Title and Description Writing Quiz

Questions and Answers

True or false: The instructor for the Linux II course is named Ellie Bodzay.

True (A)

What is the role of DHCP in a network?

• Managing network security
• Assigning network configurations to devices automatically (correct)
• Creating virtual networks
• Providing internet access to devices

What is the purpose of adding the Listen directive to ports.conf?

• To change the content displayed on the virtual host
• To create a new virtual host configuration file
• To modify the existing virtual host configuration file
• To enable Apache to listen on a new port (correct)

How can Wireshark be used to analyze network traffic?

Wireshark can be used to analyze HTTP and HTTPS packets.

What port does Apache listen on by default for http?

Apache listens on port 80 by default for http.

What is the course code for Linux II?

The course code for Linux II is 420-440-01/02.

What can Wireshark be used to analyze?

HTTP and HTTPS packets (D)

What is SSH?

A remote shell with full end-to-end encryption using public key cryptography. (C)

What is SSH and what is its purpose?

SSH stands for Secure Shell and it is a network protocol used for secure remote access over an unsecured network.

What does TTL stand for?

Time-to-Live (D)

What is tcpdump and how is it used in network troubleshooting?

Tcpdump is a tool for capturing and analyzing network traffic. It can be used in network troubleshooting to identify and diagnose network issues.

What is the command used to generate key pairs for both remote and local machines in SSH?

ssh-keygen (A)

True or false: The text covers various lab exercises related to networking and server administration.

True (A)

What is SSL Strip and how does it work?

SSL Strip is a protocol used in attacks where the attacker intercepts unencrypted HTTP requests and adds their own headers to trick the website into thinking there is a secure connection.

What is tcpdump used for?

Capturing and analyzing network traffic (B)

What is the Round Trip Time (RTT)?

The time it takes for a message to be sent and received (C)

What is the role of the Registration Authority in the certificate issuance process?

To ensure rightful ownership of the domain (C)

What is the first step to changing your hostname file?

Make a backup of your hostname file before changing it. (D)

What are the requirements to work inside an IPv4 network?

The requirements to work inside an IPv4 network include a unique IP address, subnet mask, route to a default gateway, and access to a Domain Name Server.

What is the recommendation before changing the hostname file?

Make a backup of the hostname file before changing it.

What does the command "a2enmod userdir" do?

Enables the user directory module in Apache (A)

True or false: SSH uses the same key-pair for encryption and user authentication.

False (B)

What is TOR routing?

A method of wrapping messages in multiple layers of encryption (A)

True or false: Recursive resolvers need the Start of Authority (SOA) record to start their process.

False (B)

What are the requirements to work inside an IPv4 network?

The requirements to work inside an IPv4 network include a unique IP address, subnet mask, route to a default gateway, and access to a Domain Name Server.

Which tool is NOT mentioned in the text for monitoring servers?

top (A)

What is the purpose of the "-p" option in the netstat command, and what does it print?

The "-p" option in the netstat command prints the PID (process ID) of the socket owner.

What is the command used to show listening and established sockets?

"netstat" (B)

What is the focus of the lab exercise mentioned in the text?

Configuring Apache to work with a new port (B)

What is the purpose of the Python code provided in the text?

The Python code provided in the text is for a simple echo server.

What is the purpose of the link layer protocols?

The purpose of the link layer protocols is to dictate how data is transferred between directly connected nodes.

What is the focus of the lab discussed in the text?

The lab focuses on exploring DNS zone files in a Docker Network.

What is tcpdump and what is its purpose?

Tcpdump is a tool used for capturing and analyzing network traffic. Its purpose is for network troubleshooting and debugging.

What is the course code for Linux II?

420-440-01/02 (D)

True or false: The maximum MTU for Ethernet v2 is 1400 bytes.

False (B)

What is the purpose of the docker-compose.yml file in setting up a Docker Network?

To set up the network (B)

What is the purpose of the link layer protocols in data transmission?

The link layer protocols dictate how data is transferred between directly connected nodes.

What is the main purpose of the Registration Authority (RA) in the certificate issuance process?

To ensure rightful ownership of the domain (B)

What are the two types of sockets determined by the protocol?

The two types of sockets determined by the protocol are UDP and TCP.

What type of relays does TOR have?

Middle, Exit, and Bridge (B)

What is the role of the Verification Authority (VA) in the certificate issuance process?

To act as a third party verifier of certificates (B)

What is the purpose of creating a new virtual host configuration file in sites-available?

To set up virtual host configurations for each port (D)

Which details are contained in a certificate?

Subject and public key details (A)

True or false: Local DNS is responsible for managing IP addresses and domain names.

False (B)

What is the name of the git repo that has a server.py file that can be run in the background?

"sockets-lab" (D)

What does the command "a2disconf apache2-doc" do?

Disables the Apache documentation configuration (B)

True or false: The link layer is responsible for packet forwarding and routing.

False (B)

True or false: The second web content exercise involves modifying an existing file in sites-available.

False (B)

Which transport protocol does DHCP use?

UDP over port 67 (server side) and port 68 (client side (D)

Which key is the private key in SSH?

id_rsa (D)

What determines the duration of TTL?

The domain and how often it changes IPs (C)

What is the purpose of using public/private key remote login in SSH?

The purpose of using public/private key remote login in SSH is to provide a more secure and convenient way of logging in remotely without having to enter a password each time.

What are the two purposes of keys in SSH?

Encrypting traffic and authenticating users. (A)

How can Wireshark be filtered?

To show certain traffic (D)

Is Linux II a continuation of a previous Linux course?

Yes, Linux II is a continuation of a previous Linux course.

