSS,盗取 Cookie,获得敏感信息或进行重放攻击","设置Cookie 的 HTTPOnly属性,可以防止JavaScript脚本盗取 Cookie","下面关于Cookie的说法正确的是",1,{"answer":46,"createTime":5,"id":47,"options":48,"question":53,"source":24,"type":44},[],371783789,[49,50,51,52],"通过QQ、微信等聊天工具发送传播钓鱼网站链接","在中、小网站投放广告,吸引用户点击钓鱼网站链接","通过e-mail发布钓鱼网站链接","通过微博中的短连接散布钓鱼网站链接","以下( )是攻击者常用的传播钓鱼网站的途径",{"answer":55,"createTime":5,"id":56,"options":57,"question":62,"source":24,"type":44},[],371783791,[58,59,60,61],"查验&quot;可信网站&quot;","比较网站内容","核对网站域名","查询网站备案","以下( )方法可以用来防范钓鱼网站"]