Exam SY0-601 topic 1 question 432 discussion

A. is indeed correct but if you don't want to look dumb just use grep command, cat is not needed : ' grep "10.1.1.1" /var/messages '

A is correct The correct command to search the log named /var/messages for events associated with a workstation with the IP address 10.1.1.1 is: cat /var/messages | grep 10.1.1.1 Option A is the correct answer as it uses the cat command to display the contents of the /var/messages log file and pipes the output to the grep command, which searches for any lines that contain the IP address "10.1.1.1". This will show all log entries that contain that IP address. Option B is incorrect because the grep command should come before the cat command to search for the IP address in the log file. Option C is incorrect because the grep command should be used to search for the IP address, not the log file. Option D is incorrect because the cat command is used to display the contents of a file, not to search for information within it.

I'm finding that CompTIA knows nothing about Linux. Probably just using whatever a quick Google search displays.

This command uses the cat command to display the contents of the /var/messages log file, and pipes the output to the grep command to search for the IP address 10.1.1.1. The grep command will then display any lines in the log file that contain the specified IP address.

To search the log named /var/messages for any events that were associated with a workstation with the IP address 10.1.1.1, the security operations technician could use the command cat /var/messages | grep 10.1.1.1. This command uses the cat command to display the contents of the /var/messages file and pipes (|) the output to the grep command, which searches for lines containing the specified IP address.