Instructions:

• Answer 50 questions in 15 minutes.
• If you are not ready to take this test, you can study here.
• Match each statement with the correct term.
• Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. What is a virtual host?
A virtual host is a way of hosting multiple sites using a single IP address.
Typing the mail or mutt command allows you to read mail from the command line.
getfacl
Use the setgid flag to create the appropriate permissions (chmod 2770).


2. How can you list all services on the system to tell whether they will boot during startup?
The four types of DNS servers are master - slave - caching-only - and forwarding.
Public/private key authentication provides an additional layer of security because you need the correct key instead of just knowing someone's password. Passwords combined with public/private keys take the security one additional step.
The virsh command is used to manage virtual guests.
chkconfig—list


3. What are the two types of back-end authentication mechanisms discussed in this chapter?
The install.log.syslog file contains messages that are generated during the installation. If you run into trouble during the installation - this is a good place to start.
You must ensure that the /boot/grub/grub.conf file has the new entry for your newly updated kernel to be able to boot into it.
This chapter described tdbsm and smbpasswd back-end authentication.
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.


4. What are the three modes in which the rpm command can operate?
The rpm command can operate in install - query - or verify modes.
Enforcing during installation
This chapter described tdbsm and smbpasswd back-end authentication.
The DHCP server listens on port 67 by default.


5. To create a RAID or LVM partition using kickstart
DNS uses port 53.
The print option is used with both the fdisk and parted commands to display the current partition tables.
Kickstart supports both basic and advanced partitioning (RAID/LVM).
The service command is used to start - stop - and manage system services.


6. What is the /etc/vsftpd/user_list file used for?
via the command line
The -t nfs option is used with the mount command to mount NFS resources.
The user_list file can be used to limit which users have access to the FTP server.
serve both files and printers to users


7. What is the main config file for the DHCP service?
The /etc/dhcp/dhcpd.conf file is the main config file for the DHCP service.
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l
A virtual host is a way of hosting multiple sites using a single IP address.
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.


8. What command can you use to create a new SSL certificate?
Network address translation (NAT) maintains a table that allows the use of multiple internal IP addresses to a multiple public IP address (called address translation). It can also be used for one-to-one or one-to-many relationships as well.
Use the /usr/share/doc/dovecot-1.0.7/examples/mkcert.sh command after editing the /etc/pki/dovecot/dovecot-openssl.cnf file.
The rpm command can operate in install - query - or verify modes.
By defining a %post section - you can run scripts after a kickstart installation is complete.


9. What command can be used to easily list all the options in the FTP main config file?
Use the yum groupinstall command to install multiple packages in a single group at once.
The grep -v ^# /etc/vsftpd/vsftpd.conf command shows you all the options currently being used with the FTP server.
cat /proc/mdstat
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.


10. How would you view all Boolean options for the HTTP service?
support TCP Wrappers
An ext3 file system has journaling built in to it - whereas the ext2 file system doesn't.
getsebool -a | grep http
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.


11. What three protocols can you use to perform network installations?
Network installations can be performed using the HTTP - FTP - and NFS protocols.
The SMTP service runs on TCP port 110.
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
The rpm command can operate in install - query - or verify modes.


12. What port does NFS use by default?
defining a %pre section although it is rarely used
The NFS service uses TCP port 2049 by default.
Network address translation (NAT) maintains a table that allows the use of multiple internal IP addresses to a multiple public IP address (called address translation). It can also be used for one-to-one or one-to-many relationships as well.
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo


13. What is the last rule in the iptables file?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


14. The virt-install package allows you to manage virtual machines _____________. The virt-manager package allows you to manage virtual machines via a GUI interface.
via the command line
This is actually a trick question because the answer could go either way. In this chapter - we discussed only software RAID setups - in which case the answer is no. If - however - you were using a hardware RAID 5 - the answer would be yes.
Use the resize2fs command to grow a file system.
The xinetd daemon is used to control and/or run multiple system services. One example is a TFTP server.


15. Are additional packages besides httpd required for a secure website - If so - what are they?
Version 2 is the latest and most secure version of SSH.
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.
Using the chcon command - you can change the context of a file to work with Apache.
For Apache to run a secure site - the mod_ssl package is required to be installed.


