Instructions:

• Answer 50 questions in 15 minutes.
• If you are not ready to take this test, you can study here.
• Match each statement with the correct term.
• Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. The firewall service is...
RAID 0 (Striping) - RAID 1 (Mirror) - and RAID 5 (Striping with parity).
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
chkconfig sshd off
enabled by default


2. What happens if you call the command from question 3 with the -c option after it has already been run?
You can use the -q option to query an installed package. Combining grep and the -qa options - you can search among all installed packages on the system.
The file that stores usernames and their encrypted passwords is erased and replaced with a new file.
You add your action to the end of the /home/user01/.bashrc file.
By using centralized authentication - you don't need to re-create or maintain multiple accounts across every system in your organization.


3. The portmap service was replaced by the ______________ in Red Hat Enterprise Linux 6.
Use the groupadd command to create a group. You can then add user George with the following: usermod -G <group name> George
getsebool -a | grep http
If you are a hosting company or want to run multiple websites/applications from a single IP address - you can use virtual hosts to accomplish this.
rpcbind service


4. What are the three modes in which the rpm command can operate?
By default - Squid runs on port 3128.
you have access to the correct packages or repositories.
The rpm command can operate in install - query - or verify modes.
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.


5. What command can you use to test the config files before starting the DNS service?
You should never use the -U option because it erases the prior kernel when updating. This leaves you with no fallback kernel should your system not boot properly.
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
service named configtest
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.


6. What command and option do you use to view the description of Boolean values?
An ext3 file system has journaling built in to it - whereas the ext2 file system doesn't.
semanage boolean -l
support for TCP Wrappers
Enforcing during installation


7. Can you put your /boot partition on a RAID 5 array?
Enforcing during installation
The lastlog and faillog commands are used to view user login-related events?
This is actually a trick question because the answer could go either way. In this chapter - we discussed only software RAID setups - in which case the answer is no. If - however - you were using a hardware RAID 5 - the answer would be yes.
The virsh command is used to manage virtual guests.


8. What option is used with both the fdisk and parted commands to display the current partition tables?
The print option is used with both the fdisk and parted commands to display the current partition tables.
You can use the authconfig-tui command or the authconfig command.
support TCP Wrappers
You must open TCP ports 20 and 21 for the FTP server to function properly.


9. A PXE server eases the automation process but isn't required for...
export one or all resources
kickstart installations to work
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.


10. What two commands are special for dealing with user login events?
atq
The NFS service uses TCP port 2049 by default.
The lastlog and faillog commands are used to view user login-related events?
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l


11. How can you list all services on the system to tell whether they will boot during startup?
chkconfig—list
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
The TFTP server uses UDP port 69.
The file system where quotas will be implemented must be mounted with the usrquota and grpquota options before quotas will work properly.


12. How would you disable SELinux protection for NFS - allowing shares to be read/write?
Using the chcon command - you can change the context of a file to work with Apache.
setsebool -P nfs_export_all_rw=1
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.
schedule one-time-only jobs


13. Red Hat Enterprise Linux 6 is the only version that officially supports _______
LUKS encryption
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.
chcon
amount of RAM


14. What port does the SMTP service run on?
ifconfig
The SMTP service runs on TCP port 110.
The lastlog and faillog commands are used to view user login-related events?
By entering the GRUB boot menu - you can choose the a option to append something to the kernel command-line options.


15. How can you display all virtual guests after they're connected to a hypervisor?
The ping command can be used to verify connectivity to another host.
The rndc utility provides a method for managing the DNS server remotely and securely.
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
The tcpdump command is used to monitor network connections on different interfaces.


16. What command-line program can you use to check your mail?
Typing the mail or mutt command allows you to read mail from the command line.
The two main config files are master.cf and main.cf.
Use the top command to view CPU and memory usage.
enabled by default


17. What command can you use to query Boolean values?
getsebool
run on any port you'd like (provided that port is available)
amount of RAM
you have access to the correct packages or repositories.


18. What is the biggest benefit to using LVM over basic partitions?
service httpd configtest
Version 2 is the latest and most secure version of SSH.
You have the flexibility to resize and add new volumes on the fly. With basic partitions - any time that you want to make a change - you need to destroy the partition and create it again.
SSH is used for secure remote management of Linux systems.


19. In Red Hat Enterprise Linux 6 - the default for SELinux is _______________ (which can be changed after the installation completes). For Red Hat Enterprise Linux 5 - you were able to choose what mode you wanted SELinux to start in.
Enforcing during installation
PAM is used as a modular way to leverage security. In this chapter - the main function we discussed was for managing password policies and complexity.
Using the chcon command - you can change the context of a file to work with Apache.
A soft limit acts like an alarm - signaling you when you are reaching your limit. If you don't specify a grace period - the soft limit is the max. A hard limit is required only when a grace period exists. It is the max limit you can hit before your g


20. What command can you use to test connectivity to another host?
The ping command can be used to verify connectivity to another host.
By combining a TFTP server - PXE boot - and DHCP server - you can fully automate the kickstart installation process.
You can use the authconfig-tui command or the authconfig command.
The rndc utility provides a method for managing the DNS server remotely and securely.


21. What does it mean if you ping a host and you receive the response Destination Unreachable?
amount of RAM
You can use the authconfig-tui command or the authconfig command.
createrepo
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.


22. What directory is used to represent the virtual file system created by the kernel?
Public/private key authentication provides an additional layer of security because you need the correct key instead of just knowing someone's password. Passwords combined with public/private keys take the security one additional step.
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
The VNC package for Red Hat Enterprise Linux 6 is tiger-vnc.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.


23. The INPUT chain being used is the default under Red Hat Enterprise Linux 5. This rule...
If you shrink a volume group or logical volume - there is a chance you could lose data depending on how much you shrink the volume.
The anonymous_enable=YES option in the main config file allows anonymous uploads.
generates errors under Red Hat Enterprise Linux 6
The partprobe command forces the kernel to reread the partition table. You should always call it after making any changes to your system partitions.


24. What are the three items that make up LVM?
defining a %pre section although it is rarely used
Physical volumes - volume groups - and logical volumes.
SELinux Booleans provide restrictions to different aspects of a service.
Uncomment the following line in the /etc/rsyslog.conf file: #$ModLoad imudp.so #$UDPServerRun 514


25. What is the point of using SELinux?
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
After the ntpd service is stopped - you can use the ntpdate <server> command to update/sync the time.
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
SELinux provides enhanced granular security for the Linux operating system.


26. What port does the rndc utility listen on by default?
generates errors under Red Hat Enterprise Linux 6
By default - the rndc utility listens on port 953.
You can use the remove or erase options with yum to remove a package.
The yum and rpm commands are used for package management.


27. To grow a file system
Use the resize2fs command to grow a file system.
The -t nfs option is used with the mount command to mount NFS resources.
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.


28. What three commands can you use to help verify that the DNS server is functioning properly?
The nfsstat command can be used to view NFS statistics.
The dig - host - and ping commands can be used to test DNS server functionality.
semanage boolean -l
The du and df commands are used to view available space on the system.


29. Place all files you want added to a _______________ during creation.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


30. What two commands are used for package management?
No. Red Hat Enterprise Linux 6 uses a different key to sign its packages.
Use the chkconfig command to enable or disable services during the boot process. The on option enables the service and off disables it.
The yum and rpm commands are used for package management.
setsebool -P nfs_export_all_rw=1


31. By default - what is the path to a user's home directory?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


32. What file is used to maintain custom parameters for the kernel during system boot?
If you are a hosting company or want to run multiple websites/applications from a single IP address - you can use virtual hosts to accomplish this.
user's home directory in the /etc/skel directory
chkconfig sshd off
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.


33. What are the five required directories when building RPMS?
The rdnc-confgen command generates an rndc.conf file for the rndc utility.
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
cat /proc/mdstat
The five directories are BUILD - RPMS - SOURCES - SPECS - and SRPMS.


