ExamTopics Logo
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CSSLP All Questions

View all questions & answers for the CSSLP exam
Go to Exam

Exam CSSLP topic 1 question 65 discussion

Actual exam question from ISC's CSSLP
Question #: 65
Topic #: 1
[All CSSLP Questions]

You work as a Security Manager for Tech Perfect Inc. In the organization, Syslog is used for computer system management and security auditing, as well as for generalized informational, analysis, and debugging messages. You want to prevent a denial of service (DoS) for the Syslog server and the loss of Syslog messages from other sources. What will you do to accomplish the task?

  • A. Use a different message format other than Syslog in order to accept data.
  • B. Enable the storage of log entries in both traditional Syslog files and a database.
  • C. Limit the number of Syslog messages or TCP connections from a specific source for a certain time period.
  • D. Encrypt rotated log files automatically using third-party or OS mechanisms.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by 4e3rv21rq3vq2q at July 9, 2022, 2:08 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
74gjd_37
5 months, 2 weeks ago
Selected Answer: C
C. Limit the number of Syslog messages or TCP connections from a specific source for a certain time period would be the best option to prevent a DoS attack on the Syslog server and the loss of Syslog messages from other sources. This will help to prevent an overwhelming number of messages from a single source and allow other sources to send their messages to the Syslog server. Additionally, it is important to ensure that the Syslog server has sufficient resources to handle the number of messages it receives and to regularly monitor the server for any potential security vulnerabilities.
upvoted 1 times
...
4e3rv21rq3vq2q
1 year, 8 months ago
Selected Answer: C
C. Limit the number of Syslog messages or TCP connections from a specific source for a certain time period.
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago