Certified Ethical Hacker (CEH v10) — Question 127

You have successfully logged on a Linux system. You want to now cover your track. Your login attempt may be logged on several files located in /var/log. Which file does NOT belong to the list:

Answer options

• A. wtmp
• B. user.log
• C. btmp
• D. auth.log

Correct answer: B

Explanation

The correct answer is B, as 'user.log' is not a standard log file in the /var/log directory for tracking login attempts. The other options, 'wtmp', 'btmp', and 'auth.log', are all legitimate log files that record user login activities and authentication attempts.