34. What is the superblock used for?
No. Red Hat Enterprise Linux 6 uses a different key to sign its packages.
The superblock is a structure that contains metadata of the file system. If this becomes corrupt - you are in trouble.
The SMTP service runs on TCP port 110.
If you shrink a volume group or logical volume - there is a chance you could lose data depending on how much you shrink the volume.


35. What are SELinux Booleans?
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.
You should never use the -U option because it erases the prior kernel when updating. This leaves you with no fallback kernel should your system not boot properly.
Network address translation (NAT) maintains a table that allows the use of multiple internal IP addresses to a multiple public IP address (called address translation). It can also be used for one-to-one or one-to-many relationships as well.
SELinux Booleans provide restrictions to different aspects of a service.


36. How can you change the security context of a directory to work with Apache?
The five directories are BUILD - RPMS - SOURCES - SPECS - and SRPMS.
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.
Using the chcon command - you can change the context of a file to work with Apache.
mkfs.ext4


37. What does S12rsyslog in the /etc/rc.d/rc2.d directory mean?
alternatives --config mta
When the system enters into runlevel 2 - the rsyslog service has a priority of 12 when starting. Anything with a lower number (or the same number and lower first letter) starts before the rsyslog service.
semanage boolean -l
A gateway is used as an entry and exit point for a subnet on a network. To contact hosts outside your subnet - you need to pass through a gateway.


38. What is the difference between an ext2 and ext3 file system?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


39. GRUB has three stages. Can you name them?
The tcpdump command is used to monitor network connections on different interfaces.
A web proxy can provide multiple benefits - including security - web page caching for faster load times - and load balancing.
The vsftpd package is used to install an FTP server.
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo


40. What three protocols can you use to perform network installations?
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.
Network installations can be performed using the HTTP - FTP - and NFS protocols.
you have access to the correct packages or repositories.
chcon


41. Most boot issues can be resolved by...
entering rescue mode and repairing the problem.
The rdnc-confgen command generates an rndc.conf file for the rndc utility.
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.
A virtual host is a way of hosting multiple sites using a single IP address.


42. What two ports should be opened on the firewall for the FTP server to function properly?
The /var/lib/nfs/etab file is used to keep track of currently exported resources.
You must open TCP ports 20 and 21 for the FTP server to function properly.
When the system starts up again - the cron service will run any jobs that were missed while the system was off. On Red Hat Enterprise Linux 5 - the anacron service handles this functionality.
rpmbuild


43. What happens if a host changes its IP address and the keys don't match?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


44. Should you allow remote root access - Why or why not?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


45. What is the virsh command used for?
Use the groupadd command to create a group. You can then add user George with the following: usermod -G <group name> George
The /var/log/audit/audit.log file contains all policy violations.
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
The virsh command is used to manage virtual guests.


46. What file needs to be edited so that the system will mount a file system at boot time?
You must open TCP ports 20 and 21 for the FTP server to function properly.
The TFTP server uses UDP port 69.
cat /proc/mdstat
The /etc/fstab file.


47. How would you go about creating a static route?
The grep -v ^# /etc/vsftpd/vsftpd.conf command shows you all the options currently being used with the FTP server.
getsebool
chkconfig sshd off
Use the route command with the add option to create a static route.


48. What command is used to create a user for Samba?
The smbpasswd command is used to create Samba users.
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
When the system enters into runlevel 2 - the rsyslog service has a priority of 12 when starting. Anything with a lower number (or the same number and lower first letter) starts before the rsyslog service.
user's home directory in the /etc/skel directory


49. What command can be used to view the queue for at service jobs?
atq
Use the route command with the add option to create a static route.
The VNC package for Red Hat Enterprise Linux 6 is tiger-vnc.
The /var/log/audit/audit.log file contains all policy violations.


50. What is the /etc/vsftpd/user_list file used for?
Enforcing during installation
The user_list file can be used to limit which users have access to the FTP server.
You can use the authconfig-tui command or the authconfig command.
The mount command lists all currently mounted file systems.