Which of the following describes the procedure the administrator has performed?

The security administrator runs an rpm verify command which records the MD5 sum, permissions,
and timestamp of each file on the system. The administrator saves this information to a separate
server. Which of the following describes the procedure the administrator has performed?

The security administrator runs an rpm verify command which records the MD5 sum, permissions,
and timestamp of each file on the system. The administrator saves this information to a separate
server. Which of the following describes the procedure the administrator has performed?

A.
Host software base-lining

B.
File snapshot collection

C.
TPM

D.
ROMDB verification

Show Hint

Leave a Reply 3

Your email address will not be published. Required fields are marked *

12 − 12 =

Brian G

Brian G

The answer is “Host software base-lining”. The answers which do not make any sense are TPM (Trusted Platform Module) and ROMDB verification.

RPM verify will validate a package installation. To do this, it will snapshot all the files, and compare the hashes with the hash after installation. It is doing a file snapshot collection, but it is more than that.

The final piece that ensures the answer is “Host software base-lining” is the note in the question that the results are saved to a separate server. This is the integrity check after installation of a software package. I.e., it is recording the host software baseline so future changes can be caught, or else it is taking a scan to verify that no unauthorized changes have been made since the baseline was made.

Reply

Paul

Paul

Thank you. I would have gone with snapshot but your explanation makes sense.

Reply