SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
RHCSA
Start Test
Study First
Subjects
:
certifications
,
it-skills
,
rhcsa
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. What is a virtual host?
setsebool -P nfs_export_all_rw=1
This chapter described tdbsm and smbpasswd back-end authentication.
A virtual host is a way of hosting multiple sites using a single IP address.
RAID 0 (Striping) - RAID 1 (Mirror) - and RAID 5 (Striping with parity).
2. What command can you use to check the config file of the DHCP server?
rpcbind service
service dhcpd configtest
Kickstart supports both basic and advanced partitioning (RAID/LVM).
run on any port you'd like (provided that port is available)
3. What command can you use to query Boolean values?
The file that stores usernames and their encrypted passwords is erased and replaced with a new file.
getsebool
run on any port you'd like (provided that port is available)
You add your action to the end of the /home/user01/.bashrc file.
4. What three protocols can you use to perform network installations?
SSH is used for secure remote management of Linux systems.
The service command is used to start - stop - and manage system services.
The rndc utility provides a method for managing the DNS server remotely and securely.
Network installations can be performed using the HTTP - FTP - and NFS protocols.
5. What command can you use to view NFS statistics?
chcon
An ext3 file system has journaling built in to it - whereas the ext2 file system doesn't.
The nfsstat command can be used to view NFS statistics.
The last rule is always an implicit deny statement rejecting anything that wasn't matched by previous rules.
6. What is the format of the /etc/shadow file?
useradd -c "Jr Admin" George
atq
The format of the /etc/shadow file is <username>:<encrypted password>:<last passwd change>:<min>:<max>:<warn>:<inactive>:<expires>:<not used>.
The DHCP server listens on port 67 by default.
7. What is the superblock used for?
The superblock is a structure that contains metadata of the file system. If this becomes corrupt - you are in trouble.
The rpm command can operate in install - query - or verify modes.
You can use the remove or erase options with yum to remove a package.
getsebool -a | grep http
8. What command can you use to monitor and troubleshoot network connections?
An A record translates translated hostnames to IP addresses - and a PTR record works the other way around.
The tcpdump command is used to monitor network connections on different interfaces.
chkconfig xinetd --list
service dhcpd configtest
9. It is possible to run scripts before a kickstart installation. This is done by...
PAM is used as a modular way to leverage security. In this chapter - the main function we discussed was for managing password policies and complexity.
A large warning message appears indicating that the key doesn't match the host you are connecting to. You have to remove the key/host pair from the known_hosts file to proceed.
defining a %pre section although it is rarely used
Uncomment the following line in the /etc/rsyslog.conf file: #$ModLoad imudp.so #$UDPServerRun 514
10. Can you name three utilities that can be used for network or DNS client troubleshooting?
The ping command can be used to verify connectivity to another host.
Use the chkconfig command to enable or disable services during the boot process. The on option enables the service and off disables it.
The three utilities are: route - ping - and nslookup.
defining a %pre section although it is rarely used
11. A service needs to have _______________ to be able to use it.
Dovecot supports the POP3 - POP3S - IMAP - and IMAPS protocols.
The ping command can be used to verify connectivity to another host.
support for TCP Wrappers
For Apache to run a secure site - the mod_ssl package is required to be installed.
12. GRUB has three stages. Can you name them?
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
The xinetd daemon is used to control and/or run multiple system services. One example is a TFTP server.
Typing the mail or mutt command allows you to read mail from the command line.
The smbpasswd command is used to create Samba users.
13. What client-side command can you use to test your FTP server connection?
entering rescue mode and repairing the problem.
The firewall rule is inserted into the fifth line of the iptables rules and opens up TCP port 80 (for the HTTP service) on the firewall to allow incoming connections.
RAID 0 (Striping) - RAID 1 (Mirror) - and RAID 5 (Striping with parity).
The lftp command can be used on a client to test FTP server connections.
14. What option can you change in the rsyslog config file to accept remote logs (acting as a centralized logging server)?
Use the setgid flag to create the appropriate permissions (chmod 2770).
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.
Uncomment the following line in the /etc/rsyslog.conf file: #$ModLoad imudp.so #$UDPServerRun 514
The htpasswd command can be used to password-protect a web page.
15. What is the default port that Squid runs on?
This command reboots virtual guest Client04.
The -t nfs option is used with the mount command to mount NFS resources.
By default - Squid runs on port 3128.
Public/private key authentication provides an additional layer of security because you need the correct key instead of just knowing someone's password. Passwords combined with public/private keys take the security one additional step.
16. What does the testparm command do?
The testparm command allows you to check for syntax errors in the /etc/samba/smb.conf file.
choose which mode you'd like it to operate in
The rpm command can operate in install - query - or verify modes.
getsebool -a | grep http
17. If you want a specific action to take place when user01 logs in to the system - which file would you edit?
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
service dhcpd configtest
You add your action to the end of the /home/user01/.bashrc file.
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
18. What two commands are special for dealing with user login events?
The lastlog and faillog commands are used to view user login-related events?
The TFTP server uses UDP port 69.
SELinux Booleans provide restrictions to different aspects of a service.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
19. Editing the /etc/xinetd.d/tftp file and enabling the service are the same as running the chkconfig tftp on command. Both of these actions...
The ping command can be used to verify connectivity to another host.
The du and df commands are used to view available space on the system.
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
have the same effect
20. What is PAM used for?
LUKS encryption
An A record translates translated hostnames to IP addresses - and a PTR record works the other way around.
Enforcing during installation
PAM is used as a modular way to leverage security. In this chapter - the main function we discussed was for managing password policies and complexity.
21. What happens if a host changes its IP address and the keys don't match?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
22. How would you view all Boolean options for the HTTP service?
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.
The testparm command allows you to check for syntax errors in the /etc/samba/smb.conf file.
getsebool -a | grep http
After the ntpd service is stopped - you can use the ntpdate <server> command to update/sync the time.
23. How do you run a command with elevated privileges?
The user_list file can be used to limit which users have access to the FTP server.
The /etc/exports file needs to contain any directory that you want to export - including which options you'd like to use as well.
halts the system
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.
24. What command can you use to create a password-protected page?
repquota
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.
The htpasswd command can be used to password-protect a web page.
The rpm command can operate in install - query - or verify modes.
25. What is the /etc/hosts file used for?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
26. Are additional packages besides httpd required for a secure website - If so - what are they?
Use the top command to view CPU and memory usage.
The vsftpd package is used to install an FTP server.
For Apache to run a secure site - the mod_ssl package is required to be installed.
getsebool
27. What command can you use to test the config files before starting the DNS service?
You must open TCP ports 20 and 21 for the FTP server to function properly.
service named configtest
chkconfig xinetd --list
The smbstatus command shows you currently mounted Samba resources.
28. Runlevel 0 ___________. Runlevel 6 reboots the system.
The DHCP server listens on port 67 by default.
halts the system
Use the ps command to view processes and their CPU usage.
entering rescue mode and repairing the problem.
29. What are the two config files for Postfix called?
The two main config files are master.cf and main.cf.
browseable option
ifconfig
support for TCP Wrappers
30. Before you work with ACLs - what do you need to do to the file system?
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
By defining a %post section - you can run scripts after a kickstart installation is complete.
repquota
entering rescue mode and repairing the problem.
31. What command can you use to manage system services?
The service command is used to start - stop - and manage system services.
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
The /etc/hosts file is a local lookup file used to map IP addresses to hostnames if a DNS server isn't available.
service named configtest
32. How would you disable SELinux protection for NFS - allowing shares to be read/write?
The user_list file can be used to limit which users have access to the FTP server.
choose which mode you'd like it to operate in
setsebool -P nfs_export_all_rw=1
amount of RAM
33. What command can you use to create a new SSL certificate?
The file that stores usernames and their encrypted passwords is erased and replaced with a new file.
rpmbuild
amount of RAM
Use the /usr/share/doc/dovecot-1.0.7/examples/mkcert.sh command after editing the /etc/pki/dovecot/dovecot-openssl.cnf file.
34. What port does the Apache web server run on - What about HTTPS?
Version 2 is the latest and most secure version of SSH.
Apache uses port 80 for HTTP and port 443 for HTTPS.
A web proxy can provide multiple benefits - including security - web page caching for faster load times - and load balancing.
By combining a TFTP server - PXE boot - and DHCP server - you can fully automate the kickstart installation process.
