After studying the following log entries, how many user IDs can you identify that the attacker has tampered wi

adminNovember 18, 2015

After studying the following log entries, how many user IDs can you identify that the attacker has tampered with?
1. mkdir -p /etc/X11/applnk/Internet/.etc
2. mkdir -p /etc/X11/applnk/Internet/.etcpasswd
3. touch -acmr /etc/passwd /etc/X11/applnk/Internet/.etcpasswd
4. touch -acmr /etc /etc/X11/applnk/Internet/.etc
5. passwd nobody -d
6. /usr/sbin/adduser dns -d/bin -u 0 -g 0 -s/bin/bash
7. passwd dns -d
8. touch -acmr /etc/X11/applnk/Internet/.etcpasswd /etc/passwd
9. touch -acmr /etc/X11/applnk/Internet/.etc /etc

A.
nobody, dns

B.
nobody, IUSR_

C.
IUSR_

D.
acmr, dns

Explanation:
Passwd is the command used to modify a user password and it has been used together with the usernames nobody and dns.

2 Comments on “After studying the following log entries, how many user IDs can you identify that the attacker has tampered wi”

networkmanagers says:

November 19, 2015 at 12:52 am

A

Log in to Reply
Ghost Man says:

April 20, 2016 at 4:57 pm

D is the And.

Log in to Reply

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ECCouncil Exam Questions

Free EC-Council Study Guide

After studying the following log entries, how many user IDs can you identify that the attacker has tampered wi

2 Comments on “After studying the following log entries, how many user IDs can you identify that the attacker has tampered wi”

Leave a Reply Cancel reply