New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Adobe AD0-E704 Exam - Topic 6 Question 54 Discussion

Actual exam question for Adobe's AD0-E704 exam
Question #: 54
Topic #: 6
[All AD0-E704 Questions]

Magento uses the HTTPOnly flag when setting cookies for security reasons. There is also a system configuration setting available in the Cookie Settings to turn it on and off. What is the purpose of this flag?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Norah at Dec 08, 2024, 12:37 PM

Limited Time Offer

25%

Off

Get Premium AD0-E704 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Yvette
3 months ago
Surprised this isn't more common knowledge!
upvoted 0 times
...
Viola
3 months ago
No way, it’s definitely not about HTTPS delivery!
upvoted 0 times
...
Sharen
4 months ago
Wait, I thought it was for CSRF attacks?
upvoted 0 times
...
Rueben
4 months ago
Totally agree, B is the right answer.
upvoted 0 times
...
Della
4 months ago
It's to stop JavaScript from accessing cookies!
upvoted 0 times
...
Aileen
4 months ago
I vaguely recall something about Cross Site Tracing, but I’m not confident it’s related to the HTTPOnly flag. I might need to double-check that.
upvoted 0 times
...
Shaun
4 months ago
I practiced a similar question last week, and I think the purpose of the HTTPOnly flag is to enhance cookie security by restricting access from JavaScript. That makes me think B is correct.
upvoted 0 times
...
Brock
5 months ago
I’m not entirely sure, but I feel like the HTTPOnly flag is related to preventing CSRF attacks. I might be mixing it up with something else though.
upvoted 0 times
...
Ashton
5 months ago
I remember studying about the HTTPOnly flag, and I think it’s mainly to stop JavaScript from accessing cookies. So, I’m leaning towards option B.
upvoted 0 times
...
Ronna
5 months ago
Okay, I remember learning about this in class. The HTTPOnly flag is to prevent Cross Site Tracing (XST) attacks, so I'll select option C.
upvoted 0 times
...
Kristel
5 months ago
The HTTPOnly flag is used to prevent cookies from being intercepted via a CSRF attack, so I'll choose option A.
upvoted 0 times
...
Lanie
5 months ago
Hmm, I'm a bit unsure about this one. I'll need to think it through carefully before selecting an answer.
upvoted 0 times
...
Miesha
5 months ago
I think the purpose of the HTTPOnly flag is to prevent cookies from being accessible via JavaScript, so I'll go with option B.
upvoted 0 times
...
Patria
10 months ago
B) To prevent cookies from being accessible via JavaScript - Bingo! HTTPOnly is the cookie security superhero, protecting our cookies from those sneaky JavaScript villains. Now, where's my cape?
upvoted 0 times
Rima
8 months ago
C) To prevent Cross Site Tracing (XST) attacks
upvoted 0 times
...
Yong
8 months ago
B) To prevent cookies from being accessible via JavaScript - Bingo! HTTPOnly is the cookie security superhero, protecting our cookies from those sneaky JavaScript villains. Now, where's my cape?
upvoted 0 times
...
Jenelle
9 months ago
A) To prevent cookies from being intercepted via a CSRF attack
upvoted 0 times
...
...
Maryanne
10 months ago
D) To prevent cookies from being delivered over HTTPS - Oof, that's a big no-no. HTTPOnly is all about keeping the cookies away from JavaScript, not the other way around.
upvoted 0 times
Nelida
9 months ago
D) To prevent cookies from being delivered over HTTPS - Oof, that's a big no-no. HTTPOnly is all about keeping the cookies away from JavaScript, not the other way around.
upvoted 0 times
...
Bernadine
9 months ago
B) To prevent cookies from being accessible via JavaScript
upvoted 0 times
...
Lindsey
9 months ago
A) To prevent cookies from being intercepted via a CSRF attack
upvoted 0 times
...
...
Elden
10 months ago
C) To prevent Cross Site Tracing (XST) attacks - Haha, nice try, but I don't think XST is a real thing. Maybe the person who wrote this question was just trying to be fancy and confuse us.
upvoted 0 times
Margot
9 months ago
C) To prevent Cross Site Tracing (XST) attacks - Haha, nice try, but I don't think XST is a real thing. Maybe the person who wrote this question was just trying to be fancy and confuse us.
upvoted 0 times
...
Tambra
9 months ago
B) To prevent cookies from being accessible via JavaScript
upvoted 0 times
...
Jovita
9 months ago
A) To prevent cookies from being intercepted via a CSRF attack
upvoted 0 times
...
...
Yvonne
10 months ago
A) To prevent cookies from being intercepted via a CSRF attack - Hmm, not quite. That's what the CSRF token is for. HTTPOnly is all about keeping JavaScript away from our precious cookies.
upvoted 0 times
...
Niesha
11 months ago
I believe the HTTPOnly flag is important for security reasons, as it helps prevent sensitive cookie information from being stolen in a CSRF attack.
upvoted 0 times
...
Karan
11 months ago
I agree with Sylvie. It helps protect against XSS attacks by preventing JavaScript from accessing the cookie data.
upvoted 0 times
...
Jettie
11 months ago
B) To prevent cookies from being accessible via JavaScript - That's the purpose of the HTTPOnly flag, right? Gotta keep those cookies secure from those pesky JavaScript hackers!
upvoted 0 times
Darell
10 months ago
Exactly! It's an important security measure to protect sensitive information stored in cookies.
upvoted 0 times
...
Darell
10 months ago
Yes, that's correct! The HTTPOnly flag prevents cookies from being accessed by JavaScript.
upvoted 0 times
...
...
Sylvie
11 months ago
I think the purpose of the HTTPOnly flag is to prevent cookies from being accessible via JavaScript.
upvoted 0 times
...

Save Cancel