Which mechanism allows log files to be sent to a central server for storage?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Study for the EC-Council Certified Security Specialist (ECSS) Test. Enhance your skills with flashcards and multiple-choice questions; each question provides hints and explanations. Prepare confidently for your exam!

Multiple Choice

Which mechanism allows log files to be sent to a central server for storage?

Explanation:
Collecting logs from multiple sources to a single place is best done with a centralized log transport mechanism. Syslog is designed exactly for this purpose: it standardizes how log messages are generated and sent to a central syslog server so they can be stored, rotated, and analyzed in one location. It’s widely supported across devices and applications, and it can use UDP for lightweight delivery or TCP (and TLS in newer implementations) for reliable, secure transmission. Email forwarding can carry log data, but it isn’t a scalable or consistent method for automated central logging and requires additional parsing and handling. FTP drop would only move files or archives, not provide a continuous stream of log events to a central repository. Local storage keeps logs on the originating device, so centralized storage isn’t achieved without an extra transfer step.

Collecting logs from multiple sources to a single place is best done with a centralized log transport mechanism. Syslog is designed exactly for this purpose: it standardizes how log messages are generated and sent to a central syslog server so they can be stored, rotated, and analyzed in one location. It’s widely supported across devices and applications, and it can use UDP for lightweight delivery or TCP (and TLS in newer implementations) for reliable, secure transmission.

Email forwarding can carry log data, but it isn’t a scalable or consistent method for automated central logging and requires additional parsing and handling. FTP drop would only move files or archives, not provide a continuous stream of log events to a central repository. Local storage keeps logs on the originating device, so centralized storage isn’t achieved without an extra transfer step.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy