[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fjuKMpflyTBUXJtDbSlz9CQT4NPpOBgtqJjCukRjhYMo":3},{"answer":4,"createTime":5,"id":6,"options":7,"origin":12,"question":16,"related":17,"source":27,"type":28},[],"2026-05-19 06:28:09",376932581,[8,9,10,11],"SYSTEM(完全控制)Administrator(完全控制)Everyone(读取和运行)","SYSTEM(完全控制)Administrator(完全控制)Users(修改)","SYSTEM(完全控制)Administrator(完全控制)Inernet来宾账户(读取和运行)","SYSTEM(完全控制)Administrator(完全控制)",{"courseId":13,"courseImg":14,"courseName":15},"53e1d2ef4961cca8eea3e23969ad2cb9","https:\u002F\u002Ftihai-oss-cloud.itihey.com\u002Fimg\u002F03a579384a6dc297c89809b582fcc767.png","默认课程","对于IIS日志文件的访问权限,下列设置是正确的是( )",[18,29,38,47,56,65,74,83,92,101],{"answer":19,"createTime":5,"id":20,"options":21,"question":26,"source":27,"type":28},[],376932539,[22,23,24,25],"远程监控和远程维护","远程维护和黑客入侵","软件中止和黑客入侵","软件中止和远程监控","软件供应商或是制造商可以在他们自己的产品中或是客户的计算机系统上安装一个&quot;后门&quot;程序,这种情况面临的最主要风险是 ( )","v1",0,{"answer":30,"createTime":5,"id":31,"options":32,"question":37,"source":27,"type":28},[],376932540,[33,34,35,36],"渗透阶段、侦查阶段、控制阶段","控制阶段、侦查阶段、渗透阶段","侦查阶段、控制阶段、渗透阶段","侦查阶段、渗透阶段、控制阶段","在安全审计的风险评估阶段,通常是按( )顺序来进行的",{"answer":39,"createTime":5,"id":40,"options":41,"question":46,"source":27,"type":28},[],376932541,[42,43,44,45],"核查系统的配置漏洞,评估系统关键资源和数据文件的完整性","防止IP地址欺骗","识别违反安全策略的用户活动","检测并分析用户和系统的活动","某公司在网络中部署了基于网络的实时入侵检测技术,更有效地保护了网络资源,提高了防御体系级别,但入侵检测技术不能实现以下( )功能",{"answer":48,"createTime":5,"id":49,"options":50,"question":55,"source":27,"type":28},[],376932542,[51,52,53,54],"彻底删除","恢复","保持不变","部分删除","在病毒样本提取后,应将现有可疑文件移动到回收站,若系统重启后运行正常,再从回收站中( )这些文件",{"answer":57,"createTime":5,"id":58,"options":59,"question":64,"source":27,"type":28},[],376932543,[60,61,62,63],"审批管理机制、报修管理机制","应急管理机制、报修管理机制","风险管理机制、应急管理机制","风险管理机制、报修管理机制","安全防护体系要求建立完善的两个机制是( )",{"answer":66,"createTime":5,"id":67,"options":68,"question":73,"source":27,"type":28},[],376932544,[69,70,71,72],"完整性(Integrity)框架方案","身份鉴别(Authentication)框架方案","访问控制(Access Control)框架方案","抗抵赖(Non-repudiation)框架方案","PH软件开发公司承接了ZF企业基于因特网的B2C业务系统的研发任务.ZF企业提出的业务系统安全性要求之一是防止授权侵犯和保留用户痕迹.针对这一要求,PH公司架构师给出的解决方案最可能是( )",{"answer":75,"createTime":5,"id":76,"options":77,"question":82,"source":27,"type":28},[],376932545,[78,79,80,81],"网络探测引擎","审计中心","数据管理中心","防火报警系统","网络安全审计系统一般不包含( )",{"answer":84,"createTime":5,"id":85,"options":86,"question":91,"source":27,"type":28},[],376932546,[87,88,89,90],"系统审计保护级","访问验证保护级","结构化保护级","安全标记保护级","我国强制性国家标准《计算机信息安全保护等级划分准则》将计算机信息系统分为5个安全保护等级,其中适用于地方各级国家机关、金融机构、邮电通信、能源与水源供给部门的信息系统适用( )",{"answer":93,"createTime":5,"id":94,"options":95,"question":100,"source":27,"type":28},[],376932547,[96,97,98,99],"入侵检测","日志监测","网络纠错","负载监测","网络流量状况是网络中的重要信息,利用流量监测获得的数据,不能实现的目标是( )",{"answer":102,"createTime":5,"id":103,"options":104,"question":109,"source":27,"type":28},[],376932548,[105,106,107,108],"注销失败","登录成功","超级用户登录","登录失败","对于Windows事件日志分析,不同的EVENT ID代表了不同的意义,其中4672表示的是( )"]