SANS SEC504: Hacker Tools, Techniques and Incident Handling — Question 20

Which of the following is a reason to implement security logging on a DNS server?

Answer options

• A. For preventing malware attacks on a DNS server
• B. For measuring a DNS server's performance
• C. For monitoring unauthorized zone transfer
• D. For recording the number of queries resolved

Correct answer: C

Explanation

The correct answer, C, is important because monitoring unauthorized zone transfers helps to secure the DNS server from potential data breaches. Options A and B are incorrect as they do not directly relate to security logging, and option D, while useful for performance analysis, does not focus on security aspects.