From the log excerpt, which line indicates a DNS version query?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Enhance your knowledge as a Computer Hacking Forensic Investigator with the CHFI v11 Test. Use flashcards and multiple-choice questions, complete with hints and detailed explanations, to prepare effectively and ace your exam!

Multiple Choice

From the log excerpt, which line indicates a DNS version query?

Explanation:
Looking for a DNS version query means identifying a log line that explicitly shows a DNS version-related request and uses the DNS service port. The line in question literally says IDS/DNS-version-query, which tells you the event type is a DNS version probe. It also shows traffic from 212.244.97.121:3485 directed to 172.16.1.107:53. Port 53 is the standard DNS port, so the destination is a DNS service. This combination—the label indicating a DNS version query and the DNS port involved—confirms that this line is describing a DNS version query. The other entries describe port scans or RPC queries, which are unrelated to DNS version probing.

Looking for a DNS version query means identifying a log line that explicitly shows a DNS version-related request and uses the DNS service port. The line in question literally says IDS/DNS-version-query, which tells you the event type is a DNS version probe. It also shows traffic from 212.244.97.121:3485 directed to 172.16.1.107:53. Port 53 is the standard DNS port, so the destination is a DNS service. This combination—the label indicating a DNS version query and the DNS port involved—confirms that this line is describing a DNS version query. The other entries describe port scans or RPC queries, which are unrelated to DNS version probing.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy