IS3440 CHAP 11 MANAGEING SECURITY ALERTS AND UPDATES

Question 1

___ is a company that creates anti-malware systems for Linux and other operating systems.

Answer 1

AVG

Question 2

___ in the context of the kernel, this is an incorporated feature from a later kernel.

Answer 2

Backport

Question 3

___ is a clone of UNIX, similar to Linux, released under different licenses.

Answer 3

(BSD) Berkeley Standard Distribution

Question 4

___ is a Web-based bug-tracking and management tool commonly used on open source projects from Red Hat to the GNOME desktop environment.

Answer 4

Bugzilla

Question 5

___ is a cross-platform antivirus software toolkit developed for and used on Linux, BSD, and derivatives of UNIX.

Answer 5

(Clam AV) Clam AntiVirus

Question 6

___ is an open source project for network-based installations of Linux distributions.

Answer 6

Cobbler project

Question 7

___ is a list of operating-system security issues maintained by the MITRE corporation and sponsored by the National Cyber Security Division of the US Department of Homeland Security.

Answer 7

(CVE) Common Vulnerabilities and Exposures list

Question 8

___ is an open source project to create packages over and above those available for Red Hat Enterprise Linux; may include functional back ports from later versions of Fedora Linux.

Answer 8

(EPEL) Extra Packages for Enterprise Linux

Question 9

___ is the Linux operating system developed by the Fedora Project and sponsored by Red Hat.

Answer 9

Fedora Linux

Question 10

___ is a company that creates anti-malware systems for Linux and other operating systems.

Answer 10

Kaspersky

Question 11

___ is a network-based installation system first created for Red Hat distributions.

Answer 11

Kickstart

Question 12

___ is a release of the Ubuntu distribution that includes the KDE desktop environment as the default GUI.

Answer 12

Kubuntu

Question 13

___ is a system management tool available from Canonical for managing and updating clients associated with the Ubuntu distribution.

Answer 13

Landscape

Question 14

___ developed by Canonical, this is a platform for bug tracking, open source software development, and more.

Answer 14

Launchpad

Question 15

___ is the system of package updates on the Linux operating system.

Answer 15

Linux patch management

Question 16

___ is a reference to the Ubuntu repositories of supported open source software.

Answer 16

Main repository

Question 17

___ is a Linux distribution based in France and Brazil.

Answer 17

Mandriva

Question 18

___ is a reference to the Ubuntu repositories of unsupported software released under restricted license.

Answer 18

Multiverse repository

Question 19

___ is a portal and server to search for revoked digital certificates.

Answer 19

(OCSP) Online Certificate Status Protocol

Question 20

___ is a popular FTP server with a basic configuration file similar to the Apache Web server; supports multiple virtual FTP servers.

Answer 20

(ProFTPd) Pro File Transfer Protocol daemon

Question 21

___ is a leader of the open source movement. Author of The Cathedral and the Bazaar. Also a cofounder of the open source initiative.

Answer 21

Raymond, Eric

Question 22

___ is a Linux distribution built from the source code released by another distribution. For example, because CentOS uses Red Hat source code, CentOS Linux is a ___ of Red Hat Enterprise Linux.

Answer 22

Rebuild

Question 23

___ this is a Linux distribution developed in China.

Answer 23

Red Flag Linux

Question 24

___ is the company behind the leading Linux distribution in the marketplace.

Answer 24

Red Hat

Question 25

___ is a group of systems management services to manage packages, administer scripts, and more. These services may be applied to subscribed clients and servers on a network.

Answer 25

(RHN) Red Hat Network

Question 26

___ is a proxy server dedicated to caching downloaded packages from the Red Hat Network.

Answer 26

Red Hat Network Proxy Server

Question 27

___ is a version of the Red Hat Network designed for local use on an enterprise network; includes an embedded Oracle database.

Answer 27

Red Hat Satellite Server

Question 28

___ are announcements of security issues from the Red Hat Security Team.

Answer 28

(RHSAs) Red Hat security advisories

Question 29

___ is a reference to the Ubuntu repositories of software released under restricted licenses.

Answer 29

Restricted repository

Question 30

___ is a specialized type of malware that enables a black-hat hacker to take root administrative access of a Linux system.

