An administrator suspects unauthorized modifications to /etc/passwd and needs to query the audit daemon logs for all recorded events related to that file. Which command should they use?
grep /etc/passwd /var/log/secureausearch -f /etc/passwdauditctl -l /etc/passwdjournalctl -f /etc/passwdMore Security Questions
18 questions
Full CompTIA Linux+ Practice Test
All topics covered
All CompTIA Linux+ Questions
Browse by topic
Related Questions
Which command displays whether SELinux is currently in Enforcing, Permissive, or Disabled mode?...
Which firewall management tool uses zones to group interfaces and apply different trust levels, and ...
An administrator manages a Ubuntu server using UFW and needs to allow incoming TCP traffic specifica...
An administrator needs to enforce a minimum password length of 12 characters using PAM on a Linux sy...
An administrator needs to encrypt the file `/etc/app/config.conf` using GPG symmetric encryption so ...
Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy
Discussion
Be the first to share your understanding of this concept
Sign in to join the discussion