16. What command can you use to create a password-protected page?
You must open TCP ports 20 and 21 for the FTP server to function properly.
Use the chkconfig command to enable or disable services during the boot process. The on option enables the service and off disables it.
If you shrink a volume group or logical volume - there is a chance you could lose data depending on how much you shrink the volume.
The htpasswd command can be used to password-protect a web page.


17. What is the difference between the update (-U) and install (-i) options when using rpm to update the kernel?
The four types of DNS servers are master - slave - caching-only - and forwarding.
The xinetd daemon is used to control and/or run multiple system services. One example is a TFTP server.
schedule one-time-only jobs
You should never use the -U option because it erases the prior kernel when updating. This leaves you with no fallback kernel should your system not boot properly.


18. What port on the firewall needs to be open for the TFTP server to work?
The TFTP server uses UDP port 69.
Enforcing during installation
halts the system
Kickstart supports both basic and advanced partitioning (RAID/LVM).


19. What is the name of the package used to install an FTP?
have the same effect
You can use the -q option to query an installed package. Combining grep and the -qa options - you can search among all installed packages on the system.
The vsftpd package is used to install an FTP server.
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.


20. What port does the SMTP service run on?
The /etc/dhcp/dhcpd.conf file is the main config file for the DHCP service.
The SMTP service runs on TCP port 110.
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.
lvdisplay


21. What is SSH used for?
SSH is used for secure remote management of Linux systems.
The tcpdump command is used to monitor network connections on different interfaces.
DNS uses port 53.
By entering the GRUB boot menu - you can choose the a option to append something to the kernel command-line options.


22. What three components are needed to fully automate a kickstart installation?
By combining a TFTP server - PXE boot - and DHCP server - you can fully automate the kickstart installation process.
Use the yum groupinstall command to install multiple packages in a single group at once.
The testparm command allows you to check for syntax errors in the /etc/samba/smb.conf file.
LUKS encryption


23. What command can you use to check the config file of the DHCP server?
choose which mode you'd like it to operate in
The rdnc-confgen command generates an rndc.conf file for the rndc utility.
service dhcpd configtest
You add your action to the end of the /home/user01/.bashrc file.


24. What command can you use to query information from the kernel about RAID arrays?
The vsftpd package is used to install an FTP server.
cat /proc/mdstat
service named configtest
have the same effect


25. What directory is used to represent the virtual file system created by the kernel?
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
Dovecot supports the POP3 - POP3S - IMAP - and IMAPS protocols.
repquota
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.


26. What command can you use to query Boolean values?
have the same effect
getsebool
You have the flexibility to resize and add new volumes on the fly. With basic partitions - any time that you want to make a change - you need to destroy the partition and create it again.
SELinux provides enhanced granular security for the Linux operating system.


27. How would you go about creating a static route?
The DHCP server listens on port 67 by default.
Use the chkconfig command to enable or disable services during the boot process. The on option enables the service and off disables it.
By using centralized authentication - you don't need to re-create or maintain multiple accounts across every system in your organization.
Use the route command with the add option to create a static route.


28. Which remote management service is installed by default?Can you name the port that it uses?
The tcpdump command is used to monitor network connections on different interfaces.
Enforcing during installation
A swap is scratch space on your file system used as virtual memory. A swap can be created as a partition or a device file.
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.


29. The ______________ for Red Hat Enterprise Linux 5 or 6 includes the use of LVM.
The lftp command can be used on a client to test FTP server connections.
service sshd statuts
The service command is used to start - stop - and manage system services.
Enforcing during installation


30. What happens if you call the command from question 3 with the -c option after it has already been run?
Use the groupadd command to create a group. You can then add user George with the following: usermod -G <group name> George
The file that stores usernames and their encrypted passwords is erased and replaced with a new file.
PAM is used as a modular way to leverage security. In this chapter - the main function we discussed was for managing password policies and complexity.
You should never allow remote root access. Should your root account become compromised and you use the same password - someone could gain access to all your systems. You also don't want the most powerful user of your system (with no accountability) l


31. Runlevel 0 ___________. Runlevel 6 reboots the system.
halts the system
atq
Enforcing during installation
The two main config files are master.cf and main.cf.