35. What are the side effects of shrinking a volume group or logical volume?
Use the setgid flag to create the appropriate permissions (chmod 2770).
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.
If you shrink a volume group or logical volume - there is a chance you could lose data depending on how much you shrink the volume.
serve both files and printers to users
36. To create a RAID or LVM partition using kickstart
The print option is used with both the fdisk and parted commands to display the current partition tables.
Use the /usr/share/doc/dovecot-1.0.7/examples/mkcert.sh command after editing the /etc/pki/dovecot/dovecot-openssl.cnf file.
Kickstart supports both basic and advanced partitioning (RAID/LVM).
Use the route command with the add option to create a static route.
37. What does S12rsyslog in the /etc/rc.d/rc2.d directory mean?
Sendmail
For Apache to run a secure site - the mod_ssl package is required to be installed.
When the system enters into runlevel 2 - the rsyslog service has a priority of 12 when starting. Anything with a lower number (or the same number and lower first letter) starts before the rsyslog service.
Using the chcon command - you can change the context of a file to work with Apache.
38. You must dictate the ____________ you want allocated to your virtual machine when you create it.
amount of RAM
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.
The ping command can be used to verify connectivity to another host.
lvdisplay
39. The portmap service was replaced by the ______________ in Red Hat Enterprise Linux 6.
rpcbind service
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
The SMTP service runs on TCP port 110.
defining a %pre section although it is rarely used
40. What are the two types of back-end authentication mechanisms discussed in this chapter?
This chapter described tdbsm and smbpasswd back-end authentication.
The DHCP server listens on port 67 by default.
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l
alternatives --config mta
41. What happens if you call the command from question 3 with the -c option after it has already been run?
Typing the mail or mutt command allows you to read mail from the command line.
The file that stores usernames and their encrypted passwords is erased and replaced with a new file.
schedule one-time-only jobs
A soft limit acts like an alarm - signaling you when you are reaching your limit. If you don't specify a grace period - the soft limit is the max. A hard limit is required only when a grace period exists. It is the max limit you can hit before your g
42. Can you name the two commands that can be used to view the free space on the system?
The du and df commands are used to view available space on the system.
Enforcing during installation
amount of RAM
have the same effect
43. What directory is used to represent the virtual file system created by the kernel?
Public/private key authentication provides an additional layer of security because you need the correct key instead of just knowing someone's password. Passwords combined with public/private keys take the security one additional step.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
rpcbind service
you have access to the correct packages or repositories.
44. What is SSH used for?
The -t nfs option is used with the mount command to mount NFS resources.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
Sendmail
SSH is used for secure remote management of Linux systems.
45. What command would you use to create a group - to add the user George to the group?
Use the groupadd command to create a group. You can then add user George with the following: usermod -G <group name> George
halts the system
A user's home directory is created under the /home directory.
atq
46. What command and options can you use to update the time?
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.
The DHCP server listens on port 67 by default.
After the ntpd service is stopped - you can use the ntpdate <server> command to update/sync the time.
The xinetd daemon is used to control and/or run multiple system services. One example is a TFTP server.
47. How can you list all services on the system to tell whether they will boot during startup?
Network address translation (NAT) maintains a table that allows the use of multiple internal IP addresses to a multiple public IP address (called address translation). It can also be used for one-to-one or one-to-many relationships as well.
chcon
chkconfig—list
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
48. What are the three modes in which the rpm command can operate?
Upstart. The Upstart utility is now used in the boot process for Red Hat Enterprise Linux 6.
rpmbuild
The rpm command can operate in install - query - or verify modes.
The dig - host - and ping commands can be used to test DNS server functionality.
49. What does the rdnc-confgen command do?
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l
The rdnc-confgen command generates an rndc.conf file for the rndc utility.
This is actually a trick question because the answer could go either way. In this chapter - we discussed only software RAID setups - in which case the answer is no. If - however - you were using a hardware RAID 5 - the answer would be yes.
Kickstart supports both basic and advanced partitioning (RAID/LVM).
50. What is the name of the package that allows you to install VNC?
rpcbind service
The VNC package for Red Hat Enterprise Linux 6 is tiger-vnc.
The superblock is a structure that contains metadata of the file system. If this becomes corrupt - you are in trouble.
service named configtest
