Here’s the Answer to the Question posted on Facebook
Q. An administrator recently learned of an attack on a Virginia-based web server from IP address 18.104.22.168 at 11:35:33 GMT. However, after investigating the logs, he is unable to see any traffic from that IP address at that time. Which of the following is the MOST likely reason why the administrator was unable to identify the attack?
A. He did not account for time offsets.
B. He did not capture an image.
C. The IP address has expired.
D. The logs were erased when the system was rebooted.
Answer available until September 25, 2016.
|Get over 400 Security+ (SY0-401 questions here).|
See Chapter 11 of the CompTIA Security+: Get Certified Get Ahead: SY0-401 Study Guide.