An administrator sees that a runtime audit has been generated for a host.
The audit message is:
“Service postfix attempted to obtain capability SHELL by executing /bin/sh /usr/libexec/postfix/postfix-script.stop. Low severity audit, event is automatically added to the runtime model”
Which runtime host policy rule is the root cause for this runtime audit?
A . Custom rule with specific configuration for file integrity
B . Custom rule with specific configuration for networking
C . Default rule that alerts on capabilities
D . Default rule that alerts on suspicious runtime behavior
Answer: D
Latest PCCSE Dumps Valid Version with 85 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund