Terminal PBQs: Certified Secure Software Lifecycle Professional (CSSLP)
easyQuestion 1 of 21
You are a secure software lifecycle professional performing a pre-deployment code review on the certnova application server. A developer has submitted a database connection script located somewhere under the application directory. Your task is to locate the script, examine its source code, and determine whether database credentials are hardcoded directly into the script or retrieved securely from an external source.
Objectives
- •Locate the database connection script in the application source directory
- •Review the database connection script for credential handling practices
- •Determine whether database passwords are hardcoded or securely sourced
bash
reviewer@certnova:/$
Type commands and press Enter to execute. Use ↑↓ to navigate history. Ctrl+C to cancel, Ctrl+L to clear.
Progress
0 of 3 steps detectedRun at least one command to mark this question complete
0 of 21 marked complete