File Info
| Exam | LPIC-2 Exam 202 |
| Number | 202-450 |
| File Name | LPI.202-450.ExamsKey.2018-11-21.60q.vcex |
| Size | 427 KB |
| Posted | Nov 21, 2018 |
| Download | LPI.202-450.ExamsKey.2018-11-21.60q.vcex |
How to open VCEX & EXAM Files?
Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.
Coupon: MASTEREXAM
With discount: 20%
Demo Questions
Question 1
When the default policy for the netfilter INPUT chain is set to DROP, why should a rule allowing traffic to localhost exist?
- All traffic to localhost must always be allowed
- It doesn’t matter; netfilter never affects packets addressed to localhost
- Some applications use the localhost interface to communicate with other applications
- syslogd receives messages on localhost
- The iptables command communicates with the netfilter management daemon netfilterd on localhost to create and change packet filter rules
Correct answer: C
Question 2
The content of which local file has to be transmitted to a remote SSH server in order to be able to log into the remote server using SSH keys?
- ~/.ssh/authorized_keys
- ~/.ssh/config
- ~/.ssh/id_rsa.pub
- ~/.ssh/id_rsa
- ~./ssh/known_hosts
Correct answer: A
Explanation:
Reference: https://www.digitalocean.com/community/tutorials/ssh-essentials-working-with-ssh-servers-clients-and-keys Reference: https://www.digitalocean.com/community/tutorials/ssh-essentials-working-with-ssh-servers-clients-and-keys
Question 3
What is the name of the network security scanner project which, at the core, is a server with a set of network vulnerability tests?
- NetMap
- OpenVAS
- Smartscan
- Wireshark
Correct answer: B
Question 4
With fail2ban, what is a ‘jail’?
- A netfilter rules chain blocking offending IP addresses for a particular service
- A group of services on the server which should be monitored for similar attack patterns in the log files
- A filter definition and a set of one or more actions to take when the filter is matched
- The chroot environment in which fail2ban runs
Correct answer: C
Explanation:
Reference: https://docs.plesk.com/en-US/onyx/administrator-guide/server-administration/protection-against-brute-force-attacks-fail2ban/fail2ban-jails-management.73382/ Reference: https://docs.plesk.com/en-US/onyx/administrator-guide/server-administration/protection-against-brute-force-attacks-fail2ban/fail2ban-jails-management.73382/
Question 5
Which of the following Samba configuration parameters is functionally identical to the parameter read only=yes?
- browseable=no
- read write=no
- writeable=no
- write only=no
- write access=no
Correct answer: C
Question 6
How must Samba be configured such that it can check CIFS passwords against those found in /etc/passwd and /etc/shadow?
- Set the parameters “encrypt passwords = yes” and “password file = /etc/passwd”
- Set the parameters “encrypt passwords = yes”, “password file = /etc/passwd” and “password algorithm = crypt”
- Delete the smbpasswd file and create a symbolic link to the passwd and shadow file
- It is not possible for Samba to use /etc/passwd and /etc/shadow directly
- Run smbpasswd to convert /etc/passwd and /etc/shadow to a Samba password file
Correct answer: D
Question 7
Which of the following statements is true regarding the NFSv4 pseudo file system on the NFS server?
- It must be called /exports
- It usually contains bind mounts of the directory trees to be exported
- It must be a dedicated partition on the server
- It is defined in the option Nfsv4-Root in /etc/pathmapd.conf
- It usually contains symlinks to the directory trees to be exported
Correct answer: B
Explanation:
Question 8
A user requests a “hidden” Samba share, named confidential, similar to the Windows Administration Share. How can this be configured?
Correct answer: E
Question 9
Which of the following options are valid in /etc/exports? (Choose two.)
- rw
- ro
- rootsquash
- norootsquash
- uid
Correct answer: AB
Question 10
Which of these tools, without any options, provides the most information when performing DNS queries?
- dig
- nslookup
- host
- named-checkconf
- named-checkzone
Correct answer: A
