303-200 Online Practice Questions and Answers

How are SELinux permissions related to standard Linux permissions? (Choose TWO correct answers.)

A. SELinux permissions overnde standard Linux permissions.

B. Standard Linux permissions override SELinux permissions.

C. SELinux permissions are verified before standard Linux permissions.

D. SELinux permissions are verified after standard Linux permissions.

Which of the following are differences between AppArmor and SELinux? (Choose TWO correct answers).

A. AppArmor is implemented in user space only. SELinux is a Linux Kernel Module.

B. AppArmor is less complex and easier to configure than SELinux.

C. AppArmor neither requires nor allows any specific configuration. SELinux must always be manually configured.

D. SELinux stores information in extended file attributes. AppArmor does not maintain file specific information and states.

E. The SELinux configuration is loaded at boot time and cannot be changed later on AppArmor provides user space tools to change its behavior.

Which of the following commands defines an audit rule that monitors read and write operations to the file/ etc/firewall/rules and associates the rule with the name firewall?

A. auditctl -N firewall -r r: /etc/firewall/rules -r w: etc/firewall/rules

B. auditctl -A –f/etc/firewall/rules -o r- o w -| firewall

C. auditctl -w /etc/firewall/rules -p rw -k firewall

D. auditctl -_read /etc/firewall/rules -_write /etc/firewall/rules --label firewall

E. echo "n: firewall r:/etc/firewall/rules: w:/etc/firewall/rules:" | auditctl ~

Which of the following types can be specified within the Linux Audit system? (Choose THREE correct answers)

A. Control rules

B. File system rules

C. Network connection rules

D. Console rules

E. System call rules

Which PAM module checks new passwords against dictionary words and enforces complexity? (Specially the module name only without any path.)

Which of the following statements is true about chroot environments?

A. Symbolic links to data outside the chroot path are followed, making files and directories accessible.

B. Hard links to files outside the chroot path are not followed, to increase security.

C. The chroot path needs to contain all data required by the programs running in the chroot environment.

D. Programs are not able to set a chroot path by using a function call, they have to use the command chroot.

E. When using the command chroot, the started command is running in its own namespace and cannot communicate with other processes.

Which option in an Apache HTTPD configuration file enables OCSP stapling? (Specify ONLY the option name without any values or parameters.)

Which of the following commands displays all ebtable rules contained in the table filter including their packet and byte counters?

A. ebtables -t nat -L -v

B. ebtables-L-t filter -Lv

C. ebtables -t filter –L --Lc

D. ebtables -t filter -Ln -L

E. ebtables-L -Lc-t filter

Which of the following terms refer to existing scan techniques with nmap? (Choose TWO correct answers.)

A. Xmas Scan

B. Zero Scan

C. FlN Scan

D. lP Scan

E. UDP SYN Scan

Which of the following statements are valid wireshark capture filters? (Choose TWO correct answers.)

A. port range 10000:tcp-15000:tcp

B. port-range tcp 10000-15000

C. tcp portrange 10000-15000

D. portrange 10000/tcp-15000/tcp

E. portrange 10000-15000 and tcp