Certified Ethical Hacker (CEH v12) — Question 69

By performing a penetration test, you gained access under a user account. During the test, you established a connection with your own machine via the SMB service and occasionally entered your login and password in plaintext.
Which file do you have to clean to clear the password?

Answer options

• A. .xsession-log
• B. .profile
• C. .bashrc
• D. .bash_history

Correct answer: D

Explanation

The correct answer is D, .bash_history, because this file logs the commands entered in the bash shell, including any plaintext passwords. The other files, such as .xsession-log, .profile, and .bashrc, are used for different purposes and do not store command history in the same way.