CompTIA CySA+ (CS0-001) — Question 18

File integrity monitoring states the following files have been changed without a written request or approved change. The following change has been made: chmod 777 ""Rv /usr
Which of the following may be occurring?

Answer options

• A. The ownership pf /usr has been changed to the current user.
• B. Administrative functions have been locked from users.
• C. Administrative commands have been made world readable/writable.
• D. The ownership of/usr has been changed to the root user.

Correct answer: C

Explanation

The command 'chmod 777' grants read, write, and execute permissions to all users for the /usr directory, which means administrative commands can be accessed and modified by anyone, making option C correct. Options A and D incorrectly suggest ownership changes, while B is incorrect as the command does not lock administrative functions.