101-2 Flashcards
What is true regarding public and private SSH keys? (Choose two.)
A. For each user account, there is exactly one key pair that can be used to log into that account.
B. The private key must never be revealed to anyone.
C. Several different public keys may be generated for the same private key.
D. To maintain the private key’s confidentiality, the SSH key pair must be created by its owner.
E. To allow remote logins, the user’s private key must be copied to the remote server.
B. The private key must never be revealed to anyone.
D. To maintain the private key’s confidentiality, the SSH key pair must be created by its owner.
Which of the following commands finds all files owned by root that have the SetUID bit set?
A. find / -user root -perm -4000
B. find / -user 0 -mode +s
C. find / -owner root -setuid
D. find / -owner 0 -permbits 0x100000000
E. find / –filter uid=1 –filter pers=u+s
A. find / -user root -perm -4000
What command is used to add OpenSSH private keys to a running ssh-agent instance?
ssh-add
Which directory holds configuration files for xinetd services? (full path to the directory.)
/etc/xinetd.d/
Which mechanism does ssh use to interact with the SSH agent?
A. Connecting to port 2222 which is used by the system-wide SSH agent.
B. Using the fixed socket .ssh-agent/ipc.
C. Creating an alias replacing ssh with calls to ssh-agent.
D. Starting ssh-agent as a child process for each ssh invocation.
E. Evaluating environment variables such as SSH_AUTH_SOCK.
E. Evaluating environment variables such as SSH_AUTH_SOCK.
Which parameter of the ssh command specifies the location of the private key used for login attempts?
(Specify only the option name without any values or parameters.)
-i
Which of the following is true about IPv6?
A. IPv6 no longer supports broadcast addresses.
B. With IPv6, the TCP port numbers of most services have changed.
C. IPv4 addresses can be used without any change with IPv6.
D. IPv6 no longer supports multicast addresses.
E. For IPv6, UDP and TCP have been replaced by the Rapid Transmission Protocol RTP.
A. IPv6 no longer supports broadcast addresses.
What is true about the following command?
nmcli device wifi connect WIFIoI
A. NetworkManager opens a new public hotspot with the SSID WIFIoI.
B. NetworkManager creates an unconfigured new virtual network interface named WIFIoI.
C. NetworkManager creates a new wifi connection WIFIoI and activates it.
D. NetworkManager returns an error in case the connection WIFIoI does not exist.
E. NetworkManager returns an error because WIFIoI is an invalid wifi device.
C. NetworkManager creates a new wifi connection WIFIoI and activates it.
Which of the commands below might have produced the following output?
;; global options: +cmd
;; Got answer:
;; -»HEADER«- opcode: QUERY, status: NOERROR, id: 14368
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QuESTION SECTION:
;www.example.org. IN NS
;; AUTHORITY SECTION:
example.org. 3600 IN SOA ns.icann.org. noc.dns.icann.org. 2019121418 7200 3600 1209600 3600
;; Query time: 96 msec
;; SERVER: 172.21.0.9#53(172.21.0.9)
;; WHEN: Di Jun 23 13:57:34 CEST 2020
;; MSG SIZE rcvd: 97
A. dig -t mx www.example.org
B. dig www.example.org
C. dig -t ns www.example.org
D. dig -t a www.example.org
E. dig -t soa www.example.org
C. dig -t ns www.example.org
Which parameter is missing in the command
ip link set ____ dev eth0
to activate the previously inactive network interface eth0? (Specify the parameter only without any
command, path or additional options.)
up
Which of the following states can NetworkManager show regarding the system’s network connectivity? (Choose two.)
A. up
B. portal
C. full
D. login-required
E. firewalled
B. portal
C. full
Which of the following are valid host addresses for the subnet 203.0.113.64/28? (Choose two.)
A. 203.0.113.64
B. 203.0.113.78
C. 203.0.113.65
D. 203.0.113.80
E. 203.0.113.81
B. 203.0.113.78
C. 203.0.113.65
Which of the following keywords can be used in the file /etc/resolv.conf? (Choose two.)
A. substitute
B. lookup
C. search
D. nameserver
E. method
C. search
D. nameserver
How does the ping command work by default?
A. Is sends an ICMP Echo Request to a remote host and waits to receive an ICMP Echo Response in return.
B. It sends an ARP request to a remote host and waits to receive an ARP response in return.
C. It sends a TCP SYN packet to a remote host and waits to receive an TCP ACK response in return.
D. Is sends a broadcast packet to all hosts on the net and waits to receive, among others, a response from the target system.
E. It sends a UDP packet to port 0 of the remote host and waits to receive a UDP error response in return.
A. Is sends an ICMP Echo Request to a remote host and waits to receive an ICMP Echo Response in return.
Which of the following commands displays the number of bytes transmitted and received via the eth0 network interface? (Choose two.)
