Crucial Exams

CompTIA Server+ SK0-005 Practice Question

A systems administrator is responsible for a fleet of Linux-based web servers. A File Integrity Monitoring (FIM) system sends an alert indicating that a critical configuration file, /etc/httpd/conf/httpd.conf, was recently modified on one of the servers. The administrator suspects unauthorized access and needs to validate the file's integrity against a known-good version. The administrator has access to a secure repository containing the original SHA-256 hashes for all baseline configuration files. Which of the following actions should the administrator perform FIRST to validate the file?

  • Immediately restore the httpd.conf file from the last known-good backup.

  • Review the server's firewall logs for suspicious connection attempts made around the time of the modification.

  • Generate a new SHA-256 hash of the current httpd.conf file and compare it to the hash from the baseline repository.

  • Use a network sniffer to capture and analyze traffic to and from the web server.

CompTIA Server+ SK0-005
Troubleshooting
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
SAVE $47
CompTIA Server+ Voucher
v5 / SK0-005
$390.00 $343.00
SAVE $53
CompTIA Server+ Voucher with Retake
v5 / SK0-005
Includes Retake
$439.00 $386.00
Bash, the Crucial Exams Chat Bot
AI Bot