Ask Question
Computers & TechnologyComputers & Technology
15 September, 21:22

A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial investigation, it was discovered that email is being exfiltrated through an active connection. Which of the following is the NEXT step the team should take? A. Perform eradication of the active connection and recoverB. Identify the source of the active connectionC. Format the server and restore its initial configurationD. Perform a containment procedure by disconnecting the serverD. Perform a containment procedure by disconnecting the server

+5
Answers (1)
  1. 16 September, 00:48
    0
    Answer: B. Identify the source of the active connection

    Any problem can be fixed only finding of the source of it. We can fix a problem in 'n' number of ways but it might again come back if source of it is not identified.

    Explanation:

    Identify the source of the active connection is the NEXT step the team should take. It is very similar to our human body.

    If the infection is coming in the body again and again and gets fixed in the treatment, the reason for come - back will be identified so that it does not lead to unnecessary treatment.

    In a similar way, if source are identified then the problem of come-back can be avoided. So option B would be the right choice.
Know the Answer?
Not Sure About the Answer?
Get an answer to your question ✅ “A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial ...” in 📙 Computers & Technology if there is no answer or all answers are wrong, use a search bar and try to find the answer among similar questions.
Search for Other Answers
You Might be Interested in
Double[][] vals = {{1.1, 1.3, 1.5}, {3.1, 3.3, 3.5}, {5.1, 5.3, 5.5}, ... {7.1, 7.3, 7.5}} How many columns are in the array above? 0 2 3 4
Answers (1)
Where does the VLookup function find its lookup values? Lookup table Disk file Web page Thumb drive
Answers (1)
Which of the following options is used to view a computer's memory properties? A. Accessories B. Device Manager C. System and Hardware D. Control Panel
Answers (1)
The ability of a person booking a flight on Southwest's website to reserve a car from Dollar Rent-A-Car without having to leave the airline's website is an example of the usage by Dollar Rent-A-Car and Southwest Airlines of which of the following?
Answers (1)
A traffic light that is not working should be treated the same as a
Answers (1)
New Questions in Computers & Technology
In computer science, what are two names that are used to describe data structures organized by association
Answers (1)
Which of the following statements are true? a. HTML document will not be displayed if I do not have closing tags b. Without, the web page will not display the contents c.
Answers (1)
This is not a feature provided by most GUIS. icons windows forms menus
Answers (2)
What are some of the ways we can resolve IPV4 address shortages? Check all that apply. Border Gateway Protocol Autonomous Systems Network Address Translation Using IPV6 addresses
Answers (1)
You just bought a new hard drive for your computer you plan to use this as a secondary hard drive to store all um a files once installed what needs to be done to drive and what do these two tests do
Answers (1)
Home » Computers & Technology » A computer emergency response team is called at midnight to investigate a case in which a mail server was restarted. After an initial investigation, it was discovered that email is being exfiltrated through an active connection.
Sign Up Forgot Password?