303-300試験無料問題集（121題）「Lpi LPIC Exam 303: Security, version 3.0 認定」

出題：1

What type of activity does HID monitor for?

A. Network traffic

B. Unauthorized access attempts

C. Malware infections

D. File and folder changes

正解：B 解答を投票する

出題：2

Which of the following types can be specified within the Linux Audit system?
(Choose THREE correct answers.)

A. Console rules

B. System call rules

C. Network connection rules

D. File system rules

E. Control rules

正解：B,D,E 解答を投票する

出題：3

What is a DoS attack?

A. An attack that floods a network or server with traffic to make it unavailable

B. An attack that aims to steal sensitive information

C. An attack that exploits a vulnerability in software

D. An attack that targets a specific user or organization

正解：A 解答を投票する

出題：4

What is the purpose of AIDE?

A. To manage system log files

B. To detect intrusions and system changes

C. To manage installed packages

D. To automate host scans

正解：B 解答を投票する

出題：5

Given a proper network and name resolution setup, which of the following commands establishes a trust between a FreeIPA domain and an Active Directory domain?

A. ipa-ad -add-trust --account ADDOM\Administrator--query-password

B. ipa ad join addom -U Administrator -w

C. ipa trust-add --type ad addom --admin Administrator --password

D. net ad ipajoin addom -U Administrator -p

E. trustmanager add --domain ad: //addom --user Administrator -w

正解：C 解答を投票する

出題：6

Which command is used to run a new shell for a user changing the SELinux context?
(Specify ONLY the command without any path or parameters.)
Solution: newrole
Determine whether the given solution is correct?

A. Incorrect

B. Correct

正解：B 解答を投票する

出題：7

Which of the following statements is true regarding eCryptfs?

A. After unmounting an eCryptfs directory, the directory hierarchy and the original file names are still visible, although, it is not possible to view the contents of the files.

B. For every file in an eCryptfs directory there exists a corresponding file that contains the encrypted content.

C. When a user changes his login password, the contents of his eCryptfs home directory has to be re- encrypted using his new login password.

D. eCryptfs cannot be used to encrypt only directories that are the home directory of a regular Linux user.

E. The content of all files in an eCryptfs directory is stored in an archive file similar to a tar file with an additional index to improve performance.

正解：D 解答を投票する

出題：8

Which of the following are differences between AppArmor and SELinux?
(Choose TWO correct answers)

A. AppArmor is implemented in user space only. SELinux is a Linux Kernel Module.

B. AppArmor neither requires nor allows any specific configuration. SELinux must always be manually configured.

C. SELinux stores information in extended file attributes. AppArmor does not maintain file specific information and states.

D. AppArmor is less complex and easier to configure than SELinux.

E. The SELinux configuration is loaded at boot time and cannot be changed later on. AppArmor provides user space tools to change its behavior.

正解：C,D 解答を投票する

出題：9

How are SELinux permissions related to standard Linux permissions?
(Choose TWO correct answers.)

A. Standard Linux permissions override SELinux permissions.

B. SELinux permissions are verified before standard Linux permissions.

C. SELinux permissions are verified after standard Linux permissions.

D. SELinux permissions override standard Linux permissions.

正解：A,C 解答を投票する

出題：10

Which permission bit allows a file to be executed?

A. SetUID

B. Execute

C. Write

D. Read

正解：B 解答を投票する

303-300試験無料問題集「Lpi LPIC Exam 303: Security, version 3.0 認定」