Posted by: Pdfprep
Post Date: November 19, 2020
A security administrator was informed that a server unexpectedly rebooted.
The administrator received an export of syslog entries for analysis:
Which of the following does the log sample indicate? (Choose two.)
A . A root user performed an injection attack via kernel module
B . Encrypted payroll data was successfully decrypted by the attacker
C . Jsmith successfully used a privilege escalation attack
D . Payroll data was exfiltrated to an attacker-controlled host
E . Buffer overflow in memory paging caused a kernel panic
F . Syslog entries were lost due to the host being rebooted
Answer: CE
Leave a Reply