nerdexam
CompTIA

XK0-004 · Question #72

An administrator is analyzing a Linux server which was recently hacked. Which of the following will the administrator use to find all unsuccessful login attempts?

The correct answer is C. pam_tally2. To measure the number of failed logins per user, a module is needed to do the counting. Two popular modules for this are pam_tally and pam_tally2, named after tallying.

Security

Question

An administrator is analyzing a Linux server which was recently hacked. Which of the following will the administrator use to find all unsuccessful login attempts?

Options

  • Ansswitch
  • Bfaillock
  • Cpam_tally2
  • Dpasswd

How the community answered

(28 responses)
  • A
    4% (1)
  • B
    4% (1)
  • C
    86% (24)
  • D
    7% (2)

Explanation

To measure the number of failed logins per user, a module is needed to do the counting. Two popular modules for this are pam_tally and pam_tally2, named after tallying.

Topics

#pam_tally2#failed logins#PAM#authentication auditing

Community Discussion

No community discussion yet for this question.

Full XK0-004 Practice