Where is the Listen directive added to listen to new ports?

The Listen directive needs to be added in ports.conf to listen to new ports.

How can Wireshark be filtered to show specific traffic?

Wireshark can be filtered to show certain traffic.

How do Docker Networks work in comparison to physical networks?

They are virtualized (C)

What are MAC addresses used for in the link layer?

MAC addresses are used in the link layer to send frames/packets between devices.

What is the purpose of the docker-compose.yml file?

The docker-compose.yml file is needed to set up the network.

What are MAC addresses used for in the link layer?

MAC addresses are used in the link layer to send frames/packets between devices.

True or false: Multiple users can share the same private key for authentication on an SSH server.

False (B)

What are some of the tools introduced in the text for monitoring servers?

Some of the tools introduced in the text for monitoring servers are ss, netcat, netstat, nethogs, du, df, and tcpdump.

What does the "netstat -tul" command show?

The "netstat -tul" command shows listening TCP and UDP sockets.

What is the purpose of the Python code provided in the text?

To provide a simple echo server (A)

What are the two types of sockets determined by the protocol?

The two types of sockets determined by the protocol are UDP and TCP.

How can you edit your hostname and add the domain?

You can use hostnamectl to edit your hostname and add the domain.

Which command should you use to edit your hostname and add the domain?

hostnamectl (C)

True or false: The exercises include setting up Wireshark, creating an HTTP server with Python, and exploring a zone in a Docker network.

True (A)

How can an attacker act as a man-in-the-middle to perform SSL Stripping?

One way to act as an attacker is to open a hotspot and intercept traffic to perform SSL Stripping.

What are broadcast messages and how are they used in networking?

Broadcast messages are messages sent to all devices on a network. They are used to distribute information, such as network announcements, to multiple devices at once.

Who is the instructor for the class and lab?

Ellie Bodzay (D)

What are broadcast messages and how do they work?

Broadcast messages are messages sent to all devices on a network. They work by being sent to a special IP address that is recognized as a broadcast address.

What is the name of the instructor for the Linux II course?

Ellie Bodzay (C)

What are broadcast messages?

Messages sent to all devices on a network (C)

What is the major improvement from HTTP/1 to HTTP/1.1?

TCP connections can be left open for multiple requests. (A)

What is the focus of Linux II?

The focus of Linux II is advanced Linux concepts.

What module is mentioned in the text for implementing an HTTP server?

The Python http.server module is mentioned in the text for implementing an HTTP server.

What tool is used to find IP addresses of hosts in the network?

Dig (C)

What tool can be used to determine which socket the server has bound to?

"netstat" (D)

True or false: The text covers topics such as HTTP vs HTTPS traffic and setting up SSH keys.

True (A)

True or false: MAC addresses are used to identify networked computers.

True (A)

What needs to be modified in the virtual host configuration file to work with the desired port?

The Listen directive (B)

What is the difference between unicast, multicast, and broadcast transmission?

Unicast transmission is one-to-one, multicast transmission is one-to-many, and broadcast transmission is one-to-many undirected.

What kind of tree is immediately affected by modifications in its content?

sites-tree (C)

Which module is mentioned in the text for implementing an HTTP server?

Python http.server (D)

What is the three-step handshake?

The three-step handshake is the process of establishing a TCP connection.

How is ssh-keygen used in generating key pairs?

ssh-keygen is used to generate key pairs by creating a private key and a corresponding public key on both the remote and local machines.

How can a user check for broadcast messages specifically for their device using tcpdump?

Use the "ip address" command to determine their MAC address and include it in the filter (C)

What needs to be done to set up a port-based VHost?

A new file needs to be created in sites-available to set up a port-based VHost.

What should you do after adding 2 subdirectories to /var/www/html?

Add content to the subdirectories. (C)

What should you do after adding subdirectories to /var/www/html?

After adding subdirectories to /var/www/html, you should add content to them.

What is the three-step handshake in a TCP connection?

The three-step handshake in a TCP connection is a process where the client sends a SYN message to the server, the server responds with a SYN-ACK message, and the client sends an ACK message to the server to confirm.

True or false: The duration and schedule of the class and lab are provided in the text.

False (B)

True or false: The TTL duration is the same for all domains.

False (B)

What is a MAC address and why is it important?

A MAC address is a unique identifier for network devices. It is important because it allows devices to communicate with each other on a network.

What is the responsibility of the Internet layer in data transmission?

The Internet layer is responsible for packet forwarding and routing.

What are the two ways to use Wireshark?

Wireshark requires either opening the Graphical Interface for your VM or using an X-Forwarding client.

What do recursive resolvers need to start their process?

Root hints file (A)

True or false: Public key cryptography is used for data encryption in SSH.

False (B)

What information is contained in certificates?

Public key details (A)

What is the purpose of ssh-copy-id?

To copy the public key to a remote server. (B)

What is the focus of the lab exercise?

Adding more content and Vhosts (A)

How do Docker Networks work?

Docker Networks work similarly to physical networks but are virtualized.

What is required to use Wireshark?

A Graphical Interface for your VM or using an X-Forwarding client (B)

How can tcpdump be used to check for broadcast messages?

Tcpdump can be used to filter network traffic and search for broadcast messages using specific commands and filters.

Are the keys exchanged in SSH specific to the client and server machine, as well as the user?

Yes (D)

What does DNS do?

Translates hostnames into IP addresses (C)

What is the responsibility of the internet layer?

The responsibility of the internet layer is packet forwarding and routing.

What is the motivation behind using VPNs?

Accessing private networks and increased privacy and internet safety (A)

What are some ways to prevent SSL Stripping attacks?

Preventing SSL Stripping attacks can be done by ensuring every site on the server uses HTTPS, using HTTPS Strict Transport Security (HSTS), and enforcing it using a header field in the HTTP response from the server.

Which type of relay only handles encrypted packets and increases obscurity?

Middle relays (D)

What does a message include in HTTP?

A method and a path. (D)

What tool is used to find IP addresses of hosts in the network?

Dig is used to find IP addresses of hosts in the network.

Who is the target audience for Linux II?

Linux II is designed for students with prior Linux knowledge.

What type of system is DNS?

A hierarchical naming system (A)

How is the config changed to work over a specific port and display specific content?

Config needs to be changed to work over a specific port and display specific content.

What is examined in the lab exploring DNS zone files in a Docker Network?

The zone file on the nameserver part of the network (B)

How do you check for broadcast messages using tcpdump?

You can use the command "tcpdump -nn -v -i eth0 broadcast" to check for broadcast messages meant for any device.

True or false: SSH can only be used on Unix-based operating systems.

False (B)

What layer in data transmission is responsible for node-to-node transfer and error correction?

The data link/physical layer is responsible for node-to-node transfer and error correction.

What is the second web content exercise about?

Completing the last cl (C)

What is the purpose of Bridge relays in TOR routing?

To circumvent censorship (A)

What tool can be used to connect to the socket and run commands?

"netcat" (A)

How do VPN client and server encrypt information?

Using a key exchange process (TLS (C)

What is the role of routers in the internet layer, and what identifier is used in this layer?

Routers operate in the internet layer, and IP addresses are used in this layer.

What is the purpose of the exercises provided in the text?

The exercises provided in the text are for testing connectivity to the echo server using different ports and IP addresses.

What is Wireshark used for?

Capturing and analyzing network traffic (B)

What do the exercises in the text involve?

Testing connectivity from different machines (A)

True or false: Packet switching involves transmitting messages as a whole.

False (B)

How can you direct traffic over port 8123 to your first JavaScript project?

You can set up a port-based VHost to direct traffic over port 8123 to your first JavaScript project.

What is DHCP and what does it do?

DHCP is a protocol that automatically assigns network configuration to devices on your network.

How should you direct traffic over port 8123 to your first JavaScript project?

Set up a port-based VHost. (C)

What command is used to allow traffic on specified ports in the firewall?

ufw allow (A)

What is the first step in DHCP?

The client sends a broadcast to 255.255.255.255. (D)

What is DHCP and what does it do?

DHCP is a protocol that automatically assigns network configuration to devices on a network.

True or false: Broadcast messages are messages sent to a specific device on a network.

False (B)

What is the purpose of VPNs and how can they be used to protect internet activity?

VPNs are used to access private networks that only allow internal traffic. They can also be used to hide internet activity from internet service providers and government surveillance.

True or false: The Root hints file provides information on how to find authoritative name servers.

False (B)

What does the term "Subject" refer to in certificates?

The organization and domain name (D)

What is a MAC address and how is it used in networking?

A MAC address is a unique identifier assigned to network devices. It is used to identify devices on a network and to route network traffic.

What does the root hints file provide information on?

How to find root servers (D)

What is the purpose of the "a2enmod" command?

To enable Apache modules (B)

What is the difference between id_rsa and id_rsa.pub?

id_rsa is the private key and id_rsa.pub is the public key. The private key is kept secret and used for authentication, while the public key is shared with servers to allow access.

How can SSH keys be used in relation to a gitlab remote repo?

To authenticate to a remote repository. (A)

How can a TLS certificate be created?

Using OpenSSL (C)

How can users authenticate themselves with an SSH server?

By sharing their own public key. (C)

What tool can be used to create a TLS certificate?

A TLS certificate can be created using OpenSSL.

What are TCP and UDP, and what type of communication are they used for?

TCP and UDP are transport protocols used for directed and streaming communication.

Does the text ask to change the port and IP address of the server code?

Yes, the text asks to change the port and IP address of the server code and test connectivity.

How are certificates generated?

With specific details (D)

What is the Python HTTP server capable of serving?

Only files in the specified directory (C)

What is the responsibility of the data link/physical layer?

The responsibility of the data link/physical layer is node-to-node transfer and error correction.

What is SSH?

A type of remote shell protocol (B)

What is TOR and how does it work?

TOR is a network that allows users to browse the internet anonymously. TOR uses a series of nodes to route internet traffic, making it difficult to trace back to the user.

How do you check for broadcast messages specifically for your device using tcpdump?

You can use the command "tcpdump -nn -v -i eth0 ether host [MAC address]" to check for broadcast messages specifically for your device.

What will students learn in Linux II?

Students will learn about networking, security, and system administration in Linux II.

How can a user determine their MAC address using the "ip address" command?

The "ip address" command can be used to display network interface information, including the MAC address of the device.

How many key-pairs does a server and client use for encryption in SSH?

One (A)

What may be different in netstat output when using netcat?

The port number (B)

How does Apache handle VHosts?

It handles them one config file at a time (A)

How is ssh-copy-id used to copy the public key to a remote server?

ssh-copy-id is used to copy the public key to a remote server by connecting to the server and appending the public key to the authorized_keys file on the remote machine.

What part of the network is examined when exploring the DNS zone files?

The zone file on the nameserver part of the network is examined.

True or false: The exercise involves changing the Apache config to work over port 8123 instead of port 80.

True (A)

What is the purpose of subnet masks in IP addresses?

Subnet masks define which part of the IP address is the network ID and which part is the host ID.

What is the purpose of the "a2disconf" command?

