Instructions:

• Answer 50 questions in 15 minutes.
• If you are not ready to take this test, you can study here.
• Match each statement with the correct term.
• Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. What is the benefit to using centralized authentication?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


2. How can virtual hosts be used?
Enforcing during installation
If you are a hosting company or want to run multiple websites/applications from a single IP address - you can use virtual hosts to accomplish this.
By entering the GRUB boot menu - you can choose the a option to append something to the kernel command-line options.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.


3. To export directories as resources - what file needs to be edited?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


4. What are SELinux Booleans?
SELinux Booleans provide restrictions to different aspects of a service.
By defining a %post section - you can run scripts after a kickstart installation is complete.
The nfsstat command can be used to view NFS statistics.
The three utilities are: route - ping - and nslookup.


5. What is the benefit of using public/private key authentication?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


6. What option can you change in the rsyslog config file to accept remote logs (acting as a centralized logging server)?
This command reboots virtual guest Client04.
You must open TCP ports 20 and 21 for the FTP server to function properly.
Uncomment the following line in the /etc/rsyslog.conf file: #$ModLoad imudp.so #$UDPServerRun 514
The rndc utility provides a method for managing the DNS server remotely and securely.


7. Which remote management service is installed by default?Can you name the port that it uses?
Enforcing during installation
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.
The grep -v ^# /etc/vsftpd/vsftpd.conf command shows you all the options currently being used with the FTP server.
user's home directory in the /etc/skel directory


8. What is the biggest benefit to using LVM over basic partitions?
You have the flexibility to resize and add new volumes on the fly. With basic partitions - any time that you want to make a change - you need to destroy the partition and create it again.
The /etc/fstab file.
By default - the rndc utility listens on port 953.
getfacl


9. Where are Yum repository config files located?
You add your action to the end of the /home/user01/.bashrc file.
A virtual host is a way of hosting multiple sites using a single IP address.
Use the yum groupinstall command to install multiple packages in a single group at once.
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.


10. What is the xinetd service used for?
By using centralized authentication - you don't need to re-create or maintain multiple accounts across every system in your organization.
When the system starts up again - the cron service will run any jobs that were missed while the system was off. On Red Hat Enterprise Linux 5 - the anacron service handles this functionality.
The xinetd daemon is used to control and/or run multiple system services. One example is a TFTP server.
A gateway is used as an entry and exit point for a subnet on a network. To contact hosts outside your subnet - you need to pass through a gateway.


11. Which file contains all messages generated during installation that can be used for troubleshooting if the need arises?
The /var/lib/nfs/etab file is used to keep track of currently exported resources.
The install.log.syslog file contains messages that are generated during the installation. If you run into trouble during the installation - this is a good place to start.
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.
You should never use the -U option because it erases the prior kernel when updating. This leaves you with no fallback kernel should your system not boot properly.


12. What command would you use to create a group - to add the user George to the group?
The TFTP server uses UDP port 69.
VNC is used to control a remote desktop session.
The nfsstat command can be used to view NFS statistics.
Use the groupadd command to create a group. You can then add user George with the following: usermod -G <group name> George


13. What command can you use to query information from the kernel about RAID arrays?
used for kickstart and/or network installs
The four types of DNS servers are master - slave - caching-only - and forwarding.
cat /proc/mdstat
The mount command lists all currently mounted file systems.


14. What is the /var/lib/nfs/etab file used for?
The tcpdump command is used to monitor network connections on different interfaces.
This chapter described tdbsm and smbpasswd back-end authentication.
The /var/lib/nfs/etab file is used to keep track of currently exported resources.
getsebool


15. Which file shows you all the client IP addresses?
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.
support TCP Wrappers
The grep -v ^# /etc/vsftpd/vsftpd.conf command shows you all the options currently being used with the FTP server.
The three utilities are: route - ping - and nslookup.


16. What command can you use to change the context of files?
Public/private key authentication provides an additional layer of security because you need the correct key instead of just knowing someone's password. Passwords combined with public/private keys take the security one additional step.
chcon
No. Red Hat Enterprise Linux 6 uses a different key to sign its packages.
Physical volumes - volume groups - and logical volumes.


