GIAC Certified Incident Handler (GCIH) — Question 8

An administrator needs to protect his organization's IIS webservers from Cross-Site Scripting attacks. Which action should he take?

Answer options

• A. Use the Anti-XSS library from Microsoft
• B. Configure two-factor authentication for clients
• C. Use a random element when setting session cookies
• D. Configure application whitelisting on the IIS server

Correct answer: A

Explanation

The correct answer is A because the Anti-XSS library from Microsoft is specifically designed to mitigate Cross-Site Scripting vulnerabilities. Options B, C, and D do not directly address the threat of Cross-Site Scripting; they focus on user authentication and session management, which do not prevent these types of attacks.