Summer Special Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: vce65

A senior security engineer flags the following log file snippet as having likely facilitated an...

  1. Home
  2. CompTIA
  3. CompTIA CASP
  4. CAS-005
  5. CAS-005 Questions
  6. CompTIA SecurityX Certification Exam Practice Questions

A senior security engineer flags the following log file snippet as having likely facilitated an attacker’s lateral movement in a recent breach:

qry_source: 19.27.214.22 TCP/53

qry_dest: 199.105.22.13 TCP/53

qry_type: AXFR

| in comptia.org

------------ directoryserver1 A 10.80.8.10

------------directoryserver2 A 10.80.8.11

------------ directoryserver3 A 10.80.8.12

------------ internal-dns A 10.80.9.1

----------- www-int A 10.80.9.3

------------ fshare A 10.80.9.4

------------ sip A 10.80.9.5

------------ msn-crit-apcs A 10.81.22.33

Which of the following solutions, if implemented, would mitigate the risk of this issue reoccurring?

A.

Disabling DNS zone transfers

B.

Restricting DNS traffic to UDP/53

C.

Implementing DNS masking on internal servers

D.

Permitting only clients from internal networks to query DNS

CompTIA CAS-005 View All Questions

CompTIA CAS-005 Summary

  • Vendor: CompTIA
  • Product: CAS-005
  • Update on: Jul 8, 2025
  • Questions: 219
Price: $52.5  $149.99
Buy Now CAS-005 PDF + Testing Engine Pack
Next
A security configure isbuilding a solution to disable weak CBC configuration for remote access connections...
A systems engineer is configuring a system baseline for servers that will provide email services.
Previous

Payments We Accept

Your purchase with ExamsVCE is safe and fast. Your products will be available for immediate download after your payment has been received.
The ExamsVCE website is protected by 256-bit SSL from McAfee, the leader in online security.

examsvce payment method

Contact Us

Copyright © 2013-2025 examsvce.com. All Rights Reserved
mcafee secure

TESTED 17 Jul 2025