A. route -v via eth0
B. ip stats show dev eth0
C. netstat -s -i eth0
D. ifconfig eth0
E. ip -s link show eth0
D. ifconfig eth0
E. ip -s link show eth0
Given the following routing table:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
0.0.0.0 192.168.178.1 0.0.0.0 UG 0 0 0 wlan0
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.2.0 192.168.1.1 255.255.255.0 U 0 0 0 eth0
192.168.178.0 0.0.0.0 255.255.255.0 U 9 0 0 wlan0
How would an outgoing packet to the destination 192.168.2.150 be handled?
A. It would be passed to the default router 192.168.178.1 on wlan0.
B. It would be directly transmitted on the device eth0.
C. It would be passed to the default router 255.255.255.0 on eth0.
D. It would be passed to the router 192.168.1.1 on eth0.
E. It would be directly transmitted on the device wlan0.
D. It would be passed to the router 192.168.1.1 on eth0.
Which of the following commands will delete the default gateway from the system’s IP routing table?
(Choose two.)
A. ifconfig unset default
B. route del default
C. ip route del default
D. netstat -r default
E. sysctl ipv4.default_gw=0
B. route del default
C. ip route del default
What command enables a network interface according to distribution-specific configuration, such as
/etc/network/interfaces
or
/etc/sysconfig/network-scripts/ifcfg-eth0?
ifup
What is true about NetworkManager on a Linux system that uses its distribution’s mechanisms to configure network interfaces? (Choose two.)
A. NetworkManager reconfigures all network interfaces to use DHCP unless they are specifically managed by NetworkManager.
B. NetworkManager must be explicitly enabled for each interface it should manage.
C. NetworkManager by default does not change interfaces which are already configured.
D. NetworkManager disables all interfaces which were not configured by NetworkManager.
E. NetworkManager can be configured to use the distribution’s network interface configuration.
C. NetworkManager by default does not change interfaces which are already configured.
E. NetworkManager can be configured to use the distribution’s network interface configuration.
Which standardized TCP port is used by HTTPS services?
A. 25
B. 80
C. 8080
D. 443
E. 636
D. 443
Which of the following environment variables can be defined in locale.conf? (Choose two.)
A. LC_ALL
B. LC_USERNAME
C. LC_UTF8
D. LC_GEOGRAPHY
E. LC_TIME
A. LC_ALL
E. LC_TIME
Which of the following commands sets the system’s time zone to the Canadian Eastern Time?
A. localegen -t -f /usr/share/zoneinfo/Canada/Eastern > /etc/locate.tz
B. tzconf /etc/localtime
C. sysctl -w clock.tz=’Canada/Eastern’
D. modprobe tz_ca_est
E. ln -sf /usr/share/zoneinfo/Canada/Eastern /etc/localtime
E. ln -sf /usr/share/zoneinfo/Canada/Eastern /etc/localtime
What option to useradd creates a new user’s home directory and provisions it with a set of standard files?
(Specify only the option name without any values or parameters.)
-m
How can a specific user be prevented from scheduling tasks with at?
A. By adding the specific user to the /etc/at.allow file.
B. By adding the specific user to the [deny] section in the /etc/atd.conf file.
C. By adding the specific user to the nojobs group.
D. By adding the specific user to the /etc/at.deny file.
E. By executing the atd –deny [user] command.
D. By adding the specific user to the /etc/at.deny file.
Which file contains the data of the last change of a user’s password?
A. /etc/gshadow
B. /etc/passwd
C. /etc/pwdlog
D. /var/log/shadow
E. /etc/shadow
E. /etc/shadow
Which of the following fields can be found in the /etc/group file? (Choose two.)
A. The home directory of the group.
B. The list of users that belong to the group.
C. The name of the group.
D. The default group ACL.
E. The description of the group.
B. The list of users that belong to the group.
C. The name of the group.
Which of the following sections exists in a systemd timer unit?
A. [Events]
B. [Timer]
C. [cron]
D. [Schedule]
E. [Trigger]
B. [Timer]
Which of the following getent invocations lists all existing users?
A. getent homes
B. getent uids
C. getent passwd
D. getent users
E. getent logins
C. getent passwd
Given the following user’s crontab entry:
15 14 * * 1-5 /usr/local/bin/example.sh
When will the script /usr/local/bin/example.sh be executed?
A. At 14:15 local time, January till May.
B. At 15:14 local time, 1st to 5th day of month.
C. At 14:15 local time, February till June.
D. At 14:15 local time, 1st to 5th day of month.
E. At 14:15 local time, Monday to Friday
E. At 14:15 local time, Monday to Friday
If neither cron.allow nor cron.deny exist in /etc/, which of the following is true?
