Instructions:

• Answer 50 questions in 15 minutes.
• If you are not ready to take this test, you can study here.
• Match each statement with the correct term.
• Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. The virt-install package allows you to manage virtual machines _____________. The virt-manager package allows you to manage virtual machines via a GUI interface.
service httpd configtest
After you connect to a hypervisor - you can use virsh list —all to list all virtual guests.
The /etc/exports file needs to contain any directory that you want to export - including which options you'd like to use as well.
via the command line


2. What three components are needed to fully automate a kickstart installation?
The five directories are BUILD - RPMS - SOURCES - SPECS - and SRPMS.
By combining a TFTP server - PXE boot - and DHCP server - you can fully automate the kickstart installation process.
You should never use the -U option because it erases the prior kernel when updating. This leaves you with no fallback kernel should your system not boot properly.
LUKS encryption


3. What is the benefit to using centralized authentication?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


4. Before you work with ACLs - what do you need to do to the file system?
Use the chkconfig command to enable or disable services during the boot process. The on option enables the service and off disables it.
The file system where ACLs will be implemented must be mounted with the acl option before ACLs will work properly.
You can use the -q option to query an installed package. Combining grep and the -qa options - you can search among all installed packages on the system.
By defining a %post section - you can run scripts after a kickstart installation is complete.


5. What is the xinetd service used for?
Use the ps command to view processes and their CPU usage.
The xinetd daemon is used to control and/or run multiple system services. One example is a TFTP server.
The yum and rpm commands are used for package management.
Kickstart supports both basic and advanced partitioning (RAID/LVM).


6. What port on the firewall needs to be open for the TFTP server to work?
The virsh command is used to manage virtual guests.
The TFTP server uses UDP port 69.
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.
The firewall rule is inserted into the fifth line of the iptables rules and opens up TCP port 80 (for the HTTP service) on the firewall to allow incoming connections.


7. The firewall service is...
SELinux provides enhanced granular security for the Linux operating system.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.
enabled by default
The rndc utility provides a method for managing the DNS server remotely and securely.


8. What does the partprobe command do?
The four types of DNS servers are master - slave - caching-only - and forwarding.
chkconfig xinetd --list
The partprobe command forces the kernel to reread the partition table. You should always call it after making any changes to your system partitions.
This command sets the eth1 interface to have a static IP address of 172.168.1.100 with a netmask of 255.255.255.0.


9. Do you need to write changes to the disk when using the parted command? What about fdisk?
The du and df commands are used to view available space on the system.
VNC is used to control a remote desktop session.
You must open TCP ports 20 and 21 for the FTP server to function properly.
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.


10. Can you put your /boot partition on a RAID 5 array?
Stage 1: During this stage - the primary bootloader is read into memory by the BIOS from the MBR. Stage 1.5: During this stage - the bootloader is read into memory by the stage 1 bootloader (only if necessary). Stage 2: During this stage - the bootlo
This is actually a trick question because the answer could go either way. In this chapter - we discussed only software RAID setups - in which case the answer is no. If - however - you were using a hardware RAID 5 - the answer would be yes.
alternatives --config mta
The user_list file can be used to limit which users have access to the FTP server.


11. What command displays your current interfaces and IP address?
The DHCP server listens on port 67 by default.
ifconfig
kickstart installations to work
schedule one-time-only jobs


12. Samba servers can...
The file system where quotas will be implemented must be mounted with the usrquota and grpquota options before quotas will work properly.
serve both files and printers to users
Use the resize2fs command to grow a file system.
Version 2 is the latest and most secure version of SSH.


13. What option is used to allow anonymous uploads to the FTP server?
semanage boolean -l
No. Red Hat Enterprise Linux 6 uses a different key to sign its packages.
Sendmail
The anonymous_enable=YES option in the main config file allows anonymous uploads.


14. What command-line program can you use to check your mail?
Using the host option in the dhcpd.conf file allows you to reserve a client IP address based on its MAC address.
Version 2 is the latest and most secure version of SSH.
browseable option
Typing the mail or mutt command allows you to read mail from the command line.


15. What commands can you use to add a client machine to an LDAP server?
By default - the rndc utility listens on port 953.
After the ntpd service is stopped - you can use the ntpdate <server> command to update/sync the time.
service httpd configtest
You can use the authconfig-tui command or the authconfig command.