Answer 30

Root kit

Question 31

___ is a variant of UNIX originally developed by the former Sun Microsystems.

Answer 31

Solaris

Question 32

___ is an open source systems management server based on the source code of the Red Hat Network Satellite Server.

Answer 32

Spacewalk

Question 33

___ is a program for filtering unwanted email.

Answer 33

SpamAssassin

Question 34

___ is a Linux distribution originally developed in Germany, now owned by Novell.

Answer 34

SUSE

Question 35

___ is a Linux distribution originally developed in Japan

Answer 35

Turbolinux

Question 36

___ are alerts based on security issues that affect different releases of the Ubuntu distribution.

Answer 36

(USNs) Ubuntu security notices

Question 37

___ is a reference tot he Ubuntu repositories of unsupported software released under open source licenses.

Answer 37

Universe repository

Question 38

___ is a system for sharing views of graphical desktop environments over a network.

Answer 38

(VNC) Virtual network computing

Question 39

___ is a popular FTP server that is no longer supported and is reported to have security flaws.

Answer 39

(WU-FTPD) Washington University File Transfer Protocol daemon

Question 40

___ is a self-replicating malware program; different from a Trojan horse, which is not self-replicating.

Answer 40

Worm

Question 41

___ is an alternative desktop environment to GNOME and KDE; it is the default desktop environment on the Xubuntu variant of Ubuntu Linux.

Answer 41

Xfce desktop environment

Question 42

___ is a release of the Ubuntu distribution that includes the Xfce desktop environment as the default GUI.

Answer 42

Xubuntu

Question 43

___ is a systems management server released by Novell. ___Linux Management can be used to administer patches and more on both SUSE Linux Enterprise Server and Red Hat Enterprise Linux systems.

Answer 43

ZENworks

Question 44

1. For at least how long does Red Hat provide security updates for its Enterprise Linux distributions?
2. Two years
3. Five years
4. Seven years
5. Ten years

Answer 44

Seven years

Question 45

2. For Ubuntu’s LTS releases, Canonical will provide security updates for its server distribution releases for at least five years.
   TRUE OR FALSE

Answer 45

TRUE

Question 46

3. Why would you read a security alert and not just download and install a security update to a key system such as the Linux kernel? (Select two)
4. The update may affect interactions between the operating system and local hardware
5. The update does not affect any systems that you use personally
6. The update may not be bootable.
7. The update relates to Xen, which is a special kernel not used on the local system.

Answer 46

The update may affect interactions between the operating system and local hardware

The update may not be bootable.

The update relates to Xen, which is a special kernel not used on the local system.

Question 47

4. Which command is commonly used to install and update packages from the command line on Red Hat systems.

Answer 47

yum

Question 48

5. Even though Apache 2.4 is currently not production software, which of the following is a new feature of that version of Apache that may enhance security?
6. Password protection for Web sites
7. Access to secure certificates
8. The ability to host multiple secure Web sites
9. Access to OCSP servers.

Answer 48

Access to OCSP servers.

Question 49

6. Which of the following FTP servers is NOT maintained but may still be readily available on the repositories for a distribution?
7. WU-FTPD
8. Pure-FTPd
9. vsFTP
10. ProFTPd

Answer 49

WU-FTPD

Question 50

7. Which of the following types of malware is NOT found on Linux?
8. Rootkits
9. Microsoft viruses
10. Trojan horses
11. None of the above

Answer 50

None

Question 51

8. Which of the following includes a system for tracking bugs in software?
9. ZENworks
10. Red Hat Network
11. Landscape
12. Launchpad

Answer 51

Launchpad

Question 52

9. Before creating a bug report, which of the following actions should you take?
10. Copy all log files to the report
11. Research any FAQs
12. Reinstall the software
13. Reboot the system

Answer 52

Research any FAQs

Question 53

10. What is the full path to the YUM configuration file on a Red Hat Enterprise Linux 5 systems?

Answer 53

/etc/yum.conf

Question 54

11. which of the following files contain the addresses of remote repositories?
12. /etc/apt/sources.list
13. /etc/apt/apt.conf
14. /etc/apt.conf
15. /etc/apt/apt.conf.d/10periodic

Answer 54

/etc/apt/sources.list

Question 55

12. The multiverse repository includes packed that are NOT supported and do NOT include open source software?
    TRUE or FALSE

Answer 55

TRUE

Question 56

13. Which of the following files in the /etc/apt/apt.conf.d/ directory determine whether unattended upgrades are run?
14. apt.conf
15. 10periodic
16. 50unattend-upgrades
17. 99update-notifier

Answer 56

10periodic

Question 57

14. Which of the following configuration files is associated with unattended upgrades on Red Hat Enterprise Linux systems?
15. /etc/yum.conf
16. /etc/yum/yum-daily.yum
17. /etc/yum/yum-updatesd.conf
18. /etc/yum.repos.d/yum-updatesd.conf

Answer 57

/etc/yum/yum-updatesd.conf

Question 58

15. Which of the following system management services is open source?
16. Red Hat Network
17. Landscape
18. Spacewalk
19. All the above

Answer 58

Red Hat Network
Landscape
Spacewalk

All the above