Comp TIA Security + Certification Questions Part 4
© examsiri.com
Question : 13 of 60
Marks:
+1,
-0
An administrator thinks the UNIX systems may be compromised, but a review of system log files provides no useful information. After discussing the situation with the security team, the administrator suspects that the attacker may be altering the log files and removing evidence of intrusion activity.
Which of the following actions will help detect attacker attempts to further alter log files?
Which of the following actions will help detect attacker attempts to further alter log files?
Go to Question: