Chapter 10

Question 1

hacker

Answer 1

in the linux world this refers to intelligent linux users… not necessarily malicious individuals

525

Question 2

network server intermediaries

Answer 2

super server
super daemon

525

Question 3

inetd

Answer 3

depreciated legacy super daemon.

525

Question 4

inetd

Service Name

Answer 4

name of the service as listed in /etc/services file

526

Question 5

inetd

Socket Type

Answer 5

tells the system what type of connection to expect like whether it is two way

526

Question 6

inetd

Protocol

Answer 6

specifies which TCP/IP transport layer protocol will be used

526

Question 7

inetd

Wait/No Wait

Answer 7

specifies whether the server connected to its client and freed the socket (nowait) or should process packets and then time out (wait)

526

Question 8

inetd

User

Answer 8

username used to run the server. The root and nobody users were common choices

526

Question 9

inetd

Parameters

Answer 9

Everything after the server name consisted of parameters that were passed to the server

526

Question 10

xinetd

Answer 10

extended super daemon. It provides the functionality of inetd plus security options that are similar to those of TCP wrappers. controlled by the /etc/xinetd.d directory

528

Question 11

fuser

Answer 11

determines the processes currently using network port

537

Question 12

su

Answer 12

switch user

typed alone results in a prompt for root password. if the user types the password correctly
544

Question 13

repudiation environment

Answer 13

a user can deny actions.

545

Question 14

VNC

Answer 14

Virtual Network Computing

transfer’s data over the network unencrypted

555

Question 15

who

Answer 15

shows you who is currently logged on to the system. It displays the username, their current terminal, and the time they logged into the system

547

Question 16

who -a

Answer 16

adds far more information to the who command’s output

547

Question 17

w command

Answer 17

shows who is logged into the system in addition to what they are doing and statistics about CPU usage

548

Question 18

last command

Answer 18

current and historical data concerning users logging into and out of the system

not quite the last card I will write for Linux, but close

548

Question 19

PAM

Answer 19

Pluggable Authentication Modules

called pam_limits. contains: domain type item value

551

Question 20

/etc/security/limits.conf

domain type item value

domain field

Answer 20

describes the entity to which the limit applies. It can be a username; a group name, which takes the form @groupname, or an asterisk wildcard, which matches everybody

551

Question 21

/etc/security/limits.conf

domain type item value

type field

Answer 21

specifies the limit as hard or soft. Hard limit is imposed by the system admin and cannot be exceeded under any circumstances

551

Question 22

/etc/security/limits.conf

domain type item value

Limited Item

Answer 22

specifies what type of item is being limited. Examples include core (size of the core files), data (the size of a program’s data area), fsize (the size of files created by the user), nofile (the number of open data files), rss (the resident set size), stack (stack size), cpu (cpu time of a single process in minutes), nproc (the number of concurrent processes), maxlogins (the number of simultaneous logins), and priority (the process priority)

552

Question 23

/etc/security/limits.conf

domain type item value

value field

Answer 23

specifies the value that’s to be applied to the limit

552

Question 24

ulimit syntax

Answer 24

ulimit [options [limit]]

552

Question 25

ulimit option

-c

Answer 25

core file limits the size of core dumps, which are files created for debugging purposes in certain types of program crashes

552

Question 26

ulimit option

-f

Answer 26

limits the size of files that may be created by the shell

552

Question 27

ulimit option

-n

Answer 27

limits the number of open file descriptors (not honored by most systems)

552

Question 28

ulimit option

-u

Answer 28

limits the number of processes a user may run

552

Question 29

ulimit option

-t

Answer 29

limits the total CPU time in seconds

552

Question 30

ulimit option

-v

Answer 30

sets the total amount of virtual memory available to the shell

552

Question 31

ulimit option

-s

Answer 31

sets the maximum stack size

552

Question 32

ulimit option

-m

Answer 32

sets the maximum resident set size

552

Question 33

ulimit option

-d

Answer 33

limits programs’ data set size

552

Question 34

ulimit option

-l

Answer 34

sets the maximum size that may be locked into memory

552

Question 35

ulimit option

-H

Answer 35

modifies only options to be hard

553

Question 36

ulimit option

-S

Answer 36

modifies only options to be soft

553

Question 37

ulimit option

-a

Answer 37

casues ulimit to report its current settings

553

Question 38

growing the haystack password technique

Answer 38

adding a single letter repeatedly to increase security

543

Question 39

GPG

Answer 39

Gnu Privacy Guard

not installed by default. open source reimplimentation of PGP

uses private and public key.
564

Question 40

where does GPG keep it’s keys?

Answer 40

keyring

in the ~/.gnupg

564

Question 41

pwconv

Answer 41

moves all password information from the /etc/passwd

541

Question 42

pwck

Answer 42

ensures all of the files are in sync after conversion

541`