A. Without additional configuration, all users may create user specific crontabs.
B. Without additional configuration, only root may create user specific crontabs.
C. The cron daemon will refuse to start and report missing files in the system’s logfile.
D. When a user creates a user specific crontab the system administrator must approve it explicitly.
E. The default settings of /etc/crond.conf define whether or not user specific crontabs are generally allowed or not.
B. Without additional configuration, only root may create user specific crontabs.
What is the purpose of the iconv command?
A. It converts bitmap images from one format to another such as PNG to JPEG.
B. It verifies that the root directory tree compiles to all conventions from the Filesystem Hierarchy Standard (FHS).
C. It converts files from one character set to an other.
D. It changes the mode of an inode in the ext4 filesystem.
E. It displays additional meta information from icon files ending in .ico.
C. It converts files from one character set to an other.
Which character in the password field of /etc/passwd is used to indicate that the encrypted password is stored in /etc/shadow?
A. *
B. !
C. s
D. #
E. x
E. x
What does the term Braille Display refer to?
A. A standardized high contract graphical theme for desktop applications?
B. A Linux desktop environment similar to KDE and GNOME.
C. A legacy display technology superseded by LCD.
D. A physical representation of characters using small dots.
E. A standard file format for data exchange, similar to XML.
D. A physical representation of characters using small dots.
Which environment variable is used by an X11 client to determine the X Server to connect to? (Specify only the variable name)
DISPLAY
Which of the following tasks are handled by a display manager like XDM or KDM? (Choose two.)
A. Configure additional devices like new monitors or projectors when they are attached.
B. Start and prepare the desktop environment for the user.
C. Create an X11 configuration file for the current graphic devices and monitors.
D. Lock the screen when the user was inactive for a configurable amount of time.
E. Handle the login of a user.
B. Start and prepare the desktop environment for the user.
E. Handle the login of a user.
Which of the following protocols is designed to access the video card output of a virtual machine?
A. KDE
B. X11
C. Xfce
D. SPICE
E. XDMCP
D. SPICE
Which command is used to set the hostname of the local system? (Specify only the command without anypath or parameters.)
hostname
QUESTION 2:
Which of the following is a valid IPv6 address?
A. 2001:db8:0g21::1
B. 2001::db8:4581::1
C. 2001:db8:3241::1
D. 2001%db8%9990%%1
E. 2001.db8.819f..1
Answer: C
What command, depending on its options, can display the open TCP connections, the routing tables, aswell as network interface statistics?
netstat
Which command included in NetworkManager is a curses application which provides easy acces to the NetworkManager on the command line?
nmtui
Which of the following tools, used for DNS debugging, reports not only the response from the name
sever but also details about the query?
A. dnsq
B. hostname
C. dig
D. dnslookup
E. zoneinfo
Answer: C
Which of the following statements is valid in the file /etc/nsswitch.conf?
A. multi on
B. 192.168.168.4 dns-server
C. namespaces: net mount procs
D. include /etc/nsswitch.d/
E. hosts: files dns
Answer: E
Which of the following connection types, as seen in nmcli connection show, may exist in
NetworkManager? (Choose three.)
A. tcp
B. ethernet
C. wifi
D. ipv6
E. bridge
B. ethernet
C. wifi
E. bridge
On a Linux workstation, the route command takes a long time before printing out the routing table.
Which of the following errors does that indicate?
A. The local routing information may be corrupted and must be re-validated using a routing protocol.
B. One of the routers in the routing table is not available which causes the automatic router failure detection mechanism (ARF-D) to wait for a timeout.
C. There may accidentally be more than one default router in which case a default router election has to be done on the network in order to choose one router as the default.
D. The Linux Kernel Routing Daemon (LKRD) is not running and should be started using its init script or systemd unit.
E. DNS resolution may not be working as route by default tries to resolve names of routers and destinations and may run into a timeout.
E. DNS resolution may not be working as route by default tries to resolve names of routers and destinations and may run into a timeout.
What is true about the Hop Limit field in the IPv6 header?
A. The field is not changed during the transport of a package.
B. The field is transmitted within a hop-by-hop extension header.
C. Each router forwarding the packet increases the field’s value.
D. Each router forwarding the packet decreases the field’s value.
E. For multicast packages, the field’s value is always 1.
D. Each router forwarding the packet decreases the field’s value.
Which of the following nmcli subcommands exist? (Choose two.)
A. nmcli ethernet
B. nmcli device
C. nmcli wifi
D. nmcli address
E. nmcli connection
B. nmcli device
E. nmcli connection