1. Home
  2. Discussions
  3. Cisco
  4. Cisco Certified DevNet Associate
  5. 200-901 Discussions
  6. 200-901 Exam Topic 12 Question 119 Discussion

Cisco DevNet Associate (DEVASC) 200-901 Question # 119 Topic 12 Discussion

 Cisco Discussions      Browse All Questions      Go to Exam Detail      Get Premium Access
 Previous
Next  

Cisco DevNet Associate (DEVASC) 200-901 Question # 119 Topic 12 Discussion

200-901 Exam Topic 12 Question 119 Discussion:
Question #: 119
Topic #: 12

A developer pushes an application to production. The application receives a webhook over HTTPS without a secret. The webhook information contains credentials to service in cleartext. When the information is received, it is stored in the database with an SHA-256 hash. Credentials to the database are accessed at runtime through the use of a vault service. While troubleshooting, the developer sets the logging to debug to view the message from the webhook. What is the security issue in this scenario?
A.

Database credentials should be accessed by using environment variables defined at runtime.

B.

During the transport of webhook messages, the credentials could be unencrypted and leaked.

C.

During logging, debugging should be disabled for the webhook message.

D.

Hashing the credentials in the database is not secure enough; the credentials should be encrypted.

Get Premium 200-901 Questions
Actual exam question for Cisco 200-901 exam by Zara42968 at Aug 2, 2025, 12:00:00 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit
 Previous
Next