Ask Question
Computers & TechnologyComputers & Technology
15 September, 16:45

A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial investigation, it was discovered that email is being exfiltrated through an active connection. Which of the following is the NEXT step the team should take? A. Perform eradication of the active connection and recoverB. Identify the source of the active connectionC. Format the server and restore its initial configurationD. Perform a containment procedure by disconnecting the serverD. Perform a containment procedure by disconnecting the server

+3
Answers (1)
  1. 15 September, 17:14
    0
    Answer: B. Identify the source of the active connection

    Any problem can be fixed only finding of the source of it. We can fix a problem in 'n' number of ways but it might again come back if source of it is not identified.

    Explanation:

    Identify the source of the active connection is the NEXT step the team should take. It is very similar to our human body.

    If the infection is coming in the body again and again and gets fixed in the treatment, the reason for come - back will be identified so that it does not lead to unnecessary treatment.

    In a similar way, if source are identified then the problem of come-back can be avoided. So option B would be the right choice.
Know the Answer?
Not Sure About the Answer?
Find an answer to your question 👍 “A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial ...” in 📗 Computers & Technology if the answers seem to be not correct or there’s no answer. Try a smart search to find answers to similar questions.
Search for Other Answers
You Might be Interested in
Explain in your own words what is meant by the term procedural abstraction.
Answers (1)
Interest groups are a new political force never envisioned by the Founders. simply reflect the conflictual nature of American politics. allow large groups to dominate small groups, creating representational distortion.
Answers (1)
The company policy for availability requires full backups on Sunday and incremental backups each week night at 10 p. m. The file server crashes on Thursday afternoon.
Answers (1)
A fitness tracker can be classified as a wearable computer. true
Answers (1)
In some cases, a photographer might want to add noise to a photograph rather than reduce it.
Answers (2)
New Questions in Computers & Technology
Differences between barcode reader and character recognition devices
Answers (1)
The technology company DataGenetics suggests that 17.8% of all four-digit personal identification numbers, or PIN codes, have a repeating digits format such as 2525.
Answers (1)
What is 'validation'?
Answers (1)
Using the physical mail analogy, what part of an address on an envelope is most like the ip address?
Answers (1)
Application programmers specialize in developing system software such as operating systems, device drivers, security modules, and communications software.? a. True b. False
Answers (1)
Home » Computers & Technology » A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial investigation, it was discovered that email is being exfiltrated through an active connection.
Sign Up Forgot Password?