17. What command can you use to create a new SSL certificate?
The file that stores usernames and their encrypted passwords is erased and replaced with a new file.
Use the /usr/share/doc/dovecot-1.0.7/examples/mkcert.sh command after editing the /etc/pki/dovecot/dovecot-openssl.cnf file.
A user's home directory is created under the /home directory.
used for kickstart and/or network installs


18. What command displays your current interfaces and IP address?
The ping command can be used to verify connectivity to another host.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
If you shrink a volume group or logical volume - there is a chance you could lose data depending on how much you shrink the volume.
ifconfig


19. What port does the DHCP server listen on by default?
The user_list file can be used to limit which users have access to the FTP server.
The NFS service uses TCP port 2049 by default.
The DHCP server listens on port 67 by default.
mkfs.ext4


20. What command and options can you use to update the time?
You should never use the -U option because it erases the prior kernel when updating. This leaves you with no fallback kernel should your system not boot properly.
SELinux provides enhanced granular security for the Linux operating system.
After the ntpd service is stopped - you can use the ntpdate <server> command to update/sync the time.
The rpm command can operate in install - query - or verify modes.


21. Through its main config file - SSH can be configured to...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


22. What command can you use to monitor and troubleshoot network connections?
The two main config files are master.cf and main.cf.
The tcpdump command is used to monitor network connections on different interfaces.
The smbstatus command shows you currently mounted Samba resources.
The lftp command can be used on a client to test FTP server connections.


23. The ______________ for Red Hat Enterprise Linux 5 or 6 includes the use of LVM.
This chapter described tdbsm and smbpasswd back-end authentication.
load balancing and redundancy benefits
Enforcing during installation
Use the top command to view CPU and memory usage.


24. What two ports should be opened on the firewall for the FTP server to function properly?
The mount command lists all currently mounted file systems.
Enforcing during installation
You must open TCP ports 20 and 21 for the FTP server to function properly.
halts the system


25. What port does the rndc utility listen on by default?
The anonymous_enable=YES option in the main config file allows anonymous uploads.
By default - the rndc utility listens on port 953.
rpmbuild
The /etc/dhcp/dhcpd.conf file is the main config file for the DHCP service.


26. The firewall service is...
Dovecot supports the POP3 - POP3S - IMAP - and IMAPS protocols.
A soft limit acts like an alarm - signaling you when you are reaching your limit. If you don't specify a grace period - the soft limit is the max. A hard limit is required only when a grace period exists. It is the max limit you can hit before your g
enabled by default
Use the yum groupinstall command to install multiple packages in a single group at once.


27. What is a swap? Is it created as a partition or device file?
Kickstart supports both basic and advanced partitioning (RAID/LVM).
A swap is scratch space on your file system used as virtual memory. A swap can be created as a partition or a device file.
Apache uses port 80 for HTTP and port 443 for HTTPS.
The DHCP server listens on port 67 by default.


28. What command can you use to view system processes and their CPU usage?
Use the ps command to view processes and their CPU usage.
You can use the remove or erase options with yum to remove a package.
The smbpasswd command is used to create Samba users.
via the command line


29. What command is used to create a user for Samba?
atq
user's home directory in the /etc/skel directory
The smbpasswd command is used to create Samba users.
The superblock is a structure that contains metadata of the file system. If this becomes corrupt - you are in trouble.


30. Do you need to write changes to the disk when using the parted command? What about fdisk?
SSH is used for secure remote management of Linux systems.
PAM is used as a modular way to leverage security. In this chapter - the main function we discussed was for managing password policies and complexity.
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.
load balancing and redundancy benefits


31. What port on the firewall needs to be open for the TFTP server to work?
The /var/lib/nfs/etab file is used to keep track of currently exported resources.
service named configtest
By default - Squid runs on port 3128.
The TFTP server uses UDP port 69.


32. What command can you use to view mounted Samba shares?
The -t nfs option is used with the mount command to mount NFS resources.
The smbstatus command shows you currently mounted Samba resources.
setsebool -P nfs_export_all_rw=1
A user's home directory is created under the /home directory.


33. What does the partprobe command do?
The DHCP server listens on port 67 by default.
DNS uses port 53.
Apache uses port 80 for HTTP and port 443 for HTTPS.
The partprobe command forces the kernel to reread the partition table. You should always call it after making any changes to your system partitions.


34. How can you display all virtual guests after they're connected to a hypervisor?
Apache uses port 80 for HTTP and port 443 for HTTPS.
choose which mode you'd like it to operate in
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
RAID 0 (Striping) - RAID 1 (Mirror) - and RAID 5 (Striping with parity).


