Security+ Answer Identify Attack

Here’s the Answer to the Question posted on Facebook

Q. An administrator recently learned of an attack on a Virginia-based web server from IP address at 11:35:33 GMT. However, after investigating the logs, he is unable to see any traffic from that IP address at that time. Which of the following is the MOST likely reason why the administrator was unable to identify the attack?

A. He did not account for time offsets.

B. He did not capture an image.

C. The IP address has expired.

D. The logs were erased when the system was rebooted.

Answer available until September 25, 2016.

Get over 400 Security+ (SY0-401 questions here).SY0-401 Get Certified Get Ahead

See Chapter 11 of the CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide.

Get Certified Get Ahead Security+ SY0-401
Check out Security+ blogs here.