CompTIA Network+ (N10-007) — Question 312

A technician is reviewing network device logs in an attempt to trace an attack that occurred on the network. Which of the following protocols would affect whether or not the technician can properly trace the attack through the network using the logs?

Answer options

• A. HTTP
• B. SMTP
• C. NTP
• D. RDP

Correct answer: C

Explanation

The correct answer is C. NTP (Network Time Protocol) is crucial as it ensures that timestamps on logs are synchronized across devices, enabling accurate tracking of events. The other protocols, HTTP, SMTP, and RDP, do not play a direct role in timestamp synchronization, which is essential for tracing the sequence of events during an attack.