nerdexam
ExamsGCIHQuestions#178
GIAC

GCIH · Question #178

GCIH Question #178: Real Exam Question with Answer & Explanation

The correct answer is C: By examining your firewall logs.. See the full explanation below for the reasoning.

Question

You are concerned about rootkits on your network communicating with attackers outside your network. Without using an IDS how can you detect this sort of activity?

Options

  • ABy examining your domain controller server logs.
  • BYou cannot, you need an IDS.
  • CBy examining your firewall logs.
  • DBy setting up a DMZ.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice
You are concerned about rootkits on your network communicating... | GCIH Q#178 Answer | NerdExam