Computer Hacking Forensic Investigator (CHFI v10) — Question 478

Jonathan is a network administrator who is currently testing the internal security of his network. He is attempting to hijack a session, using Ettercap, of a user connected to his Web server. Why will Jonathan not succeed?

Answer options

• A. Only an HTTPS session can be hijacked
• B. HTTP protocol does not maintain session
• C. Only FTP traffic can be hijacked
• D. Only DNS traffic can be hijacked

Correct answer: B

Explanation

The correct answer is B because the HTTP protocol does not maintain sessions inherently, meaning session hijacking is not possible in the traditional sense. Options A, C, and D are incorrect as they misrepresent the protocols that can be hijacked; HTTPS provides security features that prevent hijacking, while FTP and DNS are not relevant to this scenario.