Instructions:

• Answer 50 questions in 15 minutes.
• If you are not ready to take this test, you can study here.
• Match each statement with the correct term.
• Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. What three commands can you use to help verify that the DNS server is functioning properly?
The dig - host - and ping commands can be used to test DNS server functionality.
generates errors under Red Hat Enterprise Linux 6
The virsh command is used to manage virtual guests.
Using the chcon command - you can change the context of a file to work with Apache.


2. Do you need to write changes to the disk when using the parted command? What about fdisk?
The yum and rpm commands are used for package management.
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.
Network address translation (NAT) maintains a table that allows the use of multiple internal IP addresses to a multiple public IP address (called address translation). It can also be used for one-to-one or one-to-many relationships as well.
You can use the remove or erase options with yum to remove a package.


3. What command can you use to create a new SSL certificate?
Version 2 is the latest and most secure version of SSH.
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.
The TFTP server uses UDP port 69.
Use the /usr/share/doc/dovecot-1.0.7/examples/mkcert.sh command after editing the /etc/pki/dovecot/dovecot-openssl.cnf file.


4. It is possible to run scripts before a kickstart installation. This is done by...
you have access to the correct packages or repositories.
The file that stores usernames and their encrypted passwords is erased and replaced with a new file.
defining a %pre section although it is rarely used
An A record translates translated hostnames to IP addresses - and a PTR record works the other way around.


5. A PXE server eases the automation process but isn't required for...
The testparm command allows you to check for syntax errors in the /etc/samba/smb.conf file.
kickstart installations to work
Using the chcon command - you can change the context of a file to work with Apache.
Enforcing during installation


6. What three components are needed to fully automate a kickstart installation?
By combining a TFTP server - PXE boot - and DHCP server - you can fully automate the kickstart installation process.
SELinux Booleans provide restrictions to different aspects of a service.
The /etc/hosts file is a local lookup file used to map IP addresses to hostnames if a DNS server isn't available.
The /var/lib/nfs/etab file is used to keep track of currently exported resources.


7. Which file shows you all the client IP addresses?
Use the yum groupinstall command to install multiple packages in a single group at once.
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.
The /var/lib/nfs/etab file is used to keep track of currently exported resources.
lvdisplay


8. What command can you use to create a file system?
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l
mkfs.ext4
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
SELinux provides enhanced granular security for the Linux operating system.


9. What is the name of the package used to install an FTP?
The nfsstat command can be used to view NFS statistics.
The chmod command is used to change the permissions of files and directories. The chown command is used to change the ownership of files and directories.
The vsftpd package is used to install an FTP server.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.


10. What are the five required directories when building RPMS?
Network address translation (NAT) maintains a table that allows the use of multiple internal IP addresses to a multiple public IP address (called address translation). It can also be used for one-to-one or one-to-many relationships as well.
The five directories are BUILD - RPMS - SOURCES - SPECS - and SRPMS.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
support for TCP Wrappers


11. What is the last rule in the iptables file?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


12. What command (and options) can be used to create a user named George with the description "Jr Admin"?
The superblock is a structure that contains metadata of the file system. If this becomes corrupt - you are in trouble.
useradd -c "Jr Admin" George
The /etc/dhcp/dhcpd.conf file is the main config file for the DHCP service.
user's home directory in the /etc/skel directory


13. What command and option do you use to view the description of Boolean values?
The VNC package for Red Hat Enterprise Linux 6 is tiger-vnc.
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l
defining a %pre section although it is rarely used
semanage boolean -l


14. What file needs to be edited so that the system will mount a file system at boot time?
An ext3 file system has journaling built in to it - whereas the ext2 file system doesn't.
The superblock is a structure that contains metadata of the file system. If this becomes corrupt - you are in trouble.
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
The /etc/fstab file.


15. The firewall service is...
The /var/log/audit/audit.log file contains all policy violations.
By using centralized authentication - you don't need to re-create or maintain multiple accounts across every system in your organization.
enabled by default
The rpm command can operate in install - query - or verify modes.


16. Most boot issues can be resolved by...
mkfs.ext4
entering rescue mode and repairing the problem.
alternatives --config mta
The nfsstat command can be used to view NFS statistics.


