From the log excerpt, which line indicates a DNS version query?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the Computer Hacking Forensic Investigator v11 exam. Study with flashcards and multiple choice questions. Each question includes hints and explanations. Get exam-ready efficiently!

Multiple Choice

From the log excerpt, which line indicates a DNS version query?

Explanation:
Looking for a DNS version query means identifying a log line that explicitly shows a DNS version-related request and uses the DNS service port. The line in question literally says IDS/DNS-version-query, which tells you the event type is a DNS version probe. It also shows traffic from 212.244.97.121:3485 directed to 172.16.1.107:53. Port 53 is the standard DNS port, so the destination is a DNS service. This combination—the label indicating a DNS version query and the DNS port involved—confirms that this line is describing a DNS version query. The other entries describe port scans or RPC queries, which are unrelated to DNS version probing.

Looking for a DNS version query means identifying a log line that explicitly shows a DNS version-related request and uses the DNS service port. The line in question literally says IDS/DNS-version-query, which tells you the event type is a DNS version probe. It also shows traffic from 212.244.97.121:3485 directed to 172.16.1.107:53. Port 53 is the standard DNS port, so the destination is a DNS service. This combination—the label indicating a DNS version query and the DNS port involved—confirms that this line is describing a DNS version query. The other entries describe port scans or RPC queries, which are unrelated to DNS version probing.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy