What is considered a best practice for file integrity monitoring?

Monitoring server OS binaries to detect unapproved changes is considered a best practice for file integrity monitoring because it focuses on the critical aspects of a system's security posture. The integrity of operating system binaries is vital since any unauthorized modifications can indicate compromises, such as malware installation or configuration changes by attackers. By keeping track of these binaries, organizations can quickly identify unexpected changes and respond appropriately to potential threats.

This practice ensures that the core components of the operating system are kept in a known, secure state, thus minimizing vulnerabilities that could be exploited. It is essential for maintaining the integrity and reliability of server operations, especially in environments where uptime and security are paramount.

The other options, while they may involve security monitoring practices, do not specifically target the critical area of OS binaries, thus lacking the focused approach that is foundational to effective file integrity monitoring.