When investigating a report of a system compromise, a security analyst views the following /var/log/secure log file: Which of the following can the analyst conclude from viewing the log file?
A.
The comptia user knows the sudo password.
B.
The comptia user executed the sudo su command.
C.
The comptia user knows the root password.
D.
The comptia user added himself or herself to the /etc/sudoers file.
Wrong. C is correct.
the user is not in the sudoers file. you use your own password for that. the user used the su command to switch user accounts. when no user is specified, the su command defaults to the root account. the user is now logged into the root account. you need to know the root password to log into the root account.
Comptia user used su command to login as root user
su requires the password of the target account, while sudo requires the password of the current user.
This section is not available anymore. Please use the main Exam Page.CS0-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Laudy
Highly Voted 2 years, 7 months agocyberseckid
2 years, 7 months agoTag
2 years, 6 months ago2Fish
Most Recent 2 years, 1 month agoCatoFong
2 years, 2 months agoSethwlch98
2 years, 2 months agoLearner_77
2 years, 6 months agoryanzou
2 years, 6 months agoWeezyfbaby
2 years, 6 months ago