[Free] Download Latest (March 2016) LPI 117-202 Real Exam 131-140

Ensurepass

QUESTION 131

What could be a reason for invoking vsftpd from (x) inetd?

 

A.

It’s not a good idea, because (x) inetd is not secure

B.

Running vsftpd in standalone mode is only possible as root, which could be a security risk

C.

vsftpd cannot be started in standalone mode

D.

(x) inetd has more access control capabilities

E.

(x) inetd is needed to run vsftpd in a chroot jail

 

Correct Answer: D

 

 

QUESTION 132

The following is an excerpt from the output of tcpdump -nli eth1 ‘udp’:

 

13:03:17.277327 IP 192.168.123.5.1065 > 192.168.5.112.53: 43653+ A? lpi.org. (25)

13:03:17.598624 IP 192.168.5.112.53 > 192.168.123.5.1065: 43653 1/0/0 A 24.215.7.109 (41)

 

Which network service or protocol was used?

 

A.

FTP

B.

HTTP

C.

SSH

D.

DNS< /font>

E.

DHCP

 

Correct Answer: D

 

 

QUESTION 133

Which answer best describes the meaning of the following LDAP search command:

 

ldapseareh -x” (&

(cn=marie)(telephoneNumber=9*))”

 

A.

It is searching for all entries that don’t have the cn attribute equal to marie OR the telephoneNumberattribute starting with number 9

B.

It is searching for all entries that have the cn attribute equal to marie AND the telephoneNumber attributestarting with number 9

C.

It is searching for all entries that have the cn attribute equal to marie AND the telephoneNumber attributeending with number 9

D.

It is searching for all entries that don’t have the cn attribute equal to marie AND the telephoneNumberattribute starting with number 9

E.

It is searching for all entries that have the cn attribute different than marie OR the telephoneNumberattribute starting with number 9

 

Correct Answer: B

 

 

QUESTION 134

Which files are read by the lsdev command? (Please specify THREE answers)

 

A.

/proc/dma

B.

/proc/filesystem
s

C.

/proc/interrupts

D.

/proc/ioports

E.

/proc/swaps

 

Correct Answer: ACD

 

QUESTION 135

When the default policy for the iptables INPUT chain is set to DROP, why should a rule allowing traffic to localhost exist?

 

A.

All traffic to localhost must always be allowed.

B.

It doesn’t matter; iptables never affects packets addressed to localhost

C.

Sendmail delivers emails to localhost

D.

Some applications use the localhost interface to communicate with other applications.

E.

syslogd receives messages on localhost

 

Correct Answer: D

 

 

QUESTION 136

Journalling doesn’t appear to be working on an ext3 file-system. When booting, the following line appears:

 

VFS: Mounted root (ext2 filesystem) readonly.

 

What could be causing the problem?

 

A.

An old version of e2fsprogs is installed.

B.

The kernel does not contain ext3 support.

C.

The file-system is specified as ext2 in/etc/fstab.

D.

The system was not shut down cleanly.

 

Correct Answer: B

 

 

QUESTION 137

Which setting in the Courier IMAP configuration file will tell the IMAP daemon to only listen on the localhost interface?

 

A.

ADDRESS=127.0.0.1

B.

Listen 127.0.0.1

C.

INTERFACE=127.0.0.1

D.

LOCALHOST_ONLY=1

 

Correct Answer: A

 

 

QUESTION 138

LDAP-based authentication against a newly-installed LDAP server does not work as expected. The file /etc/pam.d/login includes the following configuration parameters. Which of them is NOT correct?

 

A.

password required /lib/security/pam_ldap.so

B.

auth sufficient /lib/security/pam_ldap.so use_first_pass

C.

account sufficient /lib/security/pam_ldap.so

D.

password required /lib/security/pam_pwdb.so

E.

auth required /lib/security/pam_ldap.so

 

Correct Answer: E

QUESTION 139

To securely use dynamic DNS updates, the use of TSIG is recommended. Which TWO statements about TSIG are true?

 

A.

TSIG is used for zone data encryption


B.

TSIG is a signal to start a zone update

C.

TSIG is used in zone files

D.

TSIG is used only in server configuration

E.

Servers using TSIG must be in sync (time zone!)

 

Correct Answer: DE

 

 

QUESTION 140

What security precautions must be taken when creating a directory into which files can be uploaded anonymously using FTP?

 

A.

The directory must not have the execute permission set.

B.

The directory must not have the read permission set.

C.

The directory must not have the read or execute permission set.

D.

The directory must not have the write permission set.

E.

The directory must not contain other directories.

 

Correct Answer: B

 

Free VCE & PDF File for LPI 117-202 Real Exam

Instant Access to Free VCE Files: CompTIA | VMware | SAP …
Instant Access to Free PDF Files: CompTIA | VMware | SAP …

This entry was posted in 117-202 Real Exam (March 2016) and tagged , , , , , , , . Bookmark the permalink.