Audit question

deep_logicdeep_logic Member Posts: 25 ■■■□□□□□□□
Hi all, 
I'm going to take the Sec+ exam next month...I swear this time. :wink: I'm going thru my second exam and a question that veteran security folks might know the answer to. 

Q. A security administrator is performing an audit of a
server farm, and has obtained this information:

Server: cloudflare-nginx
Date: Mon, 19 May 2014 16:53:57 GMT
Content-Type: text/html; charset=UTF-8
Connection: close
Set-Cookie: __cfduid=d0437368; expires=23:50:00 GMT;
Cache-Control: max-age=15
Expires: Mon, 19 May 2014 16:54:12 GMT
CF-RAY: 12d1d045a3880a12-ATL

Which of these would describe this output?
❍❍ A. Password cracking
❍❍ B. Results of the nbtstat command
❍❍ C. Banner grabbing
❍❍ D. Exploit log

I got the answer, Banner grab. But, how does one get a log like this? Is this OS dependent? Or are Security Admins using proprietary software?

Thanks for any help


Sign In or Register to comment.