32. What is NAT - How is it used?
service named configtest
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.
Network address translation (NAT) maintains a table that allows the use of multiple internal IP addresses to a multiple public IP address (called address translation). It can also be used for one-to-one or one-to-many relationships as well.
SELinux provides enhanced granular security for the Linux operating system.


33. What happens if a host changes its IP address and the keys don't match?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


34. What is the benefit to using centralized authentication?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


35. The old SysInit scripts have been replaced in Red Hat Enterprise Linux 6 for what new boot utility?
Upstart. The Upstart utility is now used in the boot process for Red Hat Enterprise Linux 6.
Using the chcon command - you can change the context of a file to work with Apache.
serve both files and printers to users
browseable option


36. Most boot issues can be resolved by...
entering rescue mode and repairing the problem.
Yum repository config files (.repo files) are located in the /etc/yum.repos.d directory. You can also make direct entries into the main /etc/yum.conf file.
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.
The four types of DNS servers are master - slave - caching-only - and forwarding.


37. By default - what is the path to a user's home directory?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


38. Do you need to write changes to the disk when using the parted command? What about fdisk?
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
An A record translates translated hostnames to IP addresses - and a PTR record works the other way around.
halts the system
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.


39. Through its main config file - SSH can be configured to...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


40. How can you display all virtual guests after they're connected to a hypervisor?
The NFS service uses TCP port 2049 by default.
Use the yum groupinstall command to install multiple packages in a single group at once.
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.


41. Which file shows you all the client IP addresses?
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.
You can use the authconfig-tui command or the authconfig command.
Enforcing during installation
semanage boolean -l


42. You must dictate the ____________ you want allocated to your virtual machine when you create it.
This chapter described tdbsm and smbpasswd back-end authentication.
The xinetd daemon is used to control and/or run multiple system services. One example is a TFTP server.
amount of RAM
The mount command lists all currently mounted file systems.


43. Is it possible to share files among groups - What permissions would you set on the directory to accomplish file sharing if possible?
DNS uses port 53.
Public/private key authentication provides an additional layer of security because you need the correct key instead of just knowing someone's password. Passwords combined with public/private keys take the security one additional step.
The rndc utility provides a method for managing the DNS server remotely and securely.
Use the setgid flag to create the appropriate permissions (chmod 2770).


44. What file is used to maintain custom parameters for the kernel during system boot?
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
The ping command can be used to verify connectivity to another host.
mkfs.ext4
The smbpasswd command is used to create Samba users.


45. What port does the rndc utility listen on by default?
service httpd configtest
By default - the rndc utility listens on port 953.
serve both files and printers to users
You have the flexibility to resize and add new volumes on the fly. With basic partitions - any time that you want to make a change - you need to destroy the partition and create it again.


46. GRUB has three stages. Can you name them?
The /etc/hosts file is a local lookup file used to map IP addresses to hostnames if a DNS server isn't available.
The file system where quotas will be implemented must be mounted with the usrquota and grpquota options before quotas will work properly.
rpcbind service
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo


47. Which log file is used to keep track of policy violations?
The /var/log/audit/audit.log file contains all policy violations.
rpcbind service
The mount command lists all currently mounted file systems.
A virtual host is a way of hosting multiple sites using a single IP address.


48. The portmap service was replaced by the ______________ in Red Hat Enterprise Linux 6.
rpcbind service
The rdnc-confgen command generates an rndc.conf file for the rndc utility.
atq
chkconfig—list


49. Does a DHCP server allow reserved IP addresses - If so - how?
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.
The /etc/sysctl.conf file maintains a list of custom kernel parameters that should be applied during system boot.
Use the top command to view CPU and memory usage.
The ping command can be used to verify connectivity to another host.


50. If you want a specific action to take place when user01 logs in to the system - which file would you edit?
If you are a hosting company or want to run multiple websites/applications from a single IP address - you can use virtual hosts to accomplish this.
A swap is scratch space on your file system used as virtual memory. A swap can be created as a partition or a device file.
The -t nfs option is used with the mount command to mount NFS resources.
You add your action to the end of the /home/user01/.bashrc file.