17. Which remote management service is installed by default?Can you name the port that it uses?
This command reboots virtual guest Client04.
The VNC package for Red Hat Enterprise Linux 6 is tiger-vnc.
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.
service named configtest


18. What command-line program can you use to check your mail?
setsebool -P nfs_export_all_rw=1
Typing the mail or mutt command allows you to read mail from the command line.
The chmod command is used to change the permissions of files and directories. The chown command is used to change the ownership of files and directories.
alternatives --config mta


19. Can you name the two commands that can be used to view the free space on the system?
The du and df commands are used to view available space on the system.
export one or all resources
The last rule is always an implicit deny statement rejecting anything that wasn't matched by previous rules.
By entering the GRUB boot menu - you can choose the a option to append something to the kernel command-line options.


20. How can virtual hosts be used?
getsebool -a | grep http
After the ntpd service is stopped - you can use the ntpdate <server> command to update/sync the time.
If you are a hosting company or want to run multiple websites/applications from a single IP address - you can use virtual hosts to accomplish this.
A web proxy can provide multiple benefits - including security - web page caching for faster load times - and load balancing.


21. A slave DNS server provides...
load balancing and redundancy benefits
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.
A virtual host is a way of hosting multiple sites using a single IP address.


22. What is the benefit of using public/private key authentication?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


23. Is it possible to share files among groups - What permissions would you set on the directory to accomplish file sharing if possible?
Use the setgid flag to create the appropriate permissions (chmod 2770).
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.
SSH is used for secure remote management of Linux systems.
The partprobe command forces the kernel to reread the partition table. You should always call it after making any changes to your system partitions.


24. What option would you use to query an installed package using the rpm command?
ifconfig
You can use the -q option to query an installed package. Combining grep and the -qa options - you can search among all installed packages on the system.
The TFTP server uses UDP port 69.
SELinux provides enhanced granular security for the Linux operating system.


25. What command can you use to query Boolean values?
A virtual host is a way of hosting multiple sites using a single IP address.
getsebool
mkfs.ext4
cat /proc/mdstat


26. What command is used to create an RPM package?
DNS uses port 53.
chkconfig—list
Use the setgid flag to create the appropriate permissions (chmod 2770).
rpmbuild


27. What command and option can you use to enable a service to start on boot?
Version 2 is the latest and most secure version of SSH.
Use the chkconfig command to enable or disable services during the boot process. The on option enables the service and off disables it.
A large warning message appears indicating that the key doesn't match the host you are connecting to. You have to remove the key/host pair from the known_hosts file to proceed.
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l


28. If you want a specific action to take place when user01 logs in to the system - which file would you edit?
A large warning message appears indicating that the key doesn't match the host you are connecting to. You have to remove the key/host pair from the known_hosts file to proceed.
You add your action to the end of the /home/user01/.bashrc file.
createrepo
The DHCP server listens on port 67 by default.


29. What command do you use to report information on quota usage?
The TFTP server uses UDP port 69.
lvdisplay
repquota
You add your action to the end of the /home/user01/.bashrc file.


30. By default - what is the path to a user's home directory?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


31. What command can you use to view NFS statistics?
The nfsstat command can be used to view NFS statistics.
SELinux Booleans provide restrictions to different aspects of a service.
A user's home directory is created under the /home directory.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.


32. The portmap service was replaced by the ______________ in Red Hat Enterprise Linux 6.
rpcbind service
The two main config files are master.cf and main.cf.
This chapter described tdbsm and smbpasswd back-end authentication.
Use the route command with the add option to create a static route.


33. Before you work with ACLs - what do you need to do to the file system?
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
cat /proc/mdstat
If you shrink a volume group or logical volume - there is a chance you could lose data depending on how much you shrink the volume.
The virsh command is used to manage virtual guests.


34. Where are Yum repository config files located?
The firewall rule is inserted into the fifth line of the iptables rules and opens up TCP port 80 (for the HTTP service) on the firewall to allow incoming connections.
service dhcpd configtest
The anonymous_enable=YES option in the main config file allows anonymous uploads.
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.


