5. Application Security
Web Application Sec — Quiz
Test your understanding of web application sec with 5 practice questions.
Practice Questions
Question 1
Which HTTP response header instructs browsers to communicate only over HTTPS for subsequent requests?
Question 2
Which HTTP response header forces browsers to respect declared MIME types and prevents content-type sniffing?
Question 3
What effect does setting a session cookie attribute to SameSite=Lax have on cross-site requests?
Question 4
Which session management practice mitigates session fixation attacks?
Question 5
Why is including a unique salt for each user important when hashing passwords?