35. What command can you use to test connectivity to another host?
The yum and rpm commands are used for package management.
The ping command can be used to verify connectivity to another host.
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.
enabled by default


36. What are the five required directories when building RPMS?
The five directories are BUILD - RPMS - SOURCES - SPECS - and SRPMS.
Apache uses port 80 for HTTP and port 443 for HTTPS.
enabled by default
The /etc/dhcp/dhcpd.conf file is the main config file for the DHCP service.


37. What critical step must you take after updating the kernel to a newer version?
You must ensure that the /boot/grub/grub.conf file has the new entry for your newly updated kernel to be able to boot into it.
export one or all resources
You must open TCP ports 20 and 21 for the FTP server to function properly.
Use the top command to view CPU and memory usage.


38. What command can you use to manage system services?
The service command is used to start - stop - and manage system services.
setsebool -P nfs_export_all_rw=1
This command sets the eth1 interface to have a static IP address of 172.168.1.100 with a netmask of 255.255.255.0.
By defining a %post section - you can run scripts after a kickstart installation is complete.


39. What is the difference between an ext2 and ext3 file system?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


40. If a package is built on an RHEL6 system and deployed to a custom RHEL5 repository - are RHEL5 systems able to use it?
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
No. Red Hat Enterprise Linux 6 uses a different key to sign its packages.
halts the system
You must ensure that the /boot/grub/grub.conf file has the new entry for your newly updated kernel to be able to boot into it.


41. The ____________ is available for each share.
The /var/log/audit/audit.log file contains all policy violations.
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.
used for kickstart and/or network installs
browseable option


42. What command disables the SSH service from running when the system boots?
export one or all resources
chkconfig sshd off
The format of the /etc/shadow file is <username>:<encrypted password>:<last passwd change>:<min>:<max>:<warn>:<inactive>:<expires>:<not used>.
you have access to the correct packages or repositories.


43. There are four types of DNS servers. Name them.
The install.log.syslog file contains messages that are generated during the installation. If you run into trouble during the installation - this is a good place to start.
The four types of DNS servers are master - slave - caching-only - and forwarding.
The /etc/fstab file.
The rndc utility provides a method for managing the DNS server remotely and securely.


44. What command is used to show all services being controlled by the xinetd daemon?
The /var/lib/nfs/etab file is used to keep track of currently exported resources.
By default - the rndc utility listens on port 953.
chkconfig xinetd --list
The rpm command can operate in install - query - or verify modes.


45. To create a RAID or LVM partition using kickstart
user's home directory in the /etc/skel directory
export one or all resources
Use the chkconfig command to enable or disable services during the boot process. The on option enables the service and off disables it.
Kickstart supports both basic and advanced partitioning (RAID/LVM).


46. What does it mean if you ping a host and you receive the response Destination Unreachable?
You have the flexibility to resize and add new volumes on the fly. With basic partitions - any time that you want to make a change - you need to destroy the partition and create it again.
Use the route command with the add option to create a static route.
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.
The last rule is always an implicit deny statement rejecting anything that wasn't matched by previous rules.


47. What command can you use to validate the syntax of the Apache config file?
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.
The lastlog and faillog commands are used to view user login-related events?
If you shrink a volume group or logical volume - there is a chance you could lose data depending on how much you shrink the volume.
service httpd configtest


48. Is it possible to share files among groups - What permissions would you set on the directory to accomplish file sharing if possible?
Upstart. The Upstart utility is now used in the boot process for Red Hat Enterprise Linux 6.
Use the setgid flag to create the appropriate permissions (chmod 2770).
The last rule is always an implicit deny statement rejecting anything that wasn't matched by previous rules.
Dovecot supports the POP3 - POP3S - IMAP - and IMAPS protocols.


49. What is VNC?
The anonymous_enable=YES option in the main config file allows anonymous uploads.
VNC is used to control a remote desktop session.
RAID 0 (Striping) - RAID 1 (Mirror) - and RAID 5 (Striping with parity).
You can use the -q option to query an installed package. Combining grep and the -qa options - you can search among all installed packages on the system.


50. What command is used to change the mail server from Sendmail to Postfix (useful only if you have both installed)?
The /var/log/audit/audit.log file contains all policy violations.
alternatives --config mta
The /etc/hosts file is a local lookup file used to map IP addresses to hostnames if a DNS server isn't available.
A user's home directory is created under the /home directory.