IS3440 CHAP 6 EVERY SERVICE IS A POTENTIAL RISK Flashcards Preview

IS3440 LINUX SECURITY > IS3440 CHAP 6 EVERY SERVICE IS A POTENTIAL RISK > Flashcards

Flashcards in IS3440 CHAP 6 EVERY SERVICE IS A POTENTIAL RISK Deck (31)
Loading flashcards...
1
Q

COMMAND ___ searches the current cache of package information. Normally associated with the Ubuntu and Debian Linux distributions.

A

(COMMAND) apt - cache

2
Q

COMMAND ___ is normally used to install a package with all dependent packages. Usually associated with the Ubuntu and Debian Linux distributions.

A

(COMMAND) apt - get

3
Q

COMMAND ___ Manages the scripts that start and stop in different runlevels. Normally associated with the Red Hat and SUSE distributions.

A

(COMMAND) chkconfig

4
Q

COMMAND ___ is an option frequently available on scripts in the /etx/init.d/ directory. when used, it restarts a service only if it is already running.

A

(COMMAND) condrestart

5
Q

COMMAND ___ manages the scripts that start and stop in different runlevels. Normally associated with the Ubuntu and Debian Linux distributions.

A

(COMMAND) update - rc.d

6
Q

COMMAND ___ is short for Yellowdog Updater.Modied. It can install packages with all dependent packages.

A

(COMMAND) yum

7
Q

___ is a secured host dedicated for a specific purpose. It is configured with a minimal number of services to limit its exposure to attacks.

A

Bastion server

8
Q

___ is one type of operating-system-level virtualization. When a program or service routes clients to a directory, a chroot jail includes all of the binaries, libraries, configuration files and executables required to run a service that is so contained.

A

Chroot jail

9
Q

___ is a colloquial description of one type of error message related to the attempted installation of a package with the (COMMAND) rpm or dpkg. The installation is not completed because the package depends on another. This occurs when dependencies descend to another level.

A

Dependency hell

10
Q

___ is a server that listens for requests on multiple ports on behalf of multiple services. As a single daemon, it saves resources.
(INFO) The term “internet” in this title is normally shown in lowercase, as it refers to an interconnected series of networks, not the Internet, Its configuration file is
/etc/xinetd.conf. That file normally refers to service-specific files in the /etc/xinetd.d/ directory.

A

Extended internet super server

11
Q

___ is an open source compiler system that supports a variety of programming languages, including C, Java, and Fortran.

A

(GCC) GNU Compiler Collection

12
Q

___ is a server that listens for requests on multiple ports on behalf of multiple services. As a single daemon, it saves resources. While it is obsolete on most distributions, it is still used by some third-party software.

A

Internet super server

13
Q

___ is a number associated with the process running on a Linux system. The ___ of currently running processes can be found with the (COMMAND) ps.

A

(PID) Process Identifier

14
Q

___ is a coloquial description of a (normally compressed) archive of files, managed with the (COMMAND) tar.

A

Tarball

15
Q

___ is a system designed to replace the (COMMAND) /sbin/init and the System V system of runlevels. Related configuration files can be found in the (DIRECTORY) /etc/event.d/

A

Upstart

16
Q

___ is a protocol that enables remote logins to a GUI. It is normally associated with Transmission Control Protocol/Internet Protocol (TCP/IP port 177.

A

(XDMCP) X Display Manager Control Protocol

17
Q
  1. What part of a network is best for bastion servers?
  2. A DMZ
  3. The protected network
  4. Virtual hosts in a bridged network
  5. A bastionized network
A

A DMZ

18
Q
  1. Which of the following DIRECTORIES contains scripts that control services?
  2. /etc/default/
  3. /etc/sysconfig/
  4. /etc/xinetd.d/
  5. /etc/init.d/
A

/etc/init.d/

19
Q
  1. Which of the following COMMANDS lists currently installed packages on a Linux system?
  2. rpm -qi
  3. rpm -qa
  4. rpm -qf
  5. rpm -ql
A

rpm -qa

20
Q
  1. Your LAN is on the 192.168.0.0/24 network. Which of the following virtual machine network options gives local virtual machines addresses on that network?
  2. Host-only
  3. NAT
  4. Bridged
  5. DHCP
A

Bridged

21
Q
  1. Which of the following options is a development tool that compiles source code?
  2. cpmfogire
  3. make
  4. gcc
  5. cpp
A

make

22
Q
  1. Scripts in which of the following DIRECTORIES can be used to deactivate a currently running service?
  2. /etc/rc5/
  3. /etc/rcS.d/
  4. /etc/event.d/
  5. /etc/init.d/
A

/etc/init.d/

23
Q
  1. Enter the command on Red Hat distributions that includes the default status of services with /etc/init.d/ scripts at each runlevel: ___
A

chkconfig –list

24
Q
  1. Which service script in the /etc/init.d/ DIRECTORY is NOT related to SELinux?
  2. auditd
  3. dund
  4. mctrans
  5. restorecond
A

dund

25
Q
  1. Which service scritp in the /etc/init.d/ is NOT related to NFS?
  2. netfs
  3. nfslock
  4. rpcsvcgssd
  5. ncsd
A

ncsd

26
Q
  1. Enter the full path to the main configuration file associated with the extended internet super server:
    ____.
A

/etc/xinetd.conf

27
Q
  1. Which of the following options for scripts in the /etc/init.d/ DIRECTORY does not kick off users who are currently connected to a service?
  2. restart
  3. reload
  4. condreload
  5. HUP
A

reload

28
Q
  1. Which of the following DIRECTORIES contain the standard chroot jail location for Red Hat BIND DNS servers?
  2. netfs
  3. nfslock
  4. rpcsvcgssd
  5. ncsd
A

ncsd

29
Q
  1. Which of the following is a protocol that supports remote login access to a GUI system?
  2. Telnet
  3. SSH
  4. XDMCP
  5. LTSP
A

XDMCP

30
Q
  1. Which of the following clients can connect to a Microsoft Exchange server?
  2. Balsa
  3. Evolution
  4. Kmail
  5. Thunderbird
A

Evolution

31
Q
  1. Which of the following COMMANDS starts a console-based Web browser?
  2. konqueror
  3. opera
  4. firefox
  5. elinks
A

elinks