16. What command can you use to test connectivity to another host?
useradd -c "Jr Admin" George
semanage boolean -l
The ping command can be used to verify connectivity to another host.
The partprobe command forces the kernel to reread the partition table. You should always call it after making any changes to your system partitions.


17. What happens to jobs that are scheduled to run while the system is off?
run on any port you'd like (provided that port is available)
createrepo
When the system starts up again - the cron service will run any jobs that were missed while the system was off. On Red Hat Enterprise Linux 5 - the anacron service handles this functionality.
useradd -c "Jr Admin" George


18. How would you install a group of packages all at a single time?
The smbpasswd command is used to create Samba users.
alternatives --config mta
Enforcing during installation
Use the yum groupinstall command to install multiple packages in a single group at once.


19. What is the /etc/hosts file used for?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


20. To export directories as resources - what file needs to be edited?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


21. Which file contains all messages generated during installation that can be used for troubleshooting if the need arises?
service named configtest
The install.log.syslog file contains messages that are generated during the installation. If you run into trouble during the installation - this is a good place to start.
The mount command lists all currently mounted file systems.
have the same effect


22. What command can you use to view NFS statistics?
Use the yum groupinstall command to install multiple packages in a single group at once.
The nfsstat command can be used to view NFS statistics.
SELinux provides enhanced granular security for the Linux operating system.
Sendmail


23. Should you allow remote root access - Why or why not?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


24. For Red Hat Enterprise Linux 6 - SELinux comes set up in enforcing mode. When installing Red Hat Enterprise Linux 5 - you have the option to...

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


25. What are the three items that make up LVM?
When you exit the parted utility - all your changes are automatically written to disk. With the fdisk command - you need to manually write your changes to disk for them to take effect.
The TFTP server uses UDP port 69.
Upstart. The Upstart utility is now used in the boot process for Red Hat Enterprise Linux 6.
Physical volumes - volume groups - and logical volumes.


26. What file needs to be edited so that the system will mount a file system at boot time?
The rpm command can operate in install - query - or verify modes.
Uncomment the following line in the /etc/rsyslog.conf file: #$ModLoad imudp.so #$UDPServerRun 514
The /etc/fstab file.
Use the groupadd command to create a group. You can then add user George with the following: usermod -G <group name> George


27. What command can you use to create a password-protected page?
support for TCP Wrappers
choose which mode you'd like it to operate in
The htpasswd command can be used to password-protect a web page.
The du and df commands are used to view available space on the system.


28. What are the two types of back-end authentication mechanisms discussed in this chapter?
Use the yum groupinstall command to install multiple packages in a single group at once.
Dovecot supports the POP3 - POP3S - IMAP - and IMAPS protocols.
This chapter described tdbsm and smbpasswd back-end authentication.
The gateway is incorrectly set - and the subnet of the host you are trying to reach is inaccessible.


29. If you want a specific action to take place when user01 logs in to the system - which file would you edit?
Use the ps command to view processes and their CPU usage.
By default - Squid runs on port 3128.
You add your action to the end of the /home/user01/.bashrc file.
This command sets the eth1 interface to have a static IP address of 172.168.1.100 with a netmask of 255.255.255.0.


30. What are the three different types of RAID described in this chapter?
The SSH service is almost always installed by default in Red Hat. It uses TCP port 22 - and this port is open on the default firewall rules.
RAID 0 (Striping) - RAID 1 (Mirror) - and RAID 5 (Striping with parity).
chkconfig xinetd --list
semanage boolean -l


31. How would you go about creating a static route?
browseable option
Use the route command with the add option to create a static route.
The dig - host - and ping commands can be used to test DNS server functionality.
The NFS service uses TCP port 2049 by default.


32. How can you change the security context of a directory to work with Apache?
The /var/lib/nfs/etab file is used to keep track of currently exported resources.
have the same effect
SELinux Booleans provide restrictions to different aspects of a service.
Using the chcon command - you can change the context of a file to work with Apache.


33. What command can you use to validate the syntax of the Apache config file?
used for kickstart and/or network installs
The smbstatus command shows you currently mounted Samba resources.
service httpd configtest
Use the route command with the add option to create a static route.


