| < Day Day Up > |
|
The following questions will help you measure your understanding of the material presented in this chapter. Read all the choices carefully, as there may be more than one correct answer. Choose all correct answers for each question. Don't focus exclusively on these questions. There are no longer any multiple choice questions on the Red Hat exams. These questions test your understanding of the chapter. Getting results, not memorizing trivia, is what counts on the Red Hat exams.
1. | You are setting up a Red Hat Enterprise Linux system and are adding several new services. What can you do to make sure your system is more secure from outside attack?
|
|
Answers
1. | þ A and C. You should run network services under their own accounts or the nobody account. If a cracker does find a security hole, the damage will be limited to that service. |
2. | You've just issued the following command: chown nobody.developgrp /home/developer. How would you set the SGID bit on this directory?
|
|
Answers
2. | þ A and D. Both commands will set the SGID bit. Answer D is sometimes more appropriate, as it does not affect the permissions for the owner or others. |
3. | What are the normal uses of the tmpwatch command script?
|
|
Answers
3. | þ C. The tmpwatch command is usually run periodically by the cron daemon. It recursively searches through temporary directories and removes files that have not been accessed for a fixed amount of time. |
4. | The junior system administrator at your site has just come to you to report a suspected bad hard drive on the system he was working on. Whenever he tries to boot the system, he gets a kernel panic with a message saying the root partition cannot be found. What is the most likely cause?
|
|
5. | How can you boot a damaged Linux system in order to perform repairs?
|
|
6. | You are a consultant and are helping a client who has managed to render his system unbootable. You have booted into rescue mode, but the client doesn't have any documentation on the partition layout on his disk drive. What can you do?
|
|
7. | You are trying to boot a system and keep receiving a message about a corrupted partition. You manage to boot into rescue mode. From this point, what might you do to fix the problem?
|
|
8. | Where are some likely places for configuration errors that can prevent your system from booting? (Choose all that apply.)
|
|
Answers
4. | þ D. In a situation like this, the cause is most likely human error. |
5. | þ A, B, and C are correct procedures to boot a damaged Linux system in order to perform repairs. |
6. | þ A is a good starting point, which will allow you to determine what partitions are available. Alternatively, D will give you some clues as to partition sizes. In addition, you could then try the e2label command; if you're fortunate, you'll see the labels associated with actual mounted partitions such as /boot or /home. One other approach is to just mount each partition, look at the file contents, and deduce what filesystem it represents. |
7. | þ D. Try running the fsck command with an alternative superblock, such as 8193, 16385, and so on. You can use the dumpe2fs command to help determine the appropriate superblock size. |
8. | þ A, B, and D. Any typo in the /boot/grub/grub.conf or /etc/fstab files can make a good system unbootable. Any time you make changes that affect the files in /boot, you should make sure grub.conf reflects these changes. |
9. | When you set up a set of secure RSA keys for Secure Shell access, what should you do?
|
|
Answers
9. | þ D. RSA keys are configured by the ssh-keygen -t rsa1 command. A passphrase can be used to protect your private key. |
10. | If you already have added PEs to your VG and want to add room to your LV with your /var directory, what command would you use to increase the size of that LV? Assume that you've backed up any essential data from /var, and the volume names stated in the answers are correct.
|
|
Answers
10. | þ C. The lvextend command extends the scope of the LV to the size specified with the -L switch, in this case, 2000MB. |
| < Day Day Up > |
|