To disable Apache configurations (C)

What do authoritative name servers provide to the web client?

The final answer (C)

True or false: SSH tunneling can be used to forward data over an unencrypted connection.

False (B)

What needs to be added to ports.conf to listen on a specific port number?

Listen directive with the specific port number needs to be added to ports.conf.

Can you give examples of protocols that use TCP/UDP?

Examples of protocols that use TCP/UDP include HTTP, SMTP, and DHCP.

What transport protocol does DHCP use and over which ports?

DHCP uses UDP as a transport protocol over port 67 (server side) and port 68 (client side).

What is the base unit of information that can be sent over a network?

Packet (B)

What information do name servers supply?

Data about the zones for which they are authoritative (C)

What is the purpose of configuring the firewall to allow traffic on desired ports for specific applications or services?

To enable Apache to listen on a new port (A)

What is the purpose of the SOA line in the zone file?

To specify the Start of Authority (D)

True or false: The physical layer handles error correction.

True (A)

How does Apache handle VHosts?

Apache handles VHosts one config file at a time and does not make a preference of specific over general.

What needs to be done to make Apache listen over a new port?

Add Listen [port number] to ports.conf (A)

What should be verified for the certificate signing request (CSR) information?

The CSR's authenticity (C)

What does the DHCP server listen on for broadcasts?

Port 67 (B)

Why is it important to verify the CSR information when creating a certificate signing request?

The certificate signing request (CSR) information should be verified.

What transport protocol does DHCP use and what are the port numbers for server and client side?

DHCP uses UDP as a transport protocol over port 67 (server side) and port 68 (client side).

True or false: Authoritative name servers provide the final answer returned to the web client.

True (A)

What is the goal of TOR routing?

To have as much of the path encrypted as possible (A)

True or false: When trying to connect to a device not in your ARP table, your system sends an ICMP request to resolve the MAC address.

False (B)

What is SSH tunneling?

A way of sending data using an SSH connection between a client and server. (C)

What is the bonus exercise in the text?

Running multiple servers with the same port and IP address (C)

Why is proper configuration of the firewall important in the exercise?

To ensure the new port(s) are accessible and secure (C)

Which module is being enabled by the command "a2enmod userdir"?

User directory module (A)

What is a well-defined port mentioned in the text?

Port 80 (C)

What is transmission?

The act of sending packets on a link (B)

What type of data do root name servers supply?

Data about all the top-level domains (A)

What do authoritative servers need to be registered with?

A higher level server (A)

Can a server and client use many key-pairs to authenticate users in SSH?

Yes (A)

What needs to be done to the firewall to allow traffic on a new port?

Firewall needs to be configured to allow traffic on the new port.

What is the difference between TCP and UDP?

TCP is a reliable, connection-oriented protocol, while UDP is an unreliable, connectionless protocol.

Why can't MAC addresses be organized into subnets?

MAC addresses cannot be organized into subnets and would make routing tables too large.

What is the purpose of network hardware?

The purpose of network hardware is to send and receive signals.

What is DNS and what does it do?

DNS (Domain Name System) translates hostnames into IP addresses and uses name servers.

What is DNS and what does it do?

DNS is a protocol that translates hostnames into IP addresses and uses name servers.

How can VPNs and TOR be used to secure routing and protect internet activity from surveillance and tracking?

VPNs and TOR can both be used to secure routing and protect internet activity from surveillance and tracking.

What is the purpose of switches in a network?

To direct incoming packets to the destination device in the local network (D)

What type of message does the client send back to the server in DHCP?

A unicast (B)

Which parties are involved in the certificate issuance process?

RA and VA (C)

What is the purpose of SSH key generation?

To create a private and public key (A)

What is Telnet?

A type of remote shell protocol (D)

How can multiple instances of server code be run in the background?

By using different IP addresses and port numbers for each instance (A)

What is Wireshark and what is its purpose?

Wireshark is a tool used for capturing and filtering network packets. Its purpose is for network troubleshooting and debugging.

What is Wireshark and how is it used in network troubleshooting?

Wireshark is a tool for capturing and filtering network packets. It can be used to analyze network traffic and diagnose network issues.

True or false: Wireshark is a tool for capturing and filtering network packets.

True (A)

What happens if the ServerName is not set in the VHost?

It will accept any name (A)

What happens if the ServerName is not set in the VHost?

If the ServerName is not set in the VHost, it will accept any name.

What does the text emphasize for connectivity testing?

Using command-line tools (D)

What is the bonus exercise in the text about?

The bonus exercise in the text is about running multiple servers with the same port and IP address.

What is identified when examining the zone file?

The lines that tell the NameServer where to find hosts are identified.

What needs to be done to add a new host to the zone file?

Update the zone file (B)

How can the CSR be signed?

The CSR can be signed using a command.

How can the CSR be signed?

Using a command (D)

How can SSH keys be used to authenticate to a gitlab remote repo?

SSH keys can be added to a user's GitLab account and used to authenticate to a remote repository, allowing users to push and pull code without having to enter a password each time.

Which options are used for port forwarding using SSH?

-N and -L (B)

True or false: The content to be displayed is changed by altering the ServerRoot.

False (B)

True or false: Subnet mask is used to identify the physical address of a networked computer.

False (B)

True or false: Local DNS is a type of recursive DNS.

False (B)

True or false: Port forwarding can redirect traffic from any socket to any other socket.

True (A)

What is unicast?

One-to-one transmission (A)

What is the vulnerability of SSL Strip?

It allows attackers to intercept HTTP traffic and add their own encryption before sending to the server (A)

What is an ARP request and how is it used in networking?

An ARP request is a network message sent to resolve the MAC address of a device. It is used when trying to connect to a device not in your ARP table.

What is the purpose of DHCP leases?

To determine how long a client can use a particular IP address. (D)

Can the Verification Authority (VA) be replaced by the Certification Authority (CA) directly?

Yes (D)

What can name servers request from a root name server?

Data about all the top-level domains (A)

How can you create a fallback option to fix the issue of VHost accepting any name?

To fix this, you can create a fallback option by making a copy of 000-default.conf called 999-fallback.conf.

What are well-defined ports?

Ports that do not require specifying port numbers or a range (D)

How can VPNs be used to bypass internet censorship in certain countries?

VPNs can be used to bypass internet censorship in certain countries by allowing users to access the internet through a server located outside of the censored area.

What is SSH tunneling and how does it work?

SSH tunneling is a way of sending data using an SSH connection between a client and server. It works by forwarding traffic through an encrypted tunnel, providing a secure way to access services on a remote machine.

True or false: DEs provide window managers for SSH connections.

False (B)

What does local DNS protect from external access?

Certain hostnames (A)

What port does RSH operate over?

23 or 2323 (D)

What does the SOA line at the top of the zone file specify?

The SOA line at the top specifies the Start of Authority.

True or false: The Python HTTP server only serves files in the specified directory.

True (A)

What is required to allow external access to the computer?

Opening the port on the firewall (D)

What is an ARP request and when is it sent?

An ARP request is sent when trying to connect to a device not in your ARP table. It is sent to resolve the MAC address of the device.

What does the text emphasize for connectivity testing?

The text emphasizes using command-line tools for connectivity testing.

Where must the signed certificate and key file be copied to?

The Apache server (A)

What is the server protocol in SSH?

SSHD (A)

What tools can be used to query DNS?

Tools to query DNS include host, dig, and nslookup.

What is the purpose of DNS lookup tools like dig?

Resolving hostnames and IP addresses (B)

True or false: IANA is responsible for managing both IP addresses and domain names.

True (A)

What should be done with the signed certificate and key file?

The signed certificate and key file must be copied to the Apache server.

What is the purpose of updating firewall rules if new ports are added or removed?

To improve network security by blocking unwanted traffic (A)

How can you create a fallback option for a VHost that does not have a ServerName set?

Make a copy of 000-default.conf called 999-fallback.conf. (C)

What is routing in data transmission?

Routing is the process of finding a path of hops between two IP addresses on different networks.

What is the difference between hosts and domains?

Hosts are identified by IP addresses while domains are identified by domain names (C)

How do you check the config and enable the site, and do a graceful restart?

To check the config, enable the site, and do a graceful restart, use the command apachectl graceful.

True or false: Apache needs to be set up to listen over the new port by adding Listen 8123 to ports.conf.

True (A)

What is a status line in the context of HTTP, and what information does it provide?

In the context of HTTP, a status line gives a response code and a short message.

What can tunnels be set up to access?

HTTPS on a server or SSH on a VM. (A)

What is the purpose of IP addresses?

The purpose of IP addresses is to identify networked computers.

What tools can be used to query DNS?

Host, dig, and nslookup can be used to query DNS.

What is a CNAME record used for in the context of the Docker Network?

To have www.knuckles.ca resolve to host1.knuckles.ca (C)

Which configuration is being disabled by the command "a2disconf apache2-doc"?

Apache documentation configuration (A)

True or false: ICMP is used to send data between directly connected nodes.

False (B)

Which command should you use to enable 999-fallback.conf?

a2ensite (D)

How can you enable 999-fallback.conf and disable 000-default.conf?

You can enable 999-fallback.conf using a2ensite and disable 000-default.conf using a2dissite.

What is the effect of disabling a configuration using the "a2disconf" command?

The configuration will be permanently disabled (B)

What is the difference between dynamic and static routing?

Dynamic routing determines the next hop based on network loads, while static routing ignores network loads.

What is required to allow external access to the computer?

To allow external access to the computer, the port on the firewall needs to be opened.

How are HTTP status codes categorized, and what are some examples?

HTTP status codes are categorized into 5 groups based on their first digit. Examples include 200 OK, 301 Moved Permanently, 400 Bad Request, 404 Not Found, and 504 Gateway Timeout.

How do subnets allow devices to communicate, and what do subnet masks define?

Subnets allow devices to communicate without IP within the same network, and subnet masks define which part of the IP address is the network ID and which part is the host ID.

What is the purpose of the tools mentioned in the text for monitoring servers?

To detect network issues and troubleshoot them (B)

What are SSH keys used for?

Setting up SSH tunnels (C)

What does SSH use for encrypting traffic and authenticating users?

Both B and C (A)

What is the purpose of a graceful restart after making changes to the Apache configuration?

To apply the changes without interrupting active connections (A)

True or false: ARP is used to match physical addresses to internet addresses.

False (B)

What is the base unit of information that can be sent over a network?

Packet (C)

True or false: DNS translates IP addresses into domain names.

False (B)

What is the Python HTTP server and what does it do?

The Python HTTP server is a tool used for creating an HTTP server with Python. It serves files in the specified directory.

What type of protocol is DNS?

Application layer (D)

What is UDP?

A transport protocol (A)

True or false: The exercise involves configuring the firewall to work with a new port.

True (A)

What tool can be used to sniff HTTP traffic?

Wireshark (D)

True or false: X11 forwarding can be secured if sshd has X11Forwarding no in its config.

False (B)

What is the main motivation behind using TOR?

Personal internet anonymity (D)

Why is it important to use trusted VPN and TOR services?

It is important to use trusted VPN and TOR services to ensure security and privacy.

What is the purpose of setting up SSH keys for remote server access?

SSH keys are used for secure remote access to servers. They provide a more secure alternative to passwords for authentication.

What transport protocol does the application layer protocol for DNS use?

TCP or UDP over port 53 (D)

How can port forwarding using SSH be done using the -N and -L options?

Port forwarding using SSH can be done using the -N option to prevent SSH from executing a remote command and the -L option to specify the local port to forward traffic to.

What type of DNS is local DNS?

Authoritative DNS (A)

True or false: Multiple instances of server code can be run in the background if each instance uses the same IP address and port number.

False (B)

What is the duration of the class and lab?

No information is provided (C)

Where should test content be created?

In the Default Document Root (D)

Is it necessary to use SSH keys for encrypted traffic?

Yes (B)

What should be done before creating test content in a new subdirectory in the Default Document Root?

Test content should be created in a new subdirectory in the Default Document Root.

What needs to be done to add a new host to the zone?

To add a new host to the zone, the zone file needs to be updated.

How can Apache2 be tested?

Apache2 can be tested using the configtest command.

What is the focus of the lab exploring DNS zone files in a Docker Network?

Examining the zone file on the nameserver part of the network (D)

What is the main purpose of certificates in online security?

To establish trust between parties (B)

What is the purpose of the root.hints file?

The root.hints file contains links to all the different root servers that can be used to bootstrap the DNS resolution process.

True or false: Traceroute is used to test communication between nodes.

False (B)

What does SSH port forwarding allow?

Passing data over an encrypted connection (D)

What is the format of the class and lab?

No information is provided (C)

What are ARP requests used for?

Resolving MAC addresses (A)

What is the role of switches in a local network?

To direct incoming packets to the destination device (D)

How can multiple instances of server code be run in the background?

Multiple instances of server code can be run in the background if each instance uses a different IP address and port number.

What is the process of TOR routing and how does it ensure anonymity?

TOR routing involves encryption and key wrapping by relays. Alice receives the fully wrapped message and can decrypt it. Key exchange is done one at a time and encrypted with previous keys. TOR has three types of relays: middle, exit, and bridge. Middle relays only handle encrypted packets and increase obscurity. Exit relays communicate unencrypted with the destination and are seen as the source of traffic. Bridge relays are unlisted and used to circumvent censorship.

True or false: The Start of Authority (SOA) record should include the time-to-refresh, time-to-retry, time-to-expire, and minimum TTL.

True (A)

How can DNS lookup tools like dig be used in network troubleshooting?

DNS lookup tools like dig can be used to resolve hostnames and IP addresses, which can be useful in diagnosing network issues.

What can you use Dig for?

Dig can be used to determine the IP address and name server for a domain.

True or false: DNS lookup tools like dig can be used to resolve hostnames and IP addresses.

True (A)

Which command should you use to disable 000-default.conf?

a2dissite (D)

What is a DNS zone?

A DNS zone is a subset of the DNS structure defined by zone files.

How can you reload the Apache service?

You can reload the Apache service using systemctl.

What is the purpose of a GET request in HTTP?

The purpose of a GET request in HTTP is to retrieve data from a server.

What is the purpose of running multiple instances of the server code in the background?

To test the server's performance under heavy load (A)

Why can't MAC addresses be organized into subnets, and what is the consequence of this?

MAC addresses cannot be organized into subnets and would make routing tables too large.

What should be done after making modifications to the "sites-*" tree?

Reload Apache (A)

What are the exercises in the text intended to achieve?

The exercises in the text are intended to achieve testing connectivity to the echo server.

What is the purpose of network redundancy?

Network redundancy allows for multiple paths between nodes to prevent loss of connectivity.

What type of record can be used to have www.knuckles.ca resolve to host1.knuckles.ca?

A CNAME record can be used to have www.knuckles.ca resolve to host1.knuckles.ca.

What command is used to enable a site?

To enable a site, use the a2ensite command.

What is the purpose of the network diagram created in the lab?

To show the flow when host1 tries to load a webpage hosted on host2 (D)

What file should be modified to point to the correct certificate and key files?

The default-ssl.conf file should be modified to point to the correct files.

Are SSH keys exchanged for specific users?

Yes (B)

What should be modified in the default-ssl.conf file?

The file path of the certificate file (D)

What is IANA responsible for managing?

IP addresses and domain names (D)

What are some examples of tunnels that can be set up using SSH?

Tunnels can be set up to access HTTPS on a server or SSH on a VM, among other things.

What are the four requirements to work inside an IPv4 network?

An IP address, a subnet mask, a route to a default gateway, and access to a Domain Name Server (C)

How can access to a VM via SSH be tested?

Using localhost. (C)

What are TCP and UDP used for?

Streaming (D)

True or false: MobaXterm only allows for X11 port forwarding over SSH on Windows operating systems.

False (B)

True or false: Well-defined ports require specifying port numbers or a range.

False (B)

What is the command used to enable a site after configuring it in sites-available?

a2ensite (D)

What is the importance of the public key in certificates?

It is a crucial part of the certificate (B)

What is the role of the Verification Authority in the certificate issuance process?

To act as a third-party verifier of certificates (C)

What is the purpose of DNS?

To translate hostnames into IP addresses. (D)

How can the webpage be tested?

By using https:// (A)

What is the significance of the lines that tell the NameServer where to find hosts in the zone file?

They help the NameServer locate hosts in the network (A)

True or false: The given steps are applicable to all web servers, not just Apache.

False (B)

What does DNS translate domain names into?

IP addresses (A)

What is ICMP and what is it used for?

ICMP is an IP layer protocol used for communicating network level information and error reporting.

True or false: The example zone file includes the name server and hosts for knuckles.ca.

True (A)

What command can be used with Dig to determine all the jumps in the DNS resolution process?

The command "dig +trace" can be used to determine all the jumps in the DNS resolution process.

What is the purpose of SSH tunneling?

To forward data over an encrypted connection (B)

What is routing, and what is the difference between dynamic and static routing?

Routing is the process of finding a path of hops between two IP addresses on different networks. Dynamic routing determines the next hop based on network loads, while static routing ignores network loads.

What is the port number commonly used for HTTP servers?

8080 (D)

Which key is the public key in SSH?

id_rsa)pub (A)

What is the purpose of running multiple instances of the server code in the background?

Running multiple instances of the server code in the background is for testing connectivity from different machines.

How can Wireshark be used to sniff HTTP traffic?

Wireshark can be used to sniff HTTP traffic by capturing packets on a network interface and analyzing the contents of the packets to extract HTTP data.

What should you do after enabling 999-fallback.conf and disabling 000-default.conf?

Reload the Apache service using systemctl. (C)

What is SSH and how does it work for remote shell access?

SSH is a type of remote shell used for accessing a computer's operating system remotely. Users can share their own public key with an SSH server for authentication. SSH key generation creates private and public keys. SSH port forwarding allows passing data over an encrypted connection.

What is the purpose of changing the port and IP address of the server code?

To test connectivity to different ports and IP addresses (B)

What determines the type of sockets different applications use?

The needs of the application (A)

What is X11?

A windowing system that provides the framework for GUI environment (C)

What is shown in the network diagram created in the lab?

The network diagram shows the flow when host1 tries to load a webpage hosted on host2.

What is an SSH tunnel and how is it used for secure remote access?

An SSH tunnel is a secure connection between two devices that allows for secure remote access to servers and applications.

What is used for user authentication in SSH?

Public key cryptography (D)

What command is used to restart Apache gracefully?

To restart Apache gracefully, use the command apachectl graceful.

What is the purpose of a Forward Zone File?

The purpose of a Forward Zone File is to map IP addresses to domain names.

What are the two main motivations for using VPNs?

Accessing private networks and increased privacy and internet safety (C)

What is the difference between HTTP and HTTPS traffic?

HTTPS traffic is encrypted and HTTP traffic is not (C)

How can the webpage be tested after configuring SSL?

The webpage can be tested using https:// instead of http://.

What should you do to ensure that traffic is going to the correct virtual host?

You should look at the log files to make sure traffic is going to the correct virtual host.

True or false: The default gateway is a router on the same network as the node.

True (A)

What is the purpose of the NC command in the context of HTTP?

The NC command can be used to establish a connection to a server from another terminal.

True or false: A hardened system or server may not require a DE or windowing interface.

True (A)

What must be specified for non-well-defined ports when allowing traffic in the firewall?

The port number and protocol (B)

What is the unique ID of a Network Interface Card (NIC)?

MAC address (A)

What is the prerequisite for the Linux II course?

No information is provided (A)

What is dig and how is it used?

Dig is a DNS lookup tool used to resolve hostnames and IP addresses. It is used by typing "dig [hostname]" in the command line.

What is the purpose of the "a2dismod" command?

To disable Apache modules (B)

True or false: SSH keys can be generated and copied for secure remote access to servers.

True (A)

What is a fully qualified domain name (FQDN)?

A domain name that includes all parts of a domain name (D)

What is the difference between TOR and VPNs in terms of traffic decentralization?

TOR aims to decentralize traffic while VPNs go through a single server (B)

What are some benefits of virtualized networks like Docker Networks?

Some benefits of virtualized networks like Docker Networks include easier management, increased security, and better resource utilization.

What needs to be done to allow traffic on specific ports?

To allow traffic on specific ports, the firewall must be configured.

What is the purpose of the DHCP and DNS applications in the context of HTTP?

DHCP and DNS are applications used for network configuration and name resolution, respectively. They are not directly related to HTTP.

What is the role of the SOA line in the zone file?

To specify the Start of Authority (A)

What should you do to ensure that traffic is going to the correct virtual host?

Look at the log files. (B)

Does SSH offer a secure way to access remote machines?

Yes (C)

True or false: The example zone file uses the IN directive to specify Internal as the class.

False (B)

What is the purpose of a Reverse Zone File?

The purpose of a Reverse Zone File is to map domain names to IP addresses.

What is the purpose of using SSL/TLS certificates?

SSL/TLS certificates are used to encrypt data sent between a server and a client.

What type of transport protocol does DHCP use?

UDP (A)

What is the text discussing in relation to building an authoritative zone file?

How to build an authoritative zone file for a domain (A)

True or false: The text discusses setting up SSH tunnels to various servers and ports.

True (A)

What is the purpose of Wireshark?

To analyze network traffic (A)

Which command is used to enable an Apache module?

a2enmod (D)

What is the root.hints file and what does it contain?

The root.hints file contains links to all the different root servers that can be used.

What is the name of the software that allows X11 port forwarding over SSH?

MobaXterm (C)

How can access to a VM via SSH be tested using localhost?

Access to a VM via SSH can be tested using localhost by establishing an SSH connection to the VM from the local machine using the loopback IP address (127.0.0.1).

What are Google's name servers?

8.8.8.8 and 8.8.4.4 (B)

What are some potential issues that could arise when setting up SSH tunnels to various servers and ports?

There are many potential issues that could arise, including firewall restrictions, port conflicts, and authentication errors.

What is XWindows System and how does it relate to X11?