35. Through its main config file - SSH can be configured to...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


36. What commands can you use to add a client machine to an LDAP server?
A soft limit acts like an alarm - signaling you when you are reaching your limit. If you don't specify a grace period - the soft limit is the max. A hard limit is required only when a grace period exists. It is the max limit you can hit before your g
You can use the authconfig-tui command or the authconfig command.
createrepo
A swap is scratch space on your file system used as virtual memory. A swap can be created as a partition or a device file.


37. What is the name of the section used to run scripts after a kickstart installation?
Enforcing during installation
chkconfig—list
This is actually a trick question because the answer could go either way. In this chapter - we discussed only software RAID setups - in which case the answer is no. If - however - you were using a hardware RAID 5 - the answer would be yes.
By defining a %post section - you can run scripts after a kickstart installation is complete.


38. What are the two types of back-end authentication mechanisms discussed in this chapter?
The grep -v ^# /etc/vsftpd/vsftpd.conf command shows you all the options currently being used with the FTP server.
The ping command can be used to verify connectivity to another host.
Typing the mail or mutt command allows you to read mail from the command line.
This chapter described tdbsm and smbpasswd back-end authentication.


39. What command can you use to view system processes and their CPU usage?
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
You must ensure that the /boot/grub/grub.conf file has the new entry for your newly updated kernel to be able to boot into it.
Use the ps command to view processes and their CPU usage.
An A record translates translated hostnames to IP addresses - and a PTR record works the other way around.


40. What two commands are used for package management?
The /etc/dhcp/dhcpd.conf file is the main config file for the DHCP service.
generates errors under Red Hat Enterprise Linux 6
The du and df commands are used to view available space on the system.
The yum and rpm commands are used for package management.


41. In Red Hat Enterprise Linux 6 - the default for SELinux is _______________ (which can be changed after the installation completes). For Red Hat Enterprise Linux 5 - you were able to choose what mode you wanted SELinux to start in.
The user_list file can be used to limit which users have access to the FTP server.
By default - the rndc utility listens on port 953.
Enforcing during installation
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.


42. For Red Hat Enterprise Linux 6 - SELinux comes set up in enforcing mode. When installing Red Hat Enterprise Linux 5 - you have the option to...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


43. What is the difference between an A record and a PTR record?
An A record translates translated hostnames to IP addresses - and a PTR record works the other way around.
If you are a hosting company or want to run multiple websites/applications from a single IP address - you can use virtual hosts to accomplish this.
The last rule is always an implicit deny statement rejecting anything that wasn't matched by previous rules.
chkconfig sshd off


44. How would you go about creating a static route?
getsebool
run on any port you'd like (provided that port is available)
Use the route command with the add option to create a static route.
This chapter described tdbsm and smbpasswd back-end authentication.


45. What three protocols can you use to perform network installations?
By using centralized authentication - you don't need to re-create or maintain multiple accounts across every system in your organization.
useradd -c "Jr Admin" George
Uncomment the following line in the /etc/rsyslog.conf file: #$ModLoad imudp.so #$UDPServerRun 514
Network installations can be performed using the HTTP - FTP - and NFS protocols.


46. What command can you use to view mounted Samba shares?
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
getsebool -a | grep http
The smbstatus command shows you currently mounted Samba resources.
rpmbuild


47. What command is used to show all services being controlled by the xinetd daemon?
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
Using the chcon command - you can change the context of a file to work with Apache.
chkconfig xinetd --list
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.


48. What port must be opened on the firewall for DNS?
cat /proc/mdstat
DNS uses port 53.
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
The format of the /etc/shadow file is <username>:<encrypted password>:<last passwd change>:<min>:<max>:<warn>:<inactive>:<expires>:<not used>.


49. How can you list all services on the system to tell whether they will boot during startup?
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
kickstart installations to work
defining a %pre section although it is rarely used
chkconfig—list


50. Runlevel 0 ___________. Runlevel 6 reboots the system.
By defining a %post section - you can run scripts after a kickstart installation is complete.
You must open TCP ports 20 and 21 for the FTP server to function properly.
halts the system
serve both files and printers to users