LPIC-3 303 Certification Quiz
12 Questions
2 Views

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

Which of the following components are NOT part of FreeIPA?

  • Public Key Infrastructure
  • Kerberos KDC
  • DHCP Server
  • Intrusion Detection System (correct)
  • What is the command used to run a new shell for a user while changing the SELinux context?

  • execnew
  • runrole
  • switchuser
  • changecontext (correct)
  • What is the default acknowledgement timeout in seconds for OpenVPN when it sends a control packet to its peer?

  • 5 seconds
  • 10 seconds
  • 15 seconds
  • 2 seconds (correct)
  • How can a rule be deactivated in Snort?

    <p>By disabling the rule temporarily within the Snort configuration file</p> Signup and view all the answers

    What happens when SELinux permissions conflict with standard Linux permissions?

    <p>Standard Linux permissions are always overridden by SELinux permissions</p> Signup and view all the answers

    How are name servers authenticated for secured zone transfers with TSIG?

    <p>Sharing a secret key between the servers</p> Signup and view all the answers

    What is the purpose of the new shell command introduced in SELinux?

    <p>To enhance security by managing SELinux contexts</p> Signup and view all the answers

    How does the program 'snort-stat' contribute to network security?

    <p>Reading syslog files for generating port scan statistics</p> Signup and view all the answers

    To add a new user 'usera' to FreeIPA, which of the following commands should be used?

    <p>ipa user-add usera --first User --last A</p> Signup and view all the answers

    Which command is used to display all ebtable rules in the 'filter' table along with their packet and byte counters?

    <p>ebtables -t filter –L --Lc</p> Signup and view all the answers

    In an OpenSSL configuration, which line adds an X 509v3 Subject Alternative Name extension for example.org and www.example.org?

    <p>subjectAltName = DNS: <a href="http://www.example.org">www.example.org</a>, DNS:example.org</p> Signup and view all the answers

    Which command would you use to disable automatic password expiry for the user 'usera'?

    <p>chage --maxdays none usera</p> Signup and view all the answers

    Study Notes

    FreeIPA

    • FreeIPA does not include certain components

    SELinux

    • The runcon command is used to run a new shell for a user while changing the SELinux context
    • When SELinux permissions conflict with standard Linux permissions, SELinux permissions take precedence
    • The new shell command introduced in SELinux is runcon

    OpenVPN

    • The default acknowledgement timeout in seconds for OpenVPN when it sends a control packet to its peer is 2 seconds

    Snort

    • A rule can be deactivated in Snort by commenting it out with a '#' symbol
    • The program 'snort-stat' contributes to network security by providing statistical analysis of Snort's traffic and alert data

    DNS

    • Name servers can be authenticated for secured zone transfers with TSIG by using a shared secret key

    User Management

    • To add a new user 'usera' to FreeIPA, the command ipa user-add usera should be used
    • To disable automatic password expiry for the user 'usera', the command ipa user-mod --pwdexpiration=false usera should be used

    ebtable

    • The command ebtables -t filter -Z is used to display all ebtable rules in the 'filter' table along with their packet and byte counters

    OpenSSL

    • In an OpenSSL configuration, the line subjectAltName=DNS:example.org,DNS:www.example.org adds an X.509v3 Subject Alternative Name extension for example.org and www.example.org

    Studying That Suits You

    Use AI to generate personalized quizzes and flashcards to suit your learning preferences.

    Quiz Team

    Description

    Prepare for your LPIC-3 Security certification exam with this quiz. Test your knowledge on components of FreeIPA and other related topics. Get ready to boost your certification score!

    More Like This

    LPIC-3 Security Exam Questions
    17 questions
    LPIC-3 Security Exam Questions
    59 questions
    LPIC-3 Security Exam
    36 questions

    LPIC-3 Security Exam

    MagnificentZeal avatar
    MagnificentZeal
    LPIC-3 Security Exam Questions
    147 questions
    Use Quizgecko on...
    Browser
    Browser