34. SSH does...
alternatives --config mta
If you are a hosting company or want to run multiple websites/applications from a single IP address - you can use virtual hosts to accomplish this.
export one or all resources
support TCP Wrappers


35. What command can you use to change the context of files?
You can use the -q option to query an installed package. Combining grep and the -qa options - you can search among all installed packages on the system.
chcon
The nfsstat command can be used to view NFS statistics.
No. Red Hat Enterprise Linux 6 uses a different key to sign its packages.


36. What command can you use to view the current ACL on a file?
defining a %pre section although it is rarely used
have the same effect
getfacl
The dig - host - and ping commands can be used to test DNS server functionality.


37. What is the top command used for?
Network installations can be performed using the HTTP - FTP - and NFS protocols.
VNC is used to control a remote desktop session.
Upstart. The Upstart utility is now used in the boot process for Red Hat Enterprise Linux 6.
Use the top command to view CPU and memory usage.


38. What is the virsh command used for?
LUKS encryption
The virsh command is used to manage virtual guests.
user's home directory in the /etc/skel directory
A swap is scratch space on your file system used as virtual memory. A swap can be created as a partition or a device file.


39. What command and options can you use to update the time?
Use the groupadd command to create a group. You can then add user George with the following: usermod -G <group name> George
PAM is used as a modular way to leverage security. In this chapter - the main function we discussed was for managing password policies and complexity.
SELinux provides enhanced granular security for the Linux operating system.
After the ntpd service is stopped - you can use the ntpdate <server> command to update/sync the time.


40. Explain the difference between soft and hard limits in quotas.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


41. How can you list all services on the system to tell whether they will boot during startup?
The ping command can be used to verify connectivity to another host.
chkconfig—list
ifconfig
You can use the sudo command to run a command with elevated privileges provided you have the rights in the /etc/sudoers file.


42. What command can you use to query Boolean values?
Apache uses port 80 for HTTP and port 443 for HTTPS.
An ext3 file system has journaling built in to it - whereas the ext2 file system doesn't.
support TCP Wrappers
getsebool


43. Which file shows you all the client IP addresses?
The /var/liv/dhcpd/dhcpd.leases file contains all clients IP address currently in use.
The two main config files are master.cf and main.cf.
The /etc/exports file needs to contain any directory that you want to export - including which options you'd like to use as well.
The nfsstat command can be used to view NFS statistics.


44. What is the name of the package that allows you to install VNC?
Apache uses port 80 for HTTP and port 443 for HTTPS.
The partprobe command forces the kernel to reread the partition table. You should always call it after making any changes to your system partitions.
The VNC package for Red Hat Enterprise Linux 6 is tiger-vnc.
The two main config files are master.cf and main.cf.


45. Place all files you want added to a _______________ during creation.

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


46. What option needs to be used with the mount command to mount an NFS resource?
rpmbuild
service sshd statuts
The -t nfs option is used with the mount command to mount NFS resources.
run on any port you'd like (provided that port is available)


47. What option would you use to query an installed package using the rpm command?
chkconfig xinetd --list
You can use the -q option to query an installed package. Combining grep and the -qa options - you can search among all installed packages on the system.
VNC is used to control a remote desktop session.
The /proc directory. The /proc/sys directory is the place where you actually tune kernel parameters.


48. What command is used to show all services being controlled by the xinetd daemon?
chkconfig xinetd --list
For Apache to run a secure site - the mod_ssl package is required to be installed.
mkfs.ext4
This chapter described tdbsm and smbpasswd back-end authentication.


49. What port does the SMTP service run on?
useradd -c "Jr Admin" George
The SMTP service runs on TCP port 110.
A large warning message appears indicating that the key doesn't match the host you are connecting to. You have to remove the key/host pair from the known_hosts file to proceed.
The NFS service uses TCP port 2049 by default.


50. How would you view all Boolean options for the HTTP service?
Enforcing during installation
getsebool
When the system enters into runlevel 2 - the rsyslog service has a priority of 12 when starting. Anything with a lower number (or the same number and lower first letter) starts before the rsyslog service.
getsebool -a | grep http