XWindows System is the windowing system for most *nix systems. X11 is a client-server protocol that uses the 6000 port range. X11 can use Unix sockets if both client and server are running on the same host. X11 clients can run on one host and use an X server on another host.

True or false: SSH stands for Secure Socket Host.

False (B)

What is the purpose of SSH in remote development?

To establish a secure connection between local and remote machines. (B)

What request method is used to retrieve a specified resource?

GET (B)

What are SSH keys and how are they used for secure remote access to servers?

SSH keys are used for secure remote access to servers by generating a public and private key pair. The public key is copied to the server and the private key is kept on the user's computer.

True or false: Proper configuration of the firewall is not important for the security of the new port(s).

False (B)

What knowledge is required for proper firewall configuration?

Knowledge of network protocols and port numbers (D)

What is the purpose of tcpdump in network troubleshooting and debugging?

To analyze network traffic (A)

What is the importance of proper firewall configuration?

To ensure the new port(s) are accessible and secure (A)

True or false: Link layer protocols handle packet forwarding and routing.

False (B)

What is the Internet an example of?

A wide area network (D)

What is the purpose of the external resources provided in the text?

To provide further learning opportunities for the reader (D)

What is network redundancy, and why is it important?

Network redundancy allows for multiple paths between nodes to prevent loss of connectivity.

What can be done to further learning after reading the text?

External resources provided in the text can be used for further learning.

What is ARP and what is it used for?

ARP is used to match IP addresses to physical addresses (MAC addresses).

What is the main goal of TOR routing?

To have as much of the path encrypted as possible (A)

What directory should you add subdirectories to?

You should add subdirectories to /var/www/html.

True or false: The firewall needs to be configured to allow traffic on port 9876.

False (B)

True or false: SSH encrypts data sent over the network using symmetric key cryptography.

True (A)

Which domain is used as an example in the zone file?

knuckles.ca (D)

What is the purpose of configuring a firewall to block unwanted traffic?

To improve network security (B)

What port should you set up a port-based VHost to direct traffic to your first JavaScript project?

You should set up a port-based VHost to direct traffic over port 8123 to your first JavaScript project.

True or false: The text provides detailed solutions to the issues encountered when setting up SSH tunnels.

False (B)

What is the significance of root-servers.org?

Root-servers.org provides information about root servers that can be used in the DNS resolution process.

What was attempted during the SSH tunnel setup in the text?

Sniffing HTTP traffic (B)

What is the purpose of routers in a network?

To connect local area networks to wide access networks (D)

What command is used to allow traffic on a port?

The command "ufw allow" is used to allow traffic on a port.

What is the importance of using filters in Wireshark?

Using filters in Wireshark can help to focus on specific network traffic and can aid in troubleshooting network issues.

True or false: The example zone file also includes the IP address for the name server and hosts.

True (A)

True or false: The internet layer is responsible for implementing sequence checking.

False (B)

What is the purpose of routers in a network?

To connect local area networks to wide access networks (D)

How many steps are involved in the DHCP process?

4 (A)

What is the main topic of the text?

The main topic of the text is monitoring and testing servers using various tools and exercises in Python.

What is X11?

A windowing system used in Unix-based systems. (C)

What is the purpose of TCP/IP in data transmission?

TCP/IP is a packet switching protocol for data transmission.

What is the purpose of the echo server provided in the text?

To provide a simple way to test network connectivity (B)

How can knowledge of DNS zone files be useful in network administration?

Knowledge of DNS zone files can be useful in network administration for tasks such as troubleshooting DNS issues and managing domain names.

What are some advantages of using SSH for remote access?

Some advantages of using SSH for remote access include increased security, encrypted communication, and the ability to access remote resources from anywhere with an internet connection.

What is the tool used to find IP addresses of hosts in the Docker Network?

Dig (A)

What is MobaXterm and how can it be used for X11 port forwarding over SSH?

MobaXterm is a client that can be configured for X11 port forwarding over SSH, allowing users to run X11 clients on one host and use an X server on another host.

Which command is used to disable an Apache configuration?

a2disconf (A)

What is the Python HTTP server used for and what are its limitations?

The Python HTTP server is used for serving files over HTTP. Its limitations include only being able to serve files in the specified directory and not being suitable for production use.

What is Network Address Translation (NAT)?

A way to forward network traffic from one IP address to another (D)

What is the command used to establish an SSH connection between a client and server?

What request method is used to submit an entity to the specified resource, often in response to a form?

POST (A)

What are ICMP and ARP, and what are their respective purposes?

ICMP is an IP layer protocol used for communicating network level information and error reporting, while ARP is used to match IP addresses to physical addresses (MAC addresses).

What is the purpose of DNS zones and what are the two types of zone files?

DNS zones are subsets of the DNS structure defined by zone files. The two types of zone files are Forward Zone File, which maps IP addresses to domain names, and Reverse Zone File, which maps domain names to IP addresses.

What does the root.hints file contain?

Links to all the different root servers that can be used for resolution (A)

What is the main purpose of SSH tunneling?

To forward data over an encrypted connection (D)

What are SSH tunnels and what are they used for?

SSH tunnels are used to create a secure connection between two devices. They are used to connect to servers and ports that are not accessible through the public internet.

Which of the following is NOT a step in changing your hostname file?

Add 2 subdirectories to /var/www/html and add content. (C)

What is the crucial part of a certificate?

Public key (A)

What is required to use Wireshark?

A Graphical Interface for your VM or using an X-Forwarding client (B)

Where can additional information about HTTP request methods be found?

Additional information about HTTP request methods can be found in the reference link provided in the text.

Study Notes

Description

Sure, please provide me with the quiz topic.