GIAC Exam GCCC Topic 10 Question 68 Discussion

Actual exam question for GIAC's GCCC exam

Question #: 68
Topic #: 10

[All GCCC Questions]

An organization has implemented a control for Controlled Use of Administrative Privileges. They are collecting audit data for each login, logout, and location for the root account of their MySQL server, but they are unable to attribute each of these logins to a specific user. What action can they take to rectify this?

AForce the root account to only be accessible from the system console.

BTurn on SELinux and user process accounting for the MySQL server.

CForce user accounts to use 'sudo' f or privileged use.

DBlacklist client applications from being run in privileged mode.

Show Suggested Answer

Suggested Answer: D

by Chauncey at Mar 07, 2025, 08:36 AM

Limited Time Offer

25%

Off

Get Premium GCCC Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ceola

4 days ago

Option A seems like the best solution to me. By forcing the root account to only be accessible from the system console, they can ensure that all logins are properly attributed to a specific user.

upvoted 0 times

...

Cletus

9 days ago

I see both points, but I think option A could also work. By forcing the root account to only be accessible from the system console, it limits who can login and helps with attribution.

upvoted 0 times

...

Terrilyn

13 days ago

I disagree, I believe option C is the way to go. Forcing user accounts to use 'sudo' for privileged use will help track who is accessing the root account.

upvoted 0 times

...

Miss

16 days ago

I think option B is the best choice. Turning on SELinux and user process accounting can help attribute logins to specific users.

upvoted 0 times

...