Linux Foundation Exam CKS Topic 1 Question 59 Discussion

Actual exam question for Linux Foundation's CKS exam

Question #: 59
Topic #: 1

[All CKS Questions]

Using the runtime detection tool Falco, Analyse the container behavior for at least 20 seconds, using filters that detect newly spawning and executing processes in a single container of Nginx.

store the incident file art /opt/falco-incident.txt, containing the detected incidents. one per line, in the format

[timestamp],[uid],[processName]

ASend us your feedback on it.

BSend us your

Show Suggested Answer

Suggested Answer: A

by Naomi at Jul 05, 2024, 10:46 AM

Limited Time Offer

25%

Off

Get Premium CKS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Kris

3 days ago

I think it's a practical question that tests our knowledge of runtime detection tools.

upvoted 0 times

...

Mica

5 days ago

I found the question about using Falco to analyze container behavior interesting.

upvoted 0 times

...