Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

IS3440 LINUX SECURITY > IS3440 CHAP 12 BUILDING AND MAINTAINING A SECURITY BASELINE > Flashcards

IS3440 CHAP 12 BUILDING AND MAINTAINING A SECURITY BASELINE Flashcards

1
Q

COMMAND ___ is a log priority that specifies problems that require immediate attention.

A

alert

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

COMMAND ___ is the lowest log priority; also provides the greatest detail.

A

debug

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

COMMAND ___ is a log priority that specifies very important messages; may also be shown as COMMAND panic or crit.

A

emerg

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

COMMAND ___ is a log priority that adds error messages; may also be shown as COMMAND error.

A

err

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

COMMAND ___ is a log priority that adds logging notes at the information level.

A

info

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

COMMAND ___ is a log priority that includes messages that might require attention.

A

notice

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

COMMAND ___ is a log priority that provides warning messages; may also be shown as COMMAND warning.

A

warn

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

___ is an intrusion detection system; available in both Red Hat and Ubuntu repositories.

A

(AIDE) Advanced Intrusion Detection Environment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

___ is the Red Hat installation program.

A

Anaconda

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

___ is the latest system for system and kernel logs; also supports secure transmission of log information to a central logging server.

A

RSyslog

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

___ is an intrusion detection system; open source and commercial versions are available.

A

Tripwire

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q
  1. Which of the following options support remote updates from a Web-based interface?
  2. Minimal installation
  3. No automatic updates
  4. Install security updates automatically
  5. Manage system with Landscape
A

Manage system with Landscape

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q
  1. Which of the following package groups are included in a default RHEL 5 installation?
  2. Automatic updates
  3. KDE
  4. GNOME
  5. Secure Shell server
A

GNOME

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q
  1. What is the mount option that disables executable binaries in an /etc/fstab configuration file?
A

noexec

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q
  1. which of the following directories is normally NOT appropriate as a read-only filesystem?
  2. /boot/
  3. /home/
  4. /root/
  5. /sbin/
A

/home/

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q
  1. Which of the following directories is a standard location for packages downloaded from an Ubuntu repository?
  2. /var/cache/apt/
  3. /var/cache/yum/
  4. /tmp/
  5. /root/
A

/var/cache/apt/

17
Q
  1. Which of the following is NOT a reason to test updates before installing them on a gold baseline?
  2. Potential effects on compiled software
  3. Support issues with third-party software
  4. Source code is unverified
  5. Potential interactions with other software
A

Source code is unverified

18
Q
  1. Which of the following log priorities provides the most important messages?
  2. debug
  3. err
  4. info
  5. notice
A

err

19
Q
  1. In a Samba log file, which of the following is associated with the %m variable?
  2. Username
  3. Hostname
  4. Service version
  5. User profile
A

Hostname

20
Q
  1. What option in the /etc/syslog.conf configuration file includes MAIL messages of only the INFO priority? Use the facility.priority format.
A

mail.=info

21
Q
  1. which of the following modules is associated with system logging in an Syslog configuration file?
  2. imuxsock
  3. imklog
  4. imudp
  5. imtcp
A

imuxsock

22
Q
  1. Which of the following symbols in an Syslog configuration file is associated with UDP connections?
  2. !
  3. @
  4. @@
  5. =
A

@

23
Q
  1. What is the simplest command that includes all packages on an Ubuntu system?
A

dpkg -1

24
Q
  1. Which of the following commands can best collect information on the activity on a system?
  2. top
  3. sar
  4. vmstat
  5. free
A

sar

25
Q
  1. Which of the following configuration files includes Tripwires configuration policies in a human-readable format?
  2. twcfg.txt
  3. tw.cfg
  4. twpol.txt
  5. twpol.enc
A

twpol.txt

26
Q
  1. What command switch inspects the current configuration, comparing it with a previously derived baseline configuration? This switch works with both the TRIPWIRE and AIDE commands.
  2. –inspect
  3. –check
  4. –compare
  5. –review
A

–check

IS3440 LINUX SECURITY (15 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions