单选题A web application uses the HttpSession mechanism to determine if a user is "logged in." When a usersupplies a valid user name and password， an HttpSession is created for that user. The user has access tothe application for only 15 minutes after logging

第1题：

A user has changed their password using the passwd command， and notices that the change is only made tothe local node. When the administrator changes the user’s password from the command line using the passwd command thechange is made cluster-wide. What is the most likely cause of this problem？（）

• A、The user has a UID less than 200
• B、The user has been defined as an administrative user
• C、The file /usr/es/sbin/cluster/clpasswd is not executable by the user
• D、The user needs explicit authorization to change their password cluster-wide

第2题：

Given a web application in which the cookie userName is expected to contain the name of the user. Which EL expression evaluates to that user name？（）

• A、${userName}
• B、${cookie.userName}
• C、${cookie.user.name}
• D、${cookies.userName[0]}

第3题：

Which of the following is NOT a security feature relating to user accounts？（）

• A、Some commands can be password protected requiring logged in customers to re-enter their password.
• B、A user account can be disabled automatically， after a specified number of invalid login attempts.
• C、An account can have multiple valid passwords at the same time， any of which can be used to access the account.
• D、The password policy feature can allow the system to require passwords to include a minimum number of numeric characters.
• E、Logged in customers can be logged off of the system after a specified period of inactivity.

第4题：

Examine the command： SQL> ALTER USER skd ACCOUNT LOCK； Which two statements are true after the command is executed（）

• A、The SKD user cannot log in to the database instance.
• B、The objects owned by the SKD user are not accessible to any user.
• C、The other users can access the objects owned by the SKD user， on which they have access.
• D、The password for the SKD user expires and the user is forced to change the password at the next log in.

第5题：

A technician needs to use Remote Assistance with a user. The user is asked to use an email application to send the technician an invitation to remotely access the user’s computer. The email application has not been configured in the user’s computer.  Which of the following would be another way for the user to send the Remote Assistance invitation？ （）

• A、Configuring the Windows Firewall exceptions.
• B、Using Windows Messenger.
• C、Configuring My Network Places.
• D、Using Internet Explorer.

第6题：

A web application uses the HttpSession mechanism to determine if a user is “logged in”. When a user supplies a valid user name and password， an HttpSession is created for that user.  The user has access to the application for only 15 minutes after logging in. The code must determine how long the user has been logged in， and if this time is greater than 15 minutes， must destroy the HttpSession.  Which method in HttpSession is used to accomplish this？（）

• A、 getCreationTime
• B、 invalidateAfter
• C、 getLastAccessedTime
• D、 getMaxInactiveInterval

第7题：

Upon a user’s first visit to the website， which two operations are always performed when the getSession method is called with no arguments in a servlet？（）

• A、 All URLs returned by the server are rewritten.
• B、 An HttpSession object is created if necessary.
• C、 The user name and password of the user are checked.
• D、 The session ID is stored in the HTTP response as a cookie.

第8题：

An organization has decided to deploy an IBM Tivoli Access Manager for Enterprise Single-on solution to help address security and productivity issues. Per their corporate security policy， the organization has detailed requirements related to password management for their enterprise applications.  Which password requirements need to be captured？（）

• A、details related to application user ID requirements
• B、policy requirements related to the number of applications that a user can access
• C、policy requirements for application and user initiated password resets and password complexity
• D、do nothing as password policy requirements are best addressed within the application space rather than in an Enterprise Single Sign-On project

第9题：

A web application uses the HttpSession mechanism to determine if a user is "logged in." When a usersupplies a valid user name and password， an HttpSession is created for that user. The user has access tothe application for only 15 minutes after logging in. The code must determine how long the user has beenlogged in， and if this time is greater than 15 minutes， must destroy the HttpSession. Which method in HttpSession is used to accomplish this？（）

• A、Getcreationtime
• B、Invalidateafter
• C、Getlastaccessedtime
• D、Getmaxinactiveinterval

第10题：

Which statement is true regarding this setting?（）

• A、It drops the connection after the specified number of login attempts fail for any user.
• B、It is enforced only if the password profile is enabled for the user. 
• C、It locks the user account after the specified number of attempts. 
• D、It drops the connection after the specified number of login attempts fail only for users who have the SYSDBA privilege.