The following questions will help you measure your understanding of the material presented in this chapter. As no multiple choice questions appear on the Red Hat exams, no multiple choice questions appear in this book. These questions exclusively test your understanding of the chapter. It is okay if you have another way of performing a task. Getting results, not memorizing trivia, is what counts on the Red Hat exams. There may be more than one answer to many of these questions.
1. | In the /etc/exports file, if you want to export the /data directory as read-only to all hosts and grant read and write permission to the host superv in domain.com, what directive would you enter in that file? __________________________________________________________ |
|
2. | Once you've configured /etc/exports, what command exports these shares? __________________________________________________________ |
|
3. | Your company has just suffered an external security breach. As a result, the security group in your department has tightened the screws on all the servers, routers, and firewalls (but not SELinux). Up until this point, all user data had been mounted over NFS, but now nothing works. What's the most likely cause? _________________________________________________________ |
|
Answers
1. | The following entry in /etc/exports would export the /data directory as read-only to all hosts and grant read and write permission to the host superv in domain.com:
/data(ro,sync) superv.domain.com(rw,sync) |
2. | Once you've revised /etc/exports, the exportfs -a command exports all filesystems. Yes, you can re-export filesystems with the exportfs-r command. But there's no indication that NFS shares have yet been exported. |
3. | The most likely cause of NFS problems after security is boosted is an overzealous firewall. |
4. | You're experiencing problems with NFS clients for various reasons, including frequent downtime on the NFS server and network outages between NFS clients and servers. What type of mounting can prevent problems on NFS clients? _______________________________________________ |
|
Answers
4. | Soft mounting can prevent problems such as lockups with NFS clients. |
5. | What default directive in /etc/vsftpd/vsftpd.conf should you disable if you don't want users logging into their accounts through the vsFTP server? _______________________________________________ |
|
6. | What directive should you enable if you want to keep regular users from getting to the top-level root directory (/) on your computer? _______________________________________________ |
|
7. | Based on the default RHEL 5 configuration, what file includes a list of users not allowed to log into the vsFTP server? ________________________________________________ |
|
8. | What additional directives do you need to add to the default vsFTP configuration file to allow security using PAM and TCP wrappers? ________________________________________________ |
|
Answers
5. | The default directive in /etc/vsftpd/vsftpd.conf that you should disable if you don't want users logging into their accounts through the vsFTP server is local_enable=YES. |
6. | The directive you should add if you want to keep regular users from getting to the top-level root directory (/) on your computer is chroot_user=YES. |
7. | Based on the default RHEL 5 configuration, both ftpusers and user_list in the /etc/vsftpd directory include a list of users not allowed to log into the vsFTP server. |
8. | The additional directives you need to add to the default vsFTP configuration file to allow security using PAM and TCP wrappers are pam_service_name=vsftpd and tcp_wrappers=YES. |
9. | A group that prefers Microsoft servers has set up a Windows 2000 server to handle file and print sharing services. This server correctly refers to a WINS server on 192.168.55.3 for name resolution and configures all user logins through the PDC on 192.168.55.8. If you're configuring the local Linux system as a PDC, what directive, at minimum, do you have to configure in the local Samba configuration file? _____________________ |
|
10. | What command can be used to mount remotely shared Microsoft directories? _____________________ |
|
11. | You made a couple of quick changes to your Samba configuration file and you need to test it quickly for syntax errors. What command tests smb.conf for syntax errors? _____________________________________ |
|
12. | You've recently revised the Samba configuration file and do not want to disconnect any current users. What command forces the Samba service to reread the configuration file-without having to disconnect your Microsoft users or restarting the service? _____________________________________ |
|
Answers
9. | At minimum, to configure a Linux system as a PDC, you need to configure the security = user directive. |
10. | The command that can be used to mount remotely shared Microsoft directories is mount.cifs. |
11. | The command that tests smb.conf for syntax errors is testparm. |
12. | The command that forces the Samba service to reread the configuration file-without having to disconnect your Microsoft users or restarting the service-is service smb reload. |