Ask Question
Computers and TechnologyComputers and Technology
12 January, 05:07

A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial investigation, it was discovered that email is being exfiltrated through an active connection. Which of the following is the NEXT step the team should take? A. Perform eradication of the active connection and recoverB. Identify the source of the active connectionC. Format the server and restore its initial configurationD. Perform a containment procedure by disconnecting the serverD. Perform a containment procedure by disconnecting the server

+3
Answers (1)
  1. 12 January, 05:44
    0
    Answer: B. Identify the source of the active connection

    Any problem can be fixed only finding of the source of it. We can fix a problem in 'n' number of ways but it might again come back if source of it is not identified.

    Explanation:

    Identify the source of the active connection is the NEXT step the team should take. It is very similar to our human body.

    If the infection is coming in the body again and again and gets fixed in the treatment, the reason for come - back will be identified so that it does not lead to unnecessary treatment.

    In a similar way, if source are identified then the problem of come-back can be avoided. So option B would be the right choice.
Know the Answer?
Not Sure About the Answer?
Find an answer to your question ✅ “A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial ...” in 📘 Computers and Technology if you're in doubt about the correctness of the answers or there's no answer, then try to use the smart search and find answers to the similar questions.
Search for Other Answers
You Might be Interested in
Who do many employees think is responsible for safety in the workplace
Answers (1)
True or false:Factual data is always the best data because it is based on facts
Answers (2)
Select the operations master role that is responsible for providing backward compatibility with Windows NT servers configured as Windows NT backup domain controllers or member servers: a. Infrastructure masterb. Domain naming masterc. RID masterd.
Answers (1)
J=2 k=5 n=9 while j < k m=6 while m < n output "Goodbye" m=m+1 endwhile j=j+1 endwhile
Answers (1)
When you are cut off in traffic by another driver and you respond by "flipping him the bird," you are using a type of gesture called an illustrator?
Answers (1)
New Questions in Computers and Technology
Is phone data used when connected to wifi
Answers (1)
What information is required for a complete citation of a website source? A.) the title, volume number, and page numbers B.) the responsible person or organization and the website URL C.
Answers (1)
It is vital that automated solutions offering configuration management are well-secured. Otherwise, a hacker who makes it into a configuration management system might be able to obtain administrator access to the production environment. True False
Answers (1)
An academic or professional blog would be especially useful?
Answers (1)
A term for identifying the computer's operating system.
Answers (2)
Home » Computers and Technology » A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial investigation, it was discovered that email is being exfiltrated through an active connection.